About “Zusy.505764” infection

The Zusy.505764 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Zusy.505764 virus can do?

The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Zusy.505764?


File Info:
name: 3316752BCF5570CABCA2.mlw
path: /opt/CAPEv2/storage/binaries/a839741a8aeb7ff08889f7d5bcdf543c350746c2fb82354810e9ad2b83dbaba7
crc32: C9AFA0FC
md5: 3316752bcf5570cabca2ad2a58b1eab1
sha1: 63cbdd82c6332252e5f2d5de9200dcdff0e4c460
sha256: a839741a8aeb7ff08889f7d5bcdf543c350746c2fb82354810e9ad2b83dbaba7
sha512: 7917322bd79a643726f39e29d0f502d2e237127dab9b1242168ea8b20a4418e7c9920d8ecd58bd623ffe22ce863b553f43fa1b287e92fb77facab429c5224a6f
ssdeep: 384:Savl7Zd55pinzEtXQjmn7HgjDIKFwPhd64IAByD215i:SavpZTTizENQi7AwKUhQUByDx
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1E0030711B240C437F8EA10FFDAFE4DB5492C9D381B5A91D761C745E92AA06DB2036B8B
sha3_384: a53503eff67a3e303ba93dcd55f245122809e29901440e6e5aa82adabab195a899f5d7a53de4dd3c54091c94d71efdbb
ep_bytes: e9380f0000e9903e0000e96e390000e9
timestamp: 2023-08-08 14:29:49

Version Info:
0: [No Data]

Zusy.505764 also known as:

Bkav	W32.AIDetectMalware
DrWeb	Trojan.DownLoader.origin
MicroWorld-eScan	Gen:Variant.Zusy.505764
FireEye	Generic.mg.3316752bcf5570ca
Skyhigh	BehavesLike.Win32.Generic.nt
McAfee	Artemis!3316752BCF55
Cylance	unsafe
VIPRE	Gen:Variant.Zusy.505764
Sangfor	Suspicious.Win32.Save.a
CrowdStrike	win/malicious_confidence_90% (W)
Arcabit	Trojan.Zusy.D7B7A4
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
Cynet	Malicious (score: 100)
BitDefender	Gen:Variant.Zusy.505764
Avast	Win32:MalwareX-gen [Trj]
Emsisoft	Gen:Variant.Zusy.505764 (B)
SentinelOne	Static AI – Malicious PE
Varist	W32/Fugrafa.G.gen!Eldorado
Antiy-AVL	Trojan/Win32.Wacatac
Microsoft	Trojan:Win32/Wacatac.B!ml
GData	Gen:Variant.Zusy.505764
Google	Detected
VBA32	BScope.TrojanDownloader.Small
ALYac	Gen:Variant.Zusy.505764
MAX	malware (ai score=83)
Malwarebytes	Generic.Malware/Suspicious
Panda	Trj/Chgt.AD
TrendMicro-HouseCall	TROJ_GEN.R03BH09JM23
Rising	Trojan.Generic@AI.100 (RDML:Yt+ID/NdxD5R46fdRkvUCg)
Ikarus	Trojan.Win32.Rozena
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W32/Agent.5904!tr
AVG	Win32:MalwareX-gen [Trj]
DeepInstinct	MALICIOUS

How to remove Zusy.505764?

Zusy.505764 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X