Malware

About “Zusy.425884 (B)” infection

Malware Removal

The Zusy.425884 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Zusy.425884 (B) virus can do?

  • The binary contains an unknown PE section name indicative of packing
  • The executable is compressed using UPX
  • Authenticode signature is invalid

How to determine Zusy.425884 (B)?



File Info:

name: F6099BB3E8E7301F6EA4.mlw
path: /opt/CAPEv2/storage/binaries/b41cab875447c28936240dbd27e98dd4ca016ec4df30ec1de50a367b6ad059fb
crc32: A8006B6B
md5: f6099bb3e8e7301f6ea4bb7a0c894795
sha1: d34c6b17cfaadd0f25ae406d454c49faa106ebff
sha256: b41cab875447c28936240dbd27e98dd4ca016ec4df30ec1de50a367b6ad059fb
sha512: e9027a397358d1c8f5a74333589195ed6d7a87dacfc1519f9310d3479d512ff083baa4949dc25e4a857845bae70d180748068198193ce3143ae08fcdbee1c05e
ssdeep: 3072:pGfGnaukXkZ2LdZw1lFP8uNyXk4IBdKulzFIJXyBJK7:0fGnLakZ2JZ6FPfz4I3lu
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T13924F8023A78D1A5F4A102754CBBCAE01D24FDA4AE70EB1B70517B9D0C39EB64636B77
sha3_384: 0a404c2cdc173b53520c884d412e37718020fade6d48ab0019a4b2b57a892392096aea59f20af2890d66d832199d6532
ep_bytes: 60be003046008dbe00e0f9ffc787b007
timestamp: 1992-06-19 22:22:17


Version Info:

CompanyName: Razor 1911
FileDescription: Uninstaller
FileVersion: 1.0.0.0
InternalName: Razor 1911 Uninstaller
LegalCopyright: 2019
LegalTrademarks: 2019
OriginalFilename: Uninstaller.exe
ProductName: Razor 1911 Uninstaller
ProductVersion: 1.0.0.0
Translation: 0x0408 0x04e5

Zusy.425884 (B) also known as:

LionicTrojan.Win32.Zusy.4!c
MicroWorld-eScanGen:Variant.Zusy.425884
FireEyeGeneric.mg.f6099bb3e8e7301f
McAfeeGenericRXAA-AA!F6099BB3E8E7
CylanceUnsafe
SangforTrojan.Win32.Save.a
BitDefenderThetaGen:NN.ZexaF.34592.nm0@aWExb3q
SymantecML.Attribute.HighConfidence
Elasticmalicious (moderate confidence)
APEXMalicious
ClamAVWin.Malware.Zusy-9956639-0
BitDefenderGen:Variant.Zusy.425884
AvastWin32:Malware-gen
Ad-AwareGen:Variant.Zusy.425884
EmsisoftGen:Variant.Zusy.425884 (B)
ComodoPacked.Win32.MUPX.Gen@24tbus
VIPREGen:Variant.Zusy.425884
Trapminesuspicious.low.ml.score
SophosGeneric PUA ND (PUA)
SentinelOneStatic AI – Malicious PE
GDataGen:Variant.Zusy.425884
GoogleDetected
Antiy-AVLTrojan/Generic.ASMalwS.330C
MicrosoftTrojan:Win32/Wacatac.B!ml
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win.Generic.R497024
ALYacGen:Variant.Zusy.425884
MAXmalware (ai score=82)
MalwarebytesMalware.AI.272598710
TrendMicro-HouseCallTROJ_GEN.R002H09HD22
IkarusTrojan.Win32.VkHost
MaxSecureTrojan.Malware.184262080.susgen
FortinetW32/PossibleThreat
AVGWin32:Malware-gen

How to remove Zusy.425884 (B)?

Zusy.425884 (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment