Malware

How to remove “Zusy.406562”?

Malware Removal

The Zusy.406562 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Zusy.406562 virus can do?

  • Creates RWX memory
  • Dynamic (imported) function loading detected
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid

How to determine Zusy.406562?



File Info:

name: DDCFBC93F377684DA381.mlw
path: /opt/CAPEv2/storage/binaries/ef9df5ed4469b05ce9503949235e90d674f028925c169669e222abc30dfa788d
crc32: 51FFFC43
md5: ddcfbc93f377684da38160b2fc21095c
sha1: cdafe5d09e52080565d20af54c2e5e0f63d8c2b4
sha256: ef9df5ed4469b05ce9503949235e90d674f028925c169669e222abc30dfa788d
sha512: a4efcc920f066566f59c914c031b1eb5b866bdd4a7f8d6f5312abcf82ccd62706967d7c941d5d162dcd2a0f9831d35b0b513d19c67fd77e3bebf04193c2ea4a6
ssdeep: 49152:QRozbtewsdi90b4SBZQQNtQk8EW/rF1T2EuUoQfh:QRUewsd+Cb2EarFMrf
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1CDC56C12F245653EC06F2A3A5937A6549D3FB761A6269C1F57F0088CCF798803A3F64B
sha3_384: 2ed547c80b02fa1001b95d9a33eac98fcb8ea976044d5caf5fe54f5c52509b9a337d16499db19b7aaab39281c195f7b4
ep_bytes: 558bec83c4f0b874fa6200e80479ddff
timestamp: 2017-12-30 11:44:00


Version Info:

FileDescription: Project1
FileVersion: 1.0.0.0
ProductName: Project1
ProductVersion: 1.0.0.0
ProgramID: com.embarcadero.Project1
Translation: 0x0409 0x04e4

Zusy.406562 also known as:

LionicTrojan.Win32.Zusy.4!c
MicroWorld-eScanGen:Variant.Zusy.406562
FireEyeGen:Variant.Zusy.406562
ALYacGen:Variant.Zusy.406562
SangforSuspicious.Win32.Zusy.406562
TrendMicro-HouseCallTROJ_GEN.R002H09L221
BitDefenderGen:Variant.Zusy.406562
Ad-AwareGen:Variant.Zusy.406562
EmsisoftGen:Variant.Zusy.406562 (B)
McAfee-GW-EditionBehavesLike.Win32.Generic.vh
APEXMalicious
GDataGen:Variant.Zusy.406562
JiangminTrojan.Blocker.tlf
MAXmalware (ai score=87)
ArcabitTrojan.Zusy.D63422
McAfeeArtemis!DDCFBC93F377
MaxSecureTrojan.Malware.300983.susgen

How to remove Zusy.406562?

Zusy.406562 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment