Zusy.435762 malicious file

The Zusy.435762 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Zusy.435762 virus can do?

Sample contains Overlay data
Yara rule detections observed from a process memory dump/dropped files/CAPE
Presents an Authenticode digital signature
Authenticode signature is invalid
CAPE detected the RedLine malware family

How to determine Zusy.435762?


File Info:
name: F8A0524CC2FB2135B5E4.mlw
path: /opt/CAPEv2/storage/binaries/3188865ee0f0a38adc096b34fecc505aeea056a5772003eac0a4428f2de70d6d
crc32: A6084313
md5: f8a0524cc2fb2135b5e42b6ba781277f
sha1: 1dbdc34303d12b7955daa29fafbf939ca9253522
sha256: 3188865ee0f0a38adc096b34fecc505aeea056a5772003eac0a4428f2de70d6d
sha512: ea060b6c0d3e16eb77a0abd7624b0b3dda49429928b3959d56ac60299b94b1e0c90aee83c2bb8c3a5b8c3c73da4da26fc57558605c44ccae2eba940fabd7b1ca
ssdeep: 6144:rzqKMSyxXfKFK6YijTAOSCJA7OJ5b2Jry+X/vX65ICQ:rxMSyUxB5b2Jry+X36GCQ
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T184548D5472E28471E9321C318ADCE7B4592CB8360B728FBFE395077E1B786C2593572A
sha3_384: d6026dc6b77f92427fddff1ffbdd1aee4b1a800acb7a920caffcd9b88ed90a49b5e700bd3df3156c01912cad50b14bcd
ep_bytes: e809040000e974feffff3b0d14a04200
timestamp: 2022-08-17 14:03:49

Version Info:
0: [No Data]

Zusy.435762 also known as:

DrWeb	Trojan.PWS.Steam.28157
Cynet	Malicious (score: 100)
FireEye	Generic.mg.f8a0524cc2fb2135
BitDefender	Gen:Variant.Zusy.435762
Cybereason	malicious.303d12
Cyren	W32/SmokeLoader.C.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
ESET-NOD32	a variant of Win32/GenKryptik.FYXK
Kaspersky	VHO:Trojan-Downloader.Win32.Agent.gen
MicroWorld-eScan	Gen:Variant.Zusy.435762
Ad-Aware	Gen:Variant.Zusy.435762
Emsisoft	Gen:Variant.Zusy.435762 (B)
VIPRE	Gen:Variant.Zusy.435762
Trapmine	malicious.moderate.ml.score
Ikarus	Trojan.Win32.Crypt
GData	Gen:Variant.Zusy.435762
Arcabit	Trojan.Zusy.D6A632
ZoneAlarm	VHO:Trojan-Downloader.Win32.Agent.gen
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
Google	Detected
ALYac	Gen:Variant.Zusy.435762
MAX	malware (ai score=80)
Cylance	Unsafe
APEX	Malicious
SentinelOne	Static AI – Malicious PE
MaxSecure	Trojan.Malware.300983.susgen
Panda	Trj/Genetic.gen

How to remove Zusy.435762?

Zusy.435762 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X