Zusy.462736 removal instruction

The Zusy.462736 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Zusy.462736 virus can do?

CAPE extracted potentially suspicious content
Authenticode signature is invalid
Anomalous .NET characteristics
Yara detections observed in process dumps, payloads or dropped files

How to determine Zusy.462736?


File Info:
name: 7EBBD6C2607BEBC428D8.mlw
path: /opt/CAPEv2/storage/binaries/7a97a81bcc91df3c56990e52a1b8762f4c82f1961a7083e8fbaee3ed52b93563
crc32: C2602979
md5: 7ebbd6c2607bebc428d8f4cc878fa34e
sha1: bbe2f608b6389025d68076b5b961428fb3a6ce15
sha256: 7a97a81bcc91df3c56990e52a1b8762f4c82f1961a7083e8fbaee3ed52b93563
sha512: c138f977c88a12a323c21409d08a3300e06bd904a7a0635c1157d29270fba303e34482d6e5a00fe29355f9ca0e5bd13a9fa7ab86fe33b2d3ce28f44acabc7b35
ssdeep: 24576:udEp7HkFau2uhB0Ix8YU+aaqXieBhClRlxtpHpUsaaq/5:D7Hbu2uhBeYU+8eys8
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T198757B172BDD8AD4D17F3AF948A191074771EC066B02C706B93035EAEA72793EDC264E
sha3_384: a526ebcd1f76cd2a2b3feb570434386f2a84535a296b4cde1541d4ab8887952a4aae01768982c98ea3061e50bf808548
ep_bytes: ff250020400000000000000000000000
timestamp: 2022-09-05 13:13:11

Version Info:
Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: '
FileVersion: 1.0.0.0
InternalName: Launcher.exe
LegalCopyright: 
OriginalFilename: Launcher.exe
ProductName: 
ProductVersion: 1.0.0.0
Assembly Version: 0.0.0.0

Zusy.462736 also known as:

Bkav	W32.AIDetectMalware.CS
Lionic	Trojan.Win32.DllInject.4!c
MicroWorld-eScan	Gen:Variant.Zusy.462736
FireEye	Gen:Variant.Zusy.462736
Skyhigh	Artemis!Trojan
McAfee	Artemis!7EBBD6C2607B
Cylance	unsafe
Sangfor	Trojan.Win32.Save.a
K7AntiVirus	Unwanted-Program ( 0058c0401 )
K7GW	Unwanted-Program ( 0058c0401 )
BitDefenderTheta	Gen:NN.ZemsilF.36744.On0@a4mtIIp
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (moderate confidence)
ESET-NOD32	a variant of MSIL/DllInject.ARJ potentially unsafe
Cynet	Malicious (score: 100)
BitDefender	Gen:Variant.Zusy.462736
Avast	Win32:MiscX-gen [PUP]
Emsisoft	Gen:Variant.Zusy.462736 (B)
VIPRE	Gen:Variant.Zusy.462736
Sophos	Mal/Generic-R
Ikarus	PUA.MSIL.Dllinject
GData	Gen:Variant.Zusy.462736
Google	Detected
Antiy-AVL	RiskWare/MSIL.DllInject
Arcabit	Trojan.Zusy.D70F90
Microsoft	Program:Win32/Wacapew.C!ml
ALYac	Gen:Variant.Zusy.462736
MAX	malware (ai score=81)
Malwarebytes	DllInjector.Trojan.Injector.DDS
TrendMicro-HouseCall	TROJ_GEN.R002H09AA24
Rising	PUA.DllInject!8.6CC (CLOUD)
Yandex	Riskware.Agent!+5pEDD/qnDQ
SentinelOne	Static AI – Suspicious PE
MaxSecure	Trojan.Malware.187737063.susgen
Fortinet	Adware/DllInject
AVG	Win32:MiscX-gen [PUP]
DeepInstinct	MALICIOUS
CrowdStrike	win/malicious_confidence_60% (W)

How to remove Zusy.462736?

Zusy.462736 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X