Zusy.535176 malicious file

The Zusy.535176 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Zusy.535176 virus can do?

Authenticode signature is invalid
Anomalous binary characteristics
Binary compilation timestomping detected

How to determine Zusy.535176?


File Info:
name: 87CAD72ACDB3785B9307.mlw
path: /opt/CAPEv2/storage/binaries/6581b603755b308608bba4cbe7ff324283bc825bce2d5ca0c1d7ca3b850bc2e6
crc32: 0A026A50
md5: 87cad72acdb3785b93078916eb3a4395
sha1: d17591107c4a7b9c5974d0a4b273fd12bc2c32f3
sha256: 6581b603755b308608bba4cbe7ff324283bc825bce2d5ca0c1d7ca3b850bc2e6
sha512: 744ab7d720c679f7b85ac2d9364b1158a489738b54e1a45d2acb00af2ce76834ee21303b4ef8a6b04da4b65a45789be39795fe318abbce42a9a23a39edbfdc80
ssdeep: 3072:062pd4AUHUGJ4t7uOt9UlwBdTBbPvQkhzPAJ7lp6msAO:aOZI/IStBullbs
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1A1F39C0877D8C332E2AD0AFA91E3601503F1BA576572EB4B2DCCA1D51D527819F82B6F
sha3_384: 99f77489f8f641f1816d2e2a27020dfed24367047e10f3d22d86599576a3999428f65029ae4ee7da2cd0697684e35874
ep_bytes: ff250020400000000000000000000000
timestamp: 2069-08-12 22:20:11

Version Info:
Translation: 0x0000 0x04b0
CompanyName: MapHack
FileDescription: MapHack
FileVersion: 1.0.0.0
InternalName: MapHack.dll
LegalCopyright:  
OriginalFilename: MapHack.dll
ProductName: MapHack
ProductVersion: 1.0.0
Assembly Version: 1.0.0.0

Zusy.535176 also known as:

Bkav	W32.AIDetectMalware.CS
Lionic	Trojan.Win32.Generic.4!c
MicroWorld-eScan	Gen:Variant.Zusy.535176
FireEye	Generic.mg.87cad72acdb3785b
Skyhigh	Artemis!Trojan
McAfee	Artemis!87CAD72ACDB3
Cylance	unsafe
Sangfor	Trojan.Win32.Save.a
Cybereason	malicious.07c4a7
BitDefenderTheta	Gen:NN.ZemsilF.36744.km0@aKS1Ebk
Symantec	ML.Attribute.HighConfidence
APEX	Malicious
BitDefender	Gen:Variant.Zusy.535176
Avast	Win32:TrojanX-gen [Trj]
Emsisoft	Gen:Variant.Zusy.535176 (B)
VIPRE	Gen:Variant.Zusy.535176
Trapmine	malicious.moderate.ml.score
Sophos	Generic ML PUA (PUA)
GData	Gen:Variant.Zusy.535176
Google	Detected
Varist	W32/MSIL_Agent.HLN.gen!Eldorado
Arcabit	Trojan.Zusy.D82A88
ALYac	Gen:Variant.Zusy.535176
MAX	malware (ai score=81)
Malwarebytes	Generic.Malware/Suspicious
Panda	Trj/GdSda.A
TrendMicro-HouseCall	TROJ_GEN.R002H09B524
SentinelOne	Static AI – Malicious PE
Fortinet	PossibleThreat
AVG	Win32:TrojanX-gen [Trj]

How to remove Zusy.535176?

Zusy.535176 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X