Malware

Cerbu.144100 removal tips

Malware Removal

The Cerbu.144100 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Cerbu.144100 virus can do?

  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid
  • Binary compilation timestomping detected

How to determine Cerbu.144100?



File Info:

name: 63A2B967FA79B4F45AA2.mlw
path: /opt/CAPEv2/storage/binaries/125b0ad2804001b7ad2555b589ce1774617670595ac362d32b5954ae9ffc0978
crc32: 3EA2C12A
md5: 63a2b967fa79b4f45aa22e33bf3a719d
sha1: b17874fe381f60f5c962b4e953725971ebbb4ffd
sha256: 125b0ad2804001b7ad2555b589ce1774617670595ac362d32b5954ae9ffc0978
sha512: 162a8ea9f66e54c2c08f936a0ca8c2c2051f48d5f3a996a7a373e49a7be5c1a823cc37eb3ad598016dbaeb8b32bfb1d857f65ea00fd0cf9036e3d51268c538b5
ssdeep: 6144:KuQr9bYBl58DlBButEtilamAsaiIajazBETj5J25pqhLdEyyQJItMxSgvnOBpEow:KrrWN8Dl3O9c6lrxNWpEorVRD1sZMk
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T108A43C35F04746B0F87A10713C3DBA7B45A47159AB3685EB76F88C86BDE53C02B34A26
sha3_384: b2ea24cb81f21d3ac495957fdaf54c418947f237dc67e529a534feabbf931ec48ed844df4709930be0ff518c1aeadbbf
ep_bytes: ff250020400000000000000000000000
timestamp: 2069-10-14 05:17:45


Version Info:

Translation: 0x0000 0x04b0
Comments: KeyAuth Loader Example
CompanyName: Nelson Cybersecurity LLC
FileDescription: Loader
FileVersion: 1.0.0.0
InternalName: Loader.exe
LegalCopyright: Copyright © KeyAuth.cc
LegalTrademarks: KeyAuth
OriginalFilename: Loader.exe
ProductName: Loader
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Cerbu.144100 also known as:

Elasticmalicious (high confidence)
CynetMalicious (score: 99)
CAT-QuickHealTrojan.YakbeexMSIL.ZZ4
ALYacGen:Variant.Cerbu.144100
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_70% (D)
CyrenW32/MSIL_Agent.FYM.gen!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/RiskWare.HackTool.Agent_AGen.S
APEXMalicious
BitDefenderGen:Variant.Cerbu.144100
MicroWorld-eScanGen:Variant.Cerbu.144100
AvastWin32:Trojan-gen
RisingTrojan.Injector!8.C4 (TFE:5:y9eyIbQo2oQ)
EmsisoftGen:Variant.Cerbu.144100 (B)
F-SecureTrojan.TR/Injector_AGen.flobc
VIPREGen:Variant.Cerbu.144100
FireEyeGeneric.mg.63a2b967fa79b4f4
IkarusTrojan.Win32.Injector
AviraTR/Injector_AGen.flobc
MicrosoftProgram:Win32/Wacapew.C!ml
ArcabitTrojan.Cerbu.D232E4
GDataGen:Variant.Cerbu.144100
GoogleDetected
MAXmalware (ai score=84)
VBA32BScope.Trojan.Sabsik
MalwarebytesInject.Exploit.Shellcode.DDS
SentinelOneStatic AI – Suspicious PE
FortinetRiskware/HackTool
AVGWin32:Trojan-gen
DeepInstinctMALICIOUS

How to remove Cerbu.144100?

Cerbu.144100 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment