Malware

Zusy.331389 (B) removal

Malware Removal

The Zusy.331389 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Zusy.331389 (B) virus can do?

  • Executable code extraction
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary likely contains encrypted or compressed data.
  • Steals private information from local Internet browsers
  • Creates a hidden or system file

Related domains:

ffdownload.online

How to determine Zusy.331389 (B)?



File Info:

crc32: 23912EE6
md5: ffe71f7324280afd17734b5bdef6fe21
name: FFE71F7324280AFD17734B5BDEF6FE21.mlw
sha1: 555c98eb6a477c5cbcaed07d3eee89370e43a16f
sha256: a61bdd595e56bf2c20b98c858e171cb9174cfb29526e756d32fbf24725e12766
sha512: b301308379b45d0fe2955a790f3d2c5a899989242baff4c8cdcde0e81e20e763dbd9ee0b430fcb1c31e520260ffc66a5933c16efd9ae129702004e73a0ef0623
ssdeep: 98304:BR2YNEzgmqyPGWyPWwgJr3DAq2itqL2kLsdFLOAkGkzdnEVomFHKnP:qzJB9ewAq2itIDUFLOyomFHKnP
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: TODO:  (C) x3002  x4fddx7559x6240x6709x6743x5229x3002
InternalName: x20201101.exe
FileVersion: 1.0.0.1
CompanyName: TODO:  
ProductName: TODO:  
ProductVersion: 1.0.0.1
FileDescription: x20201101
OriginalFilename: x20201101.exe
Translation: 0x0804 0x04b0

Zusy.331389 (B) also known as:

MicroWorld-eScanGen:Variant.Zusy.331389
FireEyeGeneric.mg.ffe71f7324280afd
SangforMalware
BitDefenderThetaGen:NN.ZexaF.34700.@x0@aax6ICkb
APEXMalicious
KasperskyHEUR:Backdoor.Win32.Agent.gen
BitDefenderGen:Variant.Zusy.331389
NANO-AntivirusTrojan.Win32.Stealer.iaywpc
RisingSpyware.Socelars!8.EBE4 (TFE:5:Zo8wkAGbgHM)
Ad-AwareGen:Variant.Zusy.331389
F-SecureHeuristic.HEUR/AGEN.1137812
DrWebTrojan.PWS.Stealer.29567
VIPRETrojan.Win32.Generic!BT
EmsisoftGen:Variant.Zusy.331389 (B)
GDataGen:Variant.Zusy.331389
JiangminBackdoor.Agent.ikx
AviraHEUR/AGEN.1137812
Antiy-AVLTrojan[Spy]/Win32.Socelars
ArcabitTrojan.Zusy.D50E7D
ZoneAlarmHEUR:Backdoor.Win32.Agent.gen
MicrosoftTrojan:Win32/Wacatac.DA!ml
CynetMalicious (score: 90)
AhnLab-V3Trojan/Win32.RL_Wacatac.R355121
VBA32suspected of Trojan.Downloader.gen.h
ALYacGen:Variant.Zusy.331389
MAXmalware (ai score=87)
MalwarebytesSpyware.Socelars
ESET-NOD32a variant of Win32/Spy.Socelars.AD
TencentMalware.Win32.Gencirc.10ce10bd
YandexTrojanSpy.Socelars!AebPNdox8hk
SentinelOneStatic AI – Suspicious PE
FortinetW32/Socelars.AD!tr.spy
AVGWin32:TrojanX-gen [Trj]
Cybereasonmalicious.324280
PandaTrj/GdSda.A
Qihoo-360HEUR/QVM10.1.3AFB.Malware.Gen

How to remove Zusy.331389 (B)?

Zusy.331389 (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment