Malware

What is “Zusy.451934”?

Malware Removal

The Zusy.451934 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Zusy.451934 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • CAPE extracted potentially suspicious content
  • Unconventionial language used in binary resources: Saami
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • CAPE detected the RedLine malware family
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Zusy.451934?



File Info:

name: 7DE02BE8FD70FE57CF21.mlw
path: /opt/CAPEv2/storage/binaries/aeaabcf5ba226eddc4d1b8f589c24d29d283ba0cb75fc40cd33edd0c75817ef8
crc32: 21E5DF83
md5: 7de02be8fd70fe57cf2136afb4d2aa66
sha1: b353fd7d43e4a712147e2bfb0725375f2171c6d3
sha256: aeaabcf5ba226eddc4d1b8f589c24d29d283ba0cb75fc40cd33edd0c75817ef8
sha512: 10290196172726f89eb6bbb652e061c10397afa9e4b4e061493002fcdce229f28243f10463a2ab7f6ae753430e8e49ba887315fe7aa7ed1eb6cb5af5f708abfb
ssdeep: 6144:LZxHYXJMZyKY5zGCoj+1IUKQ4szNJ+ACBDqAXT9TGjFVwja:LZxHYqZyKe/ojQKQ4szNJrO16Hwe
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1B964D02232A05461E5774E319E39D2B45F2FBC534E68679B2274FB2F4D702E2CA61B13
sha3_384: 3998deef993c1b721d53f0ca1bba7e1b07af7f518b10082c5c3c147bd24fcf49cf13300b9462ce8e6f85aeaf773910b9
ep_bytes: e8b4530000e989feffff8bff558bec83
timestamp: 2022-03-08 06:35:19


Version Info:

CompanyName: PakistanFood
FileDescription: Morricone
FileVersion: 25.77.48.49
InternalName: GorgerousOnce.exe
LegalTrademarks1: consultated
ProductName: HypsterWorld
Translation: 0x4047 0x0565

Zusy.451934 also known as:

BkavW32.AIDetectMalware
LionicTrojan.Win32.Convagent.4!c
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Zusy.451934
FireEyeGeneric.mg.7de02be8fd70fe57
CAT-QuickHealTrojan.GenericRI.S30112928
ALYacGen:Variant.Zusy.451934
MalwarebytesTrojan.MalPack.GS
ZillyaTrojan.Kryptik.Win32.4058272
SangforTrojan.Win32.Save.a
K7AntiVirusRiskware ( 0040eff71 )
AlibabaTrojan:Win32/Zenpak.398ce6f9
K7GWTrojan ( 0059f7cb1 )
Cybereasonmalicious.d43e4a
CyrenW32/Agent.FRF.gen!Eldorado
SymantecML.Attribute.HighConfidence
APEXMalicious
Paloaltogeneric.ml
CynetMalicious (score: 100)
KasperskyHEUR:Trojan.Win32.Zenpak.gen
BitDefenderGen:Variant.Zusy.451934
NANO-AntivirusTrojan.Win32.Zenpak.jvhfsi
AvastWin32:CrypterX-gen [Trj]
TencentTrojan.Win32.Obfuscated.gen
EmsisoftGen:Variant.Zusy.451934 (B)
F-SecureHeuristic.HEUR/AGEN.1310247
DrWebTrojan.PWS.Stealer.35767
VIPREGen:Variant.Zusy.451934
TrendMicroTrojan.Win32.PRIVATELOADER.YXDCCZ
McAfee-GW-EditionBehavesLike.Win32.Lockbit.fc
Trapminemalicious.high.ml.score
SophosTroj/Krypt-VE
IkarusTrojan.Win32.Crypt
AviraHEUR/AGEN.1310247
Antiy-AVLTrojan/Win32.Sabsik
ArcabitTrojan.Zusy.D6E55E
ZoneAlarmHEUR:Trojan.Win32.Zenpak.gen
GDataGen:Variant.Zusy.451934
GoogleDetected
AhnLab-V3Trojan/Win.Generic.R560826
McAfeePacked-GEE!7DE02BE8FD70
MAXmalware (ai score=80)
VBA32BScope.Trojan.CoinMiner
Cylanceunsafe
PandaTrj/Genetic.gen
TrendMicro-HouseCallTrojan.Win32.PRIVATELOADER.YXDCCZ
RisingTrojan.Kryptik!8.8 (TFE:5:hLoO4QPArQE)
YandexTrojan.Kryptik!eRX7ifoc9m4
SentinelOneStatic AI – Suspicious PE
FortinetW32/Kryptik.HSXO!tr
AVGWin32:CrypterX-gen [Trj]
DeepInstinctMALICIOUS
CrowdStrikewin/malicious_confidence_100% (W)

How to remove Zusy.451934?

Zusy.451934 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment