Malware

Zusy.350354 removal guide

Malware Removal

The Zusy.350354 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Zusy.350354 virus can do?

  • Sample contains Overlay data
  • Reads data out of its own binary image
  • Authenticode signature is invalid
  • Uses Windows utilities for basic functionality
  • Attempts to interact with an Alternate Data Stream (ADS)
  • Anomalous binary characteristics

How to determine Zusy.350354?



File Info:

name: 4A041B045253CAE63AA2.mlw
path: /opt/CAPEv2/storage/binaries/717212eb0ed2a28e1d989c9bf6a162f0a0c9e4bd41d1dc42ced449f263d2d0c8
crc32: 7BA1A620
md5: 4a041b045253cae63aa2321edb9b8f44
sha1: cd1e565398d5b3e374e443a4a9bbf0bfe877a4a4
sha256: 717212eb0ed2a28e1d989c9bf6a162f0a0c9e4bd41d1dc42ced449f263d2d0c8
sha512: 153e0b8bb1a3d18abe593070aaec89d399d9c3e797e6e78c3e89a93539891aee790cc37e108522f8f5909e91817a9ed330577778d69125eff786041b36c023c4
ssdeep: 1536:A8KU95KLwKNw0KPwQrDBt/mBd/BVafU/oJR+ywT8:A8n95KLwKwPwQrWdpofU/oL+ywT8
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T17AA3C301B759C022E8920531CD99CBFF5A3DECB2300221A7D795BEBBBD793458419ADE
sha3_384: 5dcb655ab50e649a9fd5a98ce6192fb76bee4656e7cb399b1fbc4311dd0504b2d1f7171af6abb0ab89a7ab693b991543
ep_bytes: 558bec6aff682801410068c0b1400064
timestamp: 2020-11-16 18:04:36


Version Info:

FileVersion: 1.0.0.0
ProductVersion: 1.0.0.0
FileDescription: Product Description
CompanyName: Your Company
LegalCopyright: Copyright Info
ProductName: specialsetup
Translation: 0x0000 0x04b0

Zusy.350354 also known as:

LionicTrojan.Win32.Zusy.4!c
MicroWorld-eScanGen:Variant.Zusy.350354
FireEyeGen:Variant.Zusy.350354
CAT-QuickHealPUA.WacapewPMF.S18537838
McAfeeArtemis!4A041B045253
VIPREGen:Variant.Zusy.350354
SangforTrojan.Win32.Zusy.Voj2
SymantecML.Attribute.HighConfidence
APEXMalicious
Paloaltogeneric.ml
BitDefenderGen:Variant.Zusy.350354
AvastFileRepMalware [Misc]
SophosGeneric ML PUA (PUA)
ZillyaTrojan.Convagent.Win32.188
McAfee-GW-EditionBehavesLike.Win32.Generic.nm
Trapminemalicious.high.ml.score
EmsisoftGen:Variant.Zusy.350354 (B)
IkarusBackdoor.Win32.DarkKomet
GDataGen:Variant.Zusy.350354
Antiy-AVLTrojan/Script.Miner
ArcabitTrojan.Zusy.D55892
GoogleDetected
ALYacGen:Variant.Zusy.350354
MAXmalware (ai score=82)
Cylanceunsafe
TrendMicro-HouseCallTROJ_GEN.R002H09E923
FortinetW32/PossibleThreat
BitDefenderThetaGen:NN.ZexaF.36196.gq1@au@YvR
AVGFileRepMalware [Misc]
Cybereasonmalicious.45253c
DeepInstinctMALICIOUS

How to remove Zusy.350354?

Zusy.350354 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment