Malware

Zusy.491867 removal guide

Malware Removal

The Zusy.491867 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Zusy.491867 virus can do?

  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Zusy.491867?



File Info:

name: C0D51664D4A0FC2E5676.mlw
path: /opt/CAPEv2/storage/binaries/e0db061c41febd23152c0bed208f312f175ad27b4f706b1a442f774d6b407d3a
crc32: 9E7C159D
md5: c0d51664d4a0fc2e5676a0ef3cc98cc9
sha1: 6b3ec64f11c3a9d38598a8e6e81e3922ee60d078
sha256: e0db061c41febd23152c0bed208f312f175ad27b4f706b1a442f774d6b407d3a
sha512: 6b9e4b7e547fff5051e979f6d0b41e23d5df715a08ac2a18acf17b3cefed4f6f4dc8c97ec2b68a94e6adcb6e645df0d0d5ef965d5c4061b9b15d46d7fbe923b4
ssdeep: 3072:cr7cj66rUPSHJpode3ZnsPC4PuCie2TMifX:LtrUwIe3ZnV4Lie2TMif
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T123F30860B6E10279E8F225B156BC735416BEB9672B11E3CF47600B9B98607C1DD383EB
sha3_384: 83862cf91f6b330f032ef7ecbdf620431dfda7e05108cbbbfc6071352949243c740dd4b204d39ed8be0f10ea121124be
ep_bytes: 6a7068d8160001e8420200008d458050
timestamp: 2005-01-28 09:26:26


Version Info:

CompanyName: Microsoft Corporation
FileDescription: Windows Media Player Launcher
FileVersion: 10.00.00.3802
InternalName: WMLaunch.exe
LegalCopyright: (C) Microsoft Corporation.  All rights reserved.
OriginalFilename: WMLaunch.exe
ProductName: Microsoft(R) Windows Media Player
ProductVersion: 10.00.00.3802
Translation: 0x0409 0x04b0

Zusy.491867 also known as:

BkavW32.AIDetectMalware
LionicTrojan.Win32.Generic.4!c
tehtrisGeneric.Malware
MicroWorld-eScanGen:Variant.Zusy.491867
FireEyeGeneric.mg.c0d51664d4a0fc2e
SkyhighBehavesLike.Win32.BadFile.cm
ALYacGen:Variant.Zusy.491867
SangforTrojan.Win32.Zusy.Vhxu
ArcabitTrojan.Zusy.D7815B
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
APEXMalicious
BitDefenderGen:Variant.Zusy.491867
EmsisoftGen:Variant.Zusy.491867 (B)
VIPREGen:Variant.Zusy.491867
Kingsoftmalware.kb.a.917
MicrosoftTrojan:Win32/Wacatac.B!ml
GDataGen:Variant.Zusy.491867
McAfeeArtemis!C0D51664D4A0
MAXmalware (ai score=88)
PandaTrj/Chgt.AD
TrendMicro-HouseCallTROJ_GEN.R002H09KE23
Cybereasonmalicious.f11c3a
DeepInstinctMALICIOUS

How to remove Zusy.491867?

Zusy.491867 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment