Malware

Cerbu.111215 removal instruction

Malware Removal

The Cerbu.111215 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Cerbu.111215 virus can do?

  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine Cerbu.111215?



File Info:

crc32: 7A8FEA74
md5: e5a56feba03a4c965880183f157494bc
name: E5A56FEBA03A4C965880183F157494BC.mlw
sha1: c05b0efe434e6653040e3df504ec02179f4de49c
sha256: 407e928acd2b6c9483b3f64e1862f030a3e859f849034d8cba64eef518fea971
sha512: 3b41434de609f49147b891fea72cc98de7ff109af09a3a66011bfde861f445d65b26bedffcb22112646b19ff899d675ba7e5753d1334c3f35f7649970d2533e1
ssdeep: 96:XX0/V1Ip2w7Is6IlqBy8Lr9yLFMsyRekL3LWze/J7K8PmrpwBnSALI0zNt:QI3J5l0ZLrYL690kL3LI6FK8emBnFv
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows


Version Info:

Translation: 0x0000 0x04b0
LegalCopyright: Copyright xa9  2021
Assembly Version: 1.1.0.0
InternalName: WindowsFormsApplication49.exe
FileVersion: 1.1.0.0
CompanyName: 
LegalTrademarks: 
Comments: 
ProductName: WindowsFormsApplication10
ProductVersion: 1.1.0.0
FileDescription: WindowsFormsApplication10
OriginalFilename: WindowsFormsApplication49.exe

Cerbu.111215 also known as:

Elasticmalicious (high confidence)
ALYacGen:Variant.Cerbu.111215
CyrenW32/MSIL_Kryptik.EHH.gen!Eldorado
SymantecMSIL.Downloader!gen7
ESET-NOD32a variant of MSIL/TrojanDownloader.Agent.IOQ
APEXMalicious
AvastFileRepMalware
KasperskyHEUR:Trojan-PSW.MSIL.Agensla.gen
BitDefenderGen:Variant.Cerbu.111215
MicroWorld-eScanGen:Variant.Cerbu.111215
Ad-AwareGen:Variant.Cerbu.111215
BitDefenderThetaGen:NN.ZemsilCO.34088.am0@aWuiO9i
McAfee-GW-EditionArtemis!Trojan
FireEyeGen:Variant.Cerbu.111215
EmsisoftGen:Variant.Cerbu.111215 (B)
KingsoftWin32.PSWTroj.Undef.(kcloud)
MicrosoftBackdoor:Win32/Bladabindi!ml
ArcabitTrojan.Bulz.D96E92
GDataGen:Variant.Cerbu.111215
AhnLab-V3Trojan/Win.Tnega.C4597945
McAfeeArtemis!E5A56FEBA03A
MAXmalware (ai score=88)
PandaTrj/GdSda.A
IkarusTrojan-Downloader.MSIL.Small
MaxSecureTrojan.Malware.300983.susgen
FortinetMSIL/Agent.INQ!tr.dldr
AVGFileRepMalware

How to remove Cerbu.111215?

Cerbu.111215 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment