Zusy.494313 (file analysis)

The Zusy.494313 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Zusy.494313 virus can do?

The binary likely contains encrypted or compressed data.
Authenticode signature is invalid

How to determine Zusy.494313?


File Info:
name: 0847F071D8330CE0E563.mlw
path: /opt/CAPEv2/storage/binaries/e5950907810ed596d71f9090d5ad9d14a5ad6614b2e50b2249e90b5a71c2bfe6
crc32: EC32073D
md5: 0847f071d8330ce0e563da375d03be25
sha1: 63407827e5494d89b77d1ba12d16dc14a021e3fd
sha256: e5950907810ed596d71f9090d5ad9d14a5ad6614b2e50b2249e90b5a71c2bfe6
sha512: 470f9cb7b506737115213faa53302e1e1ac7d31cf2dd6f47eb59daee7023dc5d86030e952cd86e91535e909348049ec06fa023abcb8555739776e97fb3ced340
ssdeep: 6144:IlX9mNBsykoKiyHHQf1jorqMyigeSs/YFB7UxmR3TlcFmfTDtIJF/B2pjjnP:MDWFBQxUlT9I/Sjjn
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
tlsh: T1E344E1EF96851496C9B2DD7D1B52D21D97A18A30CB58E0C37C948F0E4E73A8502EFF1A
sha3_384: 49aeef9a3440e5f910f13e5321f569c80f883ca9590274cd2d46a47baa1eaf2acd527e9faa30dbbc66dba2bb022b4da4
ep_bytes: 558bec538b5d08568b750c85f6578b7d
timestamp: 2001-01-26 13:40:28

Version Info:
CompanyName: Microsoft Corporation
FileDescription: Visual Studio Environment Command definition DLL
FileVersion: 7.00.9064.9122
InternalName: cmddef.dll
LegalCopyright: Copyright (C) Microsoft Corp. 1992-2001
OriginalFilename: cmddef.dll
ProductName: Microsoft Development Environment
ProductVersion: 7.00.9064.9122
Translation: 0x0409 0x04b0

Zusy.494313 also known as:

Bkav	W32.AIDetectMalware
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Zusy.494313
FireEye	Generic.mg.0847f071d8330ce0
Cylance	unsafe
Sangfor	Suspicious.Win32.Save.ins
VirIT	Win32.Senoval.A
Symantec	ML.Attribute.HighConfidence
APEX	Malicious
Avast	Win32:Patched-AWW [Trj]
Kaspersky	Virus.Win32.Senoval.a
BitDefender	Gen:Variant.Zusy.494313
NANO-Antivirus	Virus.Win32.Gen-Crypt.ccnc
Tencent	Trojan.Win32.Pathced_ya.16001052
Emsisoft	Gen:Variant.Zusy.494313 (B)
DrWeb	Win32.Beetle.4
VIPRE	Gen:Variant.Zusy.494313
Sophos	Mal/Generic-S
Ikarus	Trojan.Win32.Patched
Google	Detected
Varist	W32/Senoval.C.gen!Eldorado
Antiy-AVL	Trojan/Win32.Patched
Kingsoft	malware.kb.a.881
Microsoft	Trojan:Win32/Doina.RPX!MTB
Arcabit	Trojan.Zusy.D78AE9
ZoneAlarm	Virus.Win32.Senoval.a
GData	Gen:Variant.Zusy.494313
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win.Doina.R608155
ALYac	Gen:Variant.Zusy.494313
MAX	malware (ai score=86)
AVG	Win32:Patched-AWW [Trj]
alibabacloud	Virus:Win/Doina.RXF2XJC

How to remove Zusy.494313?

Zusy.494313 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X