Cerbu.124768 (B) malicious file

The Cerbu.124768 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Cerbu.124768 (B) virus can do?

Dynamic (imported) function loading detected
CAPE extracted potentially suspicious content
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid

How to determine Cerbu.124768 (B)?


File Info:
name: 922A33D6C96A39886526.mlw
path: /opt/CAPEv2/storage/binaries/dd6f5b6554dbf5f21c9551a5e4f0df2ef2eabf6750f90a23d1b18c93c00d0dcc
crc32: C4C46786
md5: 922a33d6c96a39886526200fdf12646a
sha1: 657722e097e6e0b8891def7df882bd5510fb954a
sha256: dd6f5b6554dbf5f21c9551a5e4f0df2ef2eabf6750f90a23d1b18c93c00d0dcc
sha512: 5162904564c0e21dd122f6f148d11aa33ae64801921b72ebb7f0db0ca19c20530b8ba79be4128c9dbb58356c660c4e7ad726aff719f8b7001391138591369664
ssdeep: 3072:1zlTuIbyub3JPIzkD8usN0/0UUrNQRq9Gq/2WaKNb+cq4K9GrLFbocWU:1VJPb3JPIYDlsNxUUrNeSkWN+r9Ibo
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1B8349D77116594A7C14D1B35E4A10F0B7678D6381A80F399F44BB3EADC0D38D8AF93AA
sha3_384: 5a756566714122976e93d0b58a11c8829485b3d2ce0ef406f205f3316c25a396f4baa85e6c48a4f5575e71db119078ae
ep_bytes: ff250020400000000000000000000000
timestamp: 2021-12-03 08:50:08

Version Info:
Comments: jmseifesfo
CompanyName: jmseifesfo
FileDescription: jmseifesfo
FileVersion: 1.0.0.0
InternalName: jmseifesfo.exe
LegalCopyright: 
LegalTrademarks: 
OriginalFilename: jmseifesfo.exe
ProductName: jmseifesfo
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0
Translation: 0x0000 0x04b0

Cerbu.124768 (B) also known as:

Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Cerbu.124768
FireEye	Generic.mg.922a33d6c96a3988
McAfee	Artemis!922A33D6C96A
Cylance	Unsafe
Sangfor	Suspicious.Win32.Save.a
K7AntiVirus	Trojan ( 0058b4801 )
Cybereason	malicious.097e6e
BitDefenderTheta	Gen:NN.ZemsilF.34062.pm0@aut0TYo
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of MSIL/GenKryptik.FOIW
Kaspersky	HEUR:Trojan-PSW.MSIL.Agent.gen
BitDefender	Gen:Variant.Cerbu.124768
Avast	Win32:Trojan-gen
Tencent	Msil.Trojan-qqpass.Qqrob.Hqbi
Ad-Aware	Gen:Variant.Cerbu.124768
McAfee-GW-Edition	BehavesLike.Win32.Generic.dc
Emsisoft	Gen:Variant.Cerbu.124768 (B)
eGambit	Unsafe.AI_Score_99%
Avira	HEUR/AGEN.1136806
MAX	malware (ai score=82)
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
GData	Gen:Variant.Cerbu.124768
Cynet	Malicious (score: 99)
VBA32	CIL.HeapOverride.Heur
ALYac	Gen:Variant.Cerbu.124768
Malwarebytes	Trojan.Dropper
APEX	Malicious
SentinelOne	Static AI – Malicious PE
MaxSecure	Trojan.Malware.300983.susgen
Webroot	W32.Trojan.Gen
AVG	Win32:Trojan-gen
Panda	Trj/GdSda.A
CrowdStrike	win/malicious_confidence_80% (D)

How to remove Cerbu.124768 (B)?

Cerbu.124768 (B) removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X