Malware

Zusy.424579 (file analysis)

Malware Removal

The Zusy.424579 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Zusy.424579 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • At least one process apparently crashed during execution
  • Possible date expiration check, exits too soon after checking local time
  • Dynamic (imported) function loading detected
  • Enumerates running processes
  • Authenticode signature is invalid

How to determine Zusy.424579?



File Info:

name: 02843E4CE9994D340200.mlw
path: /opt/CAPEv2/storage/binaries/ecf2811f4d51ecacaecfb15ec2a61423face865b5f8ae6719e46a3884b2daeb5
crc32: 75A522AA
md5: 02843e4ce9994d34020012b8a81d9e81
sha1: 99111b6a5ef8d33507566aa54f5b1b8bf2adf234
sha256: ecf2811f4d51ecacaecfb15ec2a61423face865b5f8ae6719e46a3884b2daeb5
sha512: 22ad3e6b6f091982a91e3c9a7111043120c1b6d0d7d426b9ceef78c7bf03650d7fb4e123255b7cff511da377cf76e1a7cd062f1532a76bc45af26513dcabac19
ssdeep: 6144:Jd+X4r0H3EdNJMzqHA1syVlgLNo7KrYWu+W32GJp:dIXaHApGrFu+W3
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1C1446C91F5A090F6C1640070F2BE379FA53D09591B9851D3B3E85E88ABF01E356F9B93
sha3_384: 9dbf37218304d6bac6a266c2f5c4803b80cba4ed978bea6805253b36a50723f06f9e59349b39d4bf5028060eb3d9aac2
ep_bytes: e8ce050000e97afeffff558bec56ff75
timestamp: 2022-05-09 12:02:31


Version Info:

0: [No Data]

Zusy.424579 also known as:

BkavW32.AIDetect.malware1
Elasticmalicious (high confidence)
CynetMalicious (score: 100)
APEXMalicious
BitDefenderGen:Variant.Zusy.424579
MicroWorld-eScanGen:Variant.Zusy.424579
Ad-AwareGen:Variant.Zusy.424579
EmsisoftGen:Variant.Zusy.424579 (B)
FireEyeGen:Variant.Zusy.424579
SentinelOneStatic AI – Suspicious PE
MicrosoftTrojan:Win32/Wacatac.B!ml
ArcabitTrojan.Zusy.D67A83
GDataGen:Variant.Zusy.424579
ALYacGen:Variant.Zusy.424579
MAXmalware (ai score=87)
VBA32BScope.TrojanPSW.Azorult
PandaTrj/Genetic.gen
RisingTrojan.Generic@AI.100 (RDML:PmPogBONMZrZo5eq/TXKXw)

How to remove Zusy.424579?

Zusy.424579 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment