Malware

Zusy.332308 removal

Malware Removal

The Zusy.332308 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Zusy.332308 virus can do?

  • Executable code extraction
  • Creates RWX memory
  • Mimics the system’s user agent string for its own requests
  • Expresses interest in specific running processes
  • HTTP traffic contains suspicious features which may be indicative of malware related traffic
  • Performs some HTTP requests

How to determine Zusy.332308?



File Info:

crc32: D291DAB7
md5: d515ad8ec8b6d6957980648fc31052b9
name: D515AD8EC8B6D6957980648FC31052B9.mlw
sha1: 60aceddbc50a7a48817201e0440553b1014ee4c8
sha256: 631c286d857f669d0d50653ca1fb01863a5e9962f76fc18f88c7d165a4bb5fe2
sha512: 98b457e28754d316b6b02cc3b01bea8df2ff8689adc1706adbec1ad8ffe8525a59f5f4a2905ea448c1541d2af4d722079500ca3a8452fd8dd8b2773274553694
ssdeep: 12288:1bl3jAycR3d0IUZN168cLrDKz8k0HRJFfA++8L:1bl3sya32x61rD2CRJFB
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Copyright (C) 2002
InternalName: Formula
FileVersion: 1, 0, 0, 4
CompanyName: 
LegalTrademarks: 
ProductName: Anwendung Formula
ProductVersion: 1, 0, 0, 4
FileDescription: MFC-Anwendung Formula
OriginalFilename: Formula.EXE
Translation: 0x0407 0x04b0

Zusy.332308 also known as:

BkavW32.AIDetectVM.malware1
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Zusy.332308
McAfeeEmotet-FSJ!D515AD8EC8B6
BitDefenderGen:Variant.Zusy.332308
CyrenW32/Emotet.AWQ.gen!Eldorado
SymantecML.Attribute.HighConfidence
APEXMalicious
AvastWin32:BankerX-gen [Trj]
ClamAVWin.Dropper.Emotet-9787443-0
KasperskyHEUR:Trojan-Banker.Win32.Emotet.vho
RisingTrojan.Kryptik!8.8 (TFE:5:PQ41pPYQ54D)
Ad-AwareGen:Variant.Zusy.332308
EmsisoftGen:Variant.Zusy.332308 (B)
DrWebTrojan.Emotet.1046
McAfee-GW-EditionEmotet-FSJ!D515AD8EC8B6
FireEyeGen:Variant.Zusy.332308
IkarusTrojan-Banker.Emotet
MAXmalware (ai score=87)
MicrosoftTrojan:Win32/EmotetCrypt.C!MTB
ArcabitTrojan.Zusy.D51214
ZoneAlarmHEUR:Trojan-Banker.Win32.Emotet.vho
GDataGen:Variant.Zusy.332308
CynetMalicious (score: 100)
AhnLab-V3Malware/Win32.RL_Generic.R354951
ALYacGen:Variant.Zusy.332308
MalwarebytesTrojan.MalPack.TRE
ESET-NOD32a variant of Win32/Kryptik.HHEE
FortinetW32/Kryptik.HEXM!tr
AVGWin32:BankerX-gen [Trj]

How to remove Zusy.332308?

Zusy.332308 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment