Malware

Should I remove “Zusy.530837”?

Malware Removal

The Zusy.530837 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Zusy.530837 virus can do?

  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • CAPE detected the shellcode get eip malware family
  • Yara detections observed in process dumps, payloads or dropped files

How to determine Zusy.530837?



File Info:

name: 37ED12570D31A1BD6372.mlw
path: /opt/CAPEv2/storage/binaries/8bf3bfa24e92e71f555b50b385c34161f1aeceaa0e05a9e100f9b9d245f8bd7a
crc32: 59F5D9AB
md5: 37ed12570d31a1bd6372eedd064649e5
sha1: 876f5d246b877f663bc4772439e9795bd6ee2115
sha256: 8bf3bfa24e92e71f555b50b385c34161f1aeceaa0e05a9e100f9b9d245f8bd7a
sha512: 2f0833fcc3528741ea238e29eb4fb79507adc4cf6c53f51dfa861e1ae8c2e4e574ae98cda9cbb28b41c3b06aec5a3bc0d1ca8339d8a3ff4cbe7f2eda5031a288
ssdeep: 98304:UIyvxWpG7neYlEnz6DKhOLmMIXR5V05m2bjdT0Prhj9ATnNbHU41Ma1UVEQ:Utp0G7nxEnz6Khw20JdKAbP51UW
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
tlsh: T14796AE467A53E0FAC95B55F1311A6B38293D1B1087210CEBC786EFB829F39D21E3592D
sha3_384: 3377e2304cfcb680377af2fd152400d60ff032ff2800a88158a62bd62b224e48b9f79bf265e64d862720187cda90c893
ep_bytes: b8ff0000008b1d8fe68420f7c3000100
timestamp: 2023-12-01 11:38:48


Version Info:

0: [No Data]

Zusy.530837 also known as:

BkavW32.Common.EC753B33
LionicTrojan.Win32.Generic.4!c
MicroWorld-eScanGen:Variant.Zusy.530837
FireEyeGen:Variant.Zusy.530837
SkyhighBehavesLike.Win32.Dropper.rm
SangforTrojan.Win32.Zusy.V8zy
BitDefenderThetaGen:NN.ZedlaF.36802.@V4@aWdgfQoi
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
TrendMicro-HouseCallTROJ_GEN.R002H09LO23
BitDefenderGen:Variant.Zusy.530837
AvastWin32:Malware-gen
F-SecureTrojan.TR/Spy.Gen2
VIPREGen:Variant.Zusy.530837
EmsisoftGen:Variant.Zusy.530837 (B)
ALYacGen:Variant.Zusy.530837
VaristW32/Zusy.TR.gen!Eldorado
AviraTR/Spy.Gen2
Antiy-AVLTrojan/Win32.Wacatac
MicrosoftTrojan:Win32/Wacatac.B!ml
ArcabitTrojan.Zusy.D81995
GDataGen:Variant.Zusy.530837
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win.Generic.R627603
GoogleDetected
MAXmalware (ai score=80)
Cylanceunsafe
PandaTrj/Chgt.AD
IkarusTrojan.Spy
FortinetW32/PossibleThreat
AVGWin32:Malware-gen
DeepInstinctMALICIOUS
alibabacloudTrojan[spy]:Win/Zusy

How to remove Zusy.530837?

Zusy.530837 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment