Malware

Cerbu.108652 removal tips

Malware Removal

The Cerbu.108652 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Cerbu.108652 virus can do?

  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid
  • Binary compilation timestomping detected

How to determine Cerbu.108652?



File Info:

name: 312D4056C9C129755DFD.mlw
path: /opt/CAPEv2/storage/binaries/4c85de5658c401f4e0976b2a9b1dddfad6147dd025cbc9fa6c5f925acce1a26a
crc32: 66C5A40E
md5: 312d4056c9c129755dfd47e7593d4bef
sha1: 6afd7ba5fa8976fd22fd1f1441854ee61f743084
sha256: 4c85de5658c401f4e0976b2a9b1dddfad6147dd025cbc9fa6c5f925acce1a26a
sha512: c2519ba115eae41f2dc19fe425e81d6504fa453693654e0c5392743d983824c300645b775941ec6477d388e8c2e8b2b9c1afaacb886a840abe7970924a8036ad
ssdeep: 48:6gaNtLeR2TxSHEqaPKsk3BVXnhIBo7hISNMBc+0Ma9AP7zbO/it1PlPvP7FYvpfG:q6RgxIoYBHH7sVXz1dv6BzNt
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T179B1B71957D8C337EA768770D87353412778F3509D678B6C28C8A22B7D27A284B23B61
sha3_384: c6a60473c3830a4b24adff11f161ca12858732855a9efefa62ba2a92ceff39d199a6936cc4eb782e7bb731443f0a3c2b
ep_bytes: ff250020400000000000000000000000
timestamp: 2069-04-20 12:40:19


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: FUD
FileVersion: 1.0.0.0
InternalName: FUD.exe
LegalCopyright: Copyright ©  2021
LegalTrademarks: 
OriginalFilename: FUD.exe
ProductName: FUD
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Cerbu.108652 also known as:

Elasticmalicious (high confidence)
CynetMalicious (score: 100)
MalwarebytesTrojan.Crypt.MSIL
ZillyaDownloader.Tiny.Win32.23995
K7AntiVirusTrojan-Downloader ( 0058e52e1 )
K7GWTrojan-Downloader ( 0058e52e1 )
Cybereasonmalicious.6c9c12
CyrenW32/MSIL_Agent.CJK.gen!Eldorado
ESET-NOD32a variant of MSIL/TrojanDownloader.Tiny.BNJ
APEXMalicious
KasperskyHEUR:Trojan.MSIL.DOTHETUK.gen
BitDefenderGen:Variant.Cerbu.108652
MicroWorld-eScanGen:Variant.Cerbu.108652
AvastWin32:RATX-gen [Trj]
EmsisoftGen:Variant.Cerbu.108652 (B)
F-SecureHeuristic.HEUR/AGEN.1313765
DrWebTrojan.DownLoaderNET.599
VIPREGen:Variant.Cerbu.108652
FireEyeGeneric.mg.312d4056c9c12975
IkarusTrojan-Downloader.MSIL.Small
AviraHEUR/AGEN.1313765
MicrosoftTrojanDownloader:MSIL/Small.SIBA!MTB
ArcabitTrojan.Cerbu.D1A86C
ZoneAlarmHEUR:Trojan.MSIL.DOTHETUK.gen
GDataGen:Variant.Cerbu.108652
GoogleDetected
AhnLab-V3Trojan/Win.Generic.R477996
ALYacGen:Variant.Cerbu.108652
MAXmalware (ai score=85)
RisingDownloader.Small!8.B41 (TFE:dGZlOgxsjLdbxtGhAg)
SentinelOneStatic AI – Suspicious PE
FortinetMSIL/Small.CNG!tr.dldr
BitDefenderThetaGen:NN.ZemsilCO.36196.am0@aiPYcqj
AVGWin32:RATX-gen [Trj]
DeepInstinctMALICIOUS
CrowdStrikewin/malicious_confidence_90% (D)

How to remove Cerbu.108652?

Cerbu.108652 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment