Malware

Cerbu.128910 removal guide

Malware Removal

The Cerbu.128910 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
6-day free trial available.

What Cerbu.128910 virus can do?

  • Unconventionial language used in binary resources: Korean
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Cerbu.128910?


File Info:

name: E70905BB7C7CAA20C3DC.mlw
path: /opt/CAPEv2/storage/binaries/2e047dc46510c68e7c52c1b02aab5d9af65e34656ede1dfe5515aa4649fe1cb7
crc32: C88C0860
md5: e70905bb7c7caa20c3dc7e11e8740390
sha1: f7527ebec9f6ffe0e4ddaebdab7bb0c37e16b9d3
sha256: 2e047dc46510c68e7c52c1b02aab5d9af65e34656ede1dfe5515aa4649fe1cb7
sha512: bd78233cde15a113e8cd1cc7468768aacc9ece7e7277bb6bb5a188aad6dc304c75bef9e1daf3dae8f215ef5deba4e6387a39893f5d7289fbcbfe21bea16e419b
ssdeep: 98304:VSEdn+CsHe0FenkQOKfiJnfXUYPt5xf2IATIxCE6S5tAI2pHa1xYlF3WVikdnbiO:/n+L5/tzPEERm2ekdnb
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T162D69D10F7C283B5D9CBA6B546BE7A2D17F9E7540B3409C3D1852A1EEA763E21E321C1
sha3_384: 3b1ac6cdb1178e72cfc9a06f511569ebe1f50818220ac88f2fd89cf2013bb6512b552d53f68940ec579031a1ab944588
ep_bytes: e9bcc20300e955564200e9f3b01d00e9
timestamp: 2012-09-05 05:39:48

Version Info:

FileDescription: CABAL Online
FileVersion: 1.0.0.374
InternalName: Snake
LegalCopyright: Copyright (C) 2004
OriginalFilename: Snake.exe
ProductName: Snake Application
ProductVersion: 1. 0. 0. 9000
Translation: 0x0412 0x04b0

Cerbu.128910 also known as:

BkavW32.AIDetect.malware2
MicroWorld-eScanGen:Variant.Cerbu.128910
VIPREGen:Variant.Cerbu.128910
SangforSuspicious.Win32.Save.ins
VirITTrojan.Win32.X-Mazzec.L
Elasticmalicious (high confidence)
BitDefenderGen:Variant.Cerbu.128910
Ad-AwareGen:Variant.Cerbu.128910
EmsisoftGen:Variant.Cerbu.128910 (B)
Trapminemalicious.moderate.ml.score
FireEyeGeneric.mg.e70905bb7c7caa20
SophosGeneric ML PUA (PUA)
IkarusTrojan.Crypt
GDataGen:Variant.Cerbu.128910
GoogleDetected
AviraHEUR/AGEN.1230452
MAXmalware (ai score=84)
MicrosoftTrojan:Win32/Wacatac.B!ml
ALYacGen:Variant.Cerbu.128910
MalwarebytesRiskWare.GameHack
APEXMalicious
RisingTrojan.Generic@AI.99 (RDMK:cmRtazoeNRlYQXysEk1CsyW39633)
YandexTrojan.GenAsa!RnYd2lyA8K0
MaxSecureTrojan.Malware.300983.susgen
Cybereasonmalicious.ec9f6f

How to remove Cerbu.128910?

Cerbu.128910 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment