Malware

About “Zusy.406693” infection

Malware Removal

The Zusy.406693 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Zusy.406693 virus can do?

  • Dynamic (imported) function loading detected
  • Reads data out of its own binary image
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Zusy.406693?



File Info:

name: 386155315A91291A8405.mlw
path: /opt/CAPEv2/storage/binaries/2d670db85abf37a5f80aed908ff3ca9f39af04e85c925b29c97a618f1eeee6a6
crc32: CD34D11B
md5: 386155315a91291a84053af546b6e67a
sha1: 1e7ec41e4795a3f59c4fcd4f9d80b99aebe684c1
sha256: 2d670db85abf37a5f80aed908ff3ca9f39af04e85c925b29c97a618f1eeee6a6
sha512: e84c209614bab241ff4b10b523e957fe7f7e05639b8eb039c5d4528c8533d0521e2d606428db43df7b6fb58807bedc240213972bb992f8323310d31eab7a36ee
ssdeep: 24576:NIpFs8LeubMJ7wfdAYbsas8ci2aB91P/jcL/gHL72Y:oFs8LeubXfnsan2aF/2u2Y
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1133568C6C751BE91C33FC73B70202B4286989AF9EDA5CA57C7E8A610B990351024DDEF
sha3_384: 1090c9033cb856b3f693ab17f0e922433a97a4408795aa0c6ea8277ff697b090bfb5337b8938b58425c0e521084faa8d
ep_bytes: 81ecd40200005356576a205f33db6801
timestamp: 2019-12-16 00:50:53


Version Info:

Comments: Powered by HeiFei YunBiao XinXi KeJi YouXian GongSi
CompanyName: HeiFei YunBiao XinXi KeJi YouXian GongSi
FileDescription: 打印机大师
FileVersion: 1.0.0.15913
InternalName: 打印机大师
LegalCopyright: Copyright (C) 2020 HeiFei YunBiao XinXi KeJi YouXian GongSi. All rights reserved.
ProductName: 打印机大师
ProductVersion: 1.0.0.15913
Translation: 0x0804 0x04b0

Zusy.406693 also known as:

LionicTrojan.Win32.Zusy.4!c
MicroWorld-eScanGen:Variant.Zusy.406693
FireEyeGen:Variant.Zusy.406693
ALYacGen:Variant.Zusy.406693
MalwarebytesMalware.AI.2117355965
ZillyaTrojan.Inject.Win32.316629
K7AntiVirusTrojan ( 0056e5201 )
AlibabaAdWare:Win32/Softcnapp.475
K7GWTrojan ( 0056e5201 )
CrowdStrikewin/malicious_confidence_60% (D)
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Adware.AdAnti.D
BitDefenderGen:Variant.Zusy.406693
TencentWin32.Trojan.Zusy.Lkdt
EmsisoftGen:Variant.Zusy.406693 (B)
McAfee-GW-EditionBehavesLike.Win32.Dropper.tc
SophosGeneric PUA BO (PUA)
AviraADWARE/AdAnti.hflsn
GridinsoftRansom.Win32.Sabsik.sa
GDataGen:Variant.Zusy.406693
CynetMalicious (score: 99)
McAfeeArtemis!386155315A91
MAXmalware (ai score=82)
RisingAdware.Agent!1.CB5B (CLASSIC)
FortinetRiskware/AdAnti

How to remove Zusy.406693?

Zusy.406693 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment