Malware

Zusy.436586 removal instruction

Malware Removal

The Zusy.436586 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Zusy.436586 virus can do?

  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary contains an unknown PE section name indicative of packing
  • The executable is compressed using UPX
  • Authenticode signature is invalid

How to determine Zusy.436586?



File Info:

name: FD207BD7C78559D60501.mlw
path: /opt/CAPEv2/storage/binaries/0821f105a91e72b4b8e2fab85b003c75a93bd7ae0e92271ce92cebc4149bed2f
crc32: 5CC5891D
md5: fd207bd7c78559d605018291e5303739
sha1: 54060e8272dd2091e0c9968309f63998f6eb4e38
sha256: 0821f105a91e72b4b8e2fab85b003c75a93bd7ae0e92271ce92cebc4149bed2f
sha512: 40fc44047b75c04a185029e38b78c970d16103922ba17af5d169a5e8200dc936bc3769a07fa3a725533e9c5549170c8bab8fc6fe676008289a0976a0624135a6
ssdeep: 3072:nXwePVXz5+21GsLo3OThQ15muiReW34Y+:geJzA1sLp+15mnIY+
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T12164E50272EAA41EE5B2B7B05FF6C3B58B33FD25A633821F3194151F6D61A805E21772
sha3_384: 5c8d2576d395d59e0964389dc34aa9ec8c9dc520b21c580ed60232b9f1db77d811ddd50f5d4492820dbabe43f59c7732
ep_bytes: 60be00d047008dbe0040f8ff57eb0b90
timestamp: 2012-01-29 21:32:28


Version Info:

FileVersion: 8.8.0.0
Comments: Easyfast-S
FileDescription: Easyfast-S
LegalCopyright: Copyright (C) 2010-2021 tooyk.com All rights reserved.
Productname: Easyfast
ProductVersion: 8.8
Translation: 0x0804 0x04b0

Zusy.436586 also known as:

MicroWorld-eScanGen:Variant.Zusy.436586
FireEyeGeneric.mg.fd207bd7c78559d6
McAfeeArtemis!FD207BD7C785
CylanceUnsafe
SangforVirus.Win32.Save.a
K7AntiVirusTrojan ( 700000111 )
K7GWTrojan ( 700000111 )
Cybereasonmalicious.272dd2
Elasticmalicious (moderate confidence)
APEXMalicious
CynetMalicious (score: 100)
BitDefenderGen:Variant.Zusy.436586
AvastWin32:Evo-gen [Trj]
Ad-AwareGen:Variant.Zusy.436586
SophosGeneric ML PUA (PUA)
ComodoPacked.Win32.MUPX.Gen@24tbus
McAfee-GW-EditionBehavesLike.Win32.AdwareFileTour.fz
Trapminemalicious.moderate.ml.score
EmsisoftGen:Variant.Zusy.436586 (B)
SentinelOneStatic AI – Malicious PE
GDataGen:Variant.Zusy.436586
AviraHEUR/AGEN.1214978
Antiy-AVLTrojan/Generic.ASMalwS.330C
MicrosoftTrojan:Win32/Wacatac.B!ml
GoogleDetected
AhnLab-V3Malware/Win.Generic.R507965
BitDefenderThetaGen:NN.ZexaF.34606.um0@aiI!ljcj
MAXmalware (ai score=85)
MalwarebytesMalware.AI.392875563
IkarusTrojan-Downloader.Win32.Genome
FortinetW32/ULPM.16C0!tr
AVGWin32:Evo-gen [Trj]
CrowdStrikewin/malicious_confidence_70% (D)

How to remove Zusy.436586?

Zusy.436586 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment