Malware

Zusy.540226 removal

Malware Removal

The Zusy.540226 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Zusy.540226 virus can do?

  • Sample contains Overlay data
  • Presents an Authenticode digital signature
  • CAPE extracted potentially suspicious content
  • .NET file is packed/obfuscated with Confuser
  • Authenticode signature is invalid
  • Binary file triggered YARA rule
  • Anomalous binary characteristics
  • Binary compilation timestomping detected

How to determine Zusy.540226?



File Info:

name: DC45F08A1D4FBD9E9591.mlw
path: /opt/CAPEv2/storage/binaries/5bf4ff9254bec4ffea49c190a93d8409db19856c9d82ebe8b9f50ec678985767
crc32: CA32F7FD
md5: dc45f08a1d4fbd9e959117c4dc27b7fc
sha1: 2003f144d358de4aa73e2200c98e3dd3be6cb955
sha256: 5bf4ff9254bec4ffea49c190a93d8409db19856c9d82ebe8b9f50ec678985767
sha512: 18c96e7a51548600ae4941cb209b9a91f9581ddb5d6438b39cc0d4bf5fe85c3e026c0e9b681a9173b1e2394ba572e8c0eee49f0087b7094909220b33457e9aad
ssdeep: 6144:etVIV1Zr1wd56jdNCLlgH/kO7URfUBWt90SX7nIciS5AbeG0jktWj54zaXQS:k81ZskdNCLlgH/kO7URfUBWt90SX7IZm
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1A74462DC765075DFC817C972C9A82CA4FA6064BBA34B8203A4132AEE9D4D997CF151F3
sha3_384: fa48f82d8ff6554e166fdc7d08e6fb44bde120149f1591521d625ebdd51ecf6b1af10d0e24ead4b02e311080c0e48d4a
ep_bytes: ff250020400000000000000000000000
timestamp: 2075-12-01 17:12:29


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: SteamSpeed
FileVersion: 2024.3.14.2042
InternalName: SteamSpeed.exe
LegalCopyright: 蓝泡子版权所有 ©
LegalTrademarks: 
OriginalFilename: SteamSpeed.exe
ProductName: SteamSpeed
ProductVersion: 2024.3.14.2042
Assembly Version: 2024.3.14.2042

Zusy.540226 also known as:

BkavW32.Common.7CA3F00B
Elasticmalicious (moderate confidence)
MicroWorld-eScanGen:Variant.Zusy.540226
FireEyeGeneric.mg.dc45f08a1d4fbd9e
McAfeeArtemis!DC45F08A1D4F
MalwarebytesGeneric.Malware/Suspicious
VIPREGen:Variant.Zusy.540226
VirITTrojan.Win32.MSIL_Heur.A
SymantecTrojan.Gen.MBT
APEXMalicious
BitDefenderGen:Variant.Zusy.540226
Antiy-AVLTrojan/Win32.Agent
ArcabitTrojan.Zusy.D83E42
MicrosoftProgram:Win32/Wacapew.C!ml
GoogleDetected
ALYacGen:Variant.Zusy.540226
MAXmalware (ai score=87)
DeepInstinctMALICIOUS
Cylanceunsafe
MaxSecureTrojan.Malware.237106521.susgen
FortinetPossibleThreat

How to remove Zusy.540226?

Zusy.540226 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment