Zusy.436107 (B) information

The Zusy.436107 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Zusy.436107 (B) virus can do?

The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Zusy.436107 (B)?


File Info:
name: 47F372FC3762156BB535.mlw
path: /opt/CAPEv2/storage/binaries/deff6a8cae5482a496e9cba99ac240061bfa525bc2a258babb3d3b8e6af3454f
crc32: F10C7BF7
md5: 47f372fc3762156bb53586154390a8f3
sha1: edfa41719a4260c0ec1f4a4c8c0a6a9d7a80507e
sha256: deff6a8cae5482a496e9cba99ac240061bfa525bc2a258babb3d3b8e6af3454f
sha512: 8a5bec3ff7e383cba817c5dcd1e2b9b274be2fd0f84660b93c601f6d102ba69eb8e90db33993a71571c8f86d095aca23e75d9c6659161b1140767072809f8a9d
ssdeep: 12288:j3uTGa/daeg/O4DSHlPiTsps2ubWnqC7:uySH1lsm9
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T165A47C2078E08172DDF630FE4AECB631086DA4F047251AC757C90BFAD6646E0BB3759A
sha3_384: ae86ef28083ba451386042214c46cead253144ca2b5a79b2022008c7e6960fd83d7491da973ed5621008cccf3b7a9af0
ep_bytes: e957540000e970ec0400e915680200e9
timestamp: 2022-08-23 16:38:59

Version Info:
0: [No Data]

Zusy.436107 (B) also known as:

MicroWorld-eScan	Gen:Variant.Zusy.436107
FireEye	Generic.mg.47f372fc3762156b
ALYac	Gen:Variant.Zusy.436107
Cylance	Unsafe
VIPRE	Gen:Variant.Zusy.436107
CrowdStrike	win/malicious_confidence_70% (W)
BitDefenderTheta	Gen:NN.ZexaF.34606.DCW@aCEfLwhi
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
ESET-NOD32	a variant of Win32/GenKryptik.FZCA
Cynet	Malicious (score: 100)
Kaspersky	HEUR:Trojan-Spy.Win32.Stealer.gen
BitDefender	Gen:Variant.Zusy.436107
Avast	Win32:CrypterX-gen [Trj]
Ad-Aware	Gen:Variant.Zusy.436107
Emsisoft	Gen:Variant.Zusy.436107 (B)
McAfee-GW-Edition	Artemis
Trapmine	suspicious.low.ml.score
Jiangmin	TrojanSpy.Stealer.abpq
Avira	TR/Kryptik.nhtxl
MAX	malware (ai score=88)
Antiy-AVL	Trojan/Generic.ASMalwS.5123
Microsoft	Trojan:Win32/Wacatac.B!ml
GData	Gen:Variant.Zusy.436107
AhnLab-V3	Trojan/Win.Generic.R512357
McAfee	GenericRXTZ-CS!47F372FC3762
VBA32	BScope.TrojanSpy.Stealer
Malwarebytes	Trojan.Crypt
APEX	Malicious
Rising	Backdoor.Pandora!8.7729 (TFE:5:WzqUAHmZbtR)
SentinelOne	Static AI – Suspicious PE
AVG	Win32:CrypterX-gen [Trj]

How to remove Zusy.436107 (B)?

Zusy.436107 (B) removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X