Malware

How to remove “Cerbu.144280”?

Malware Removal

The Cerbu.144280 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Cerbu.144280 virus can do?

  • Authenticode signature is invalid
  • Anomalous .NET characteristics

How to determine Cerbu.144280?



File Info:

name: 3EFFBFF8553AE3B6CEF4.mlw
path: /opt/CAPEv2/storage/binaries/6f57e363765835a669709bb918336b853746bd061f88d762f09a0aeb11027f78
crc32: AC5F6283
md5: 3effbff8553ae3b6cef4d7e3fa9818ee
sha1: 60998ab16db969e9de2dbf9a26544ca71624c2db
sha256: 6f57e363765835a669709bb918336b853746bd061f88d762f09a0aeb11027f78
sha512: 0cdb8251e4eeccee2bfbe904d2ee5ae240d0d81d03b3ba7bc3f4d1e004266c7ae25916ff712a5eb7c1fd9a2793b2099c0e1eb3757576fc668f586dd3f2380e3c
ssdeep: 768:VTa1gI8bNjCVXdiv4KrdmhUmr5xJwntZ:VTa1CJKXda4cdmhUa/JcZ
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1A0C2D42C69EC812DE23BEF783DF821D689BAB7636415D59B1884070F8D12B40DE1277E
sha3_384: aca6b8b42820c27769259600aa2e8dcc61e80df6b8d6c25d372d6704586e585d745dc57d41f7b579c60e15cdda4c1e6c
ep_bytes: ff250020400000000000000000000000
timestamp: 2023-07-17 03:29:48


Version Info:

Translation: 0x0000 0x04b0
FileDescription:  
FileVersion: 0.0.0.0
InternalName: tmp.exe
LegalCopyright:  
OriginalFilename: tmp.exe
ProductVersion: 0.0.0.0
Assembly Version: 0.0.0.0

Cerbu.144280 also known as:

MicroWorld-eScanGen:Variant.Cerbu.144280
McAfeeArtemis!3EFFBFF8553A
MalwarebytesTrojan.PowerShell
VIPREGen:Variant.Cerbu.144280
Cybereasonmalicious.8553ae
Elasticmalicious (high confidence)
ESET-NOD32Win32/Rozena.ACE
APEXMalicious
KasperskyHEUR:Trojan.Script.Generic
BitDefenderGen:Variant.Cerbu.144280
AvastFileRepMalware [Misc]
RisingDownloader.Paph!8.58D0 (CLOUD)
EmsisoftGen:Variant.Cerbu.144280 (B)
McAfee-GW-EditionBehavesLike.Win32.Generic.mm
Trapminemalicious.moderate.ml.score
FireEyeGen:Variant.Cerbu.144280
SophosMal/Generic-R
GDataGen:Variant.Cerbu.144280
GoogleDetected
MAXmalware (ai score=88)
ArcabitTrojan.Cerbu.D23398
ZoneAlarmHEUR:Trojan.Script.Generic
MicrosoftProgram:Win32/Wacapew.C!ml
CynetMalicious (score: 100)
ALYacGen:Variant.Cerbu.144280
IkarusTrojan.PowerShell.Agent
AVGFileRepMalware [Misc]
CrowdStrikewin/malicious_confidence_70% (W)

How to remove Cerbu.144280?

Cerbu.144280 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment