Malware

Zusy.536569 (file analysis)

Malware Removal

The Zusy.536569 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Zusy.536569 virus can do?

  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid
  • Binary compilation timestomping detected

How to determine Zusy.536569?



File Info:

name: 00C6D97E10CB17E06B80.mlw
path: /opt/CAPEv2/storage/binaries/f50c2cd4b1c5b4bf93d510015ed2d33b0097689dd04b4e3303939bd9f1d68888
crc32: C0B73246
md5: 00c6d97e10cb17e06b8037539b76d07b
sha1: 8bb2fafa7501506c58d6ace56a36875eb990139e
sha256: f50c2cd4b1c5b4bf93d510015ed2d33b0097689dd04b4e3303939bd9f1d68888
sha512: 7d9fdc89ea0309d49fbad7cd6d9d6d5f39e7c78696f0371c745fad432abfeee077dbddfda18ec3e83c2d0ca4500b1ddc1263c182d7ede0c95788434578b2428c
ssdeep: 49152:aLrGgJ9yeSazLpm8bprn4CEtlQHWJOZu0ShufZ:6J9yBazLpm8bprn4CEtlOLZ
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T14F36E501339C9F59E03EA739946141B147F2ED06D362CB4FBCD638C96E31F854A96B2A
sha3_384: 670634e79bbbde18c909e7bfdfe74721b2c0377e62edec40409109e20415f21f2bef97d436028468bde0001602921c0e
ep_bytes: ff250020400000000000000000000000
timestamp: 2083-10-15 08:34:02


Version Info:

Translation: 0x0000 0x04b0
Comments: Contabilidad, Nómina, IVA, Renta.
CompanyName: Soft.Cox
FileDescription: Programa de Contabilidad
FileVersion: 3.8.6.9
InternalName: Programa de Contabilidad.exe
LegalCopyright: Copyright ©  2023 Soft Cox
LegalTrademarks: 
OriginalFilename: Programa de Contabilidad.exe
ProductName: Programa de Contabilidad
ProductVersion: 3.8.6.9
Assembly Version: 3.8.0.8

Zusy.536569 also known as:

LionicTrojan.Win32.Generic.4!c
MicroWorld-eScanGen:Variant.Zusy.536569
FireEyeGen:Variant.Zusy.536569
SkyhighArtemis
McAfeeArtemis!00C6D97E10CB
Cylanceunsafe
ArcabitTrojan.Zusy.D82FF9
BitDefenderGen:Variant.Zusy.536569
VIPREGen:Variant.Zusy.536569
EmsisoftGen:Variant.Zusy.536569 (B)
Antiy-AVLTrojan/Win32.Wacatac
MicrosoftTrojan:Win32/Wacatac.B!ml
GDataGen:Variant.Zusy.536569
GoogleDetected
ALYacGen:Variant.Zusy.536569
MAXmalware (ai score=88)
MalwarebytesGeneric.Malware/Suspicious
PandaTrj/Chgt.AD
TrendMicro-HouseCallTROJ_GEN.R002H09B724
IkarusTrojan.IL.MSILZilla
MaxSecureTrojan.Malware.231427263.susgen
DeepInstinctMALICIOUS

How to remove Zusy.536569?

Zusy.536569 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment