Cerbu.155294 (B) information

The Cerbu.155294 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Cerbu.155294 (B) virus can do?

Sample contains Overlay data
Authenticode signature is invalid

How to determine Cerbu.155294 (B)?


File Info:
name: 076D75ACEF69DAFEB718.mlw
path: /opt/CAPEv2/storage/binaries/b62daea65523db3727fd863bb5b9208289120c0ae24febbd4d44eb9f0f357db6
crc32: 92B754E5
md5: 076d75acef69dafeb7185a689c2c9550
sha1: 8f584eb2b0e7f9385baadabc66666fb63b122f2e
sha256: b62daea65523db3727fd863bb5b9208289120c0ae24febbd4d44eb9f0f357db6
sha512: b8990e0ba6b85cd745132159bfd21b85018b05a3ad52071d714ca7ebbf4cea5070959cab6cb8cb35f7b09f9319c82aee222d2d38e62098ee206b012147e8b647
ssdeep: 6144:2baHk7vJcoosVD2Ys9TYIxW3+WOMjvEV4UFmVfSW8PJ:2QkbCoosVD2Ys91xWtjcV/LW8R
type: PE32+ executable (GUI) x86-64, for MS Windows
tlsh: T17D941A256AC06A2BE5739235C6A18641FF36B7630722C33B70C8467F1F77185AA73726
sha3_384: ca766daffb3ed6c2a8aaf6dfcd82033aa1207fe84e151681497e87f8cd0b647639bde137e5514870dbf161ce38bc0bb4
ep_bytes: e848feffffc82000004c897c24f84883
timestamp: 2010-09-30 17:49:43

Version Info:
CompanyName: Microsoft Corporation
FileDescription: qualauncher
FileVersion: 10.0.17134.10074 (WinBuild.160101.0800)
InternalName: qualauncher
LegalCopyright: © Microsoft Corporation. All rights reserved.
OriginalFilename: qualauncher
ProductName: Microsoft® Windows® Operating System
ProductVersion: 10.0.17134.10074
Translation: 0x0409 0x04b0

Cerbu.155294 (B) also known as:

MicroWorld-eScan	Gen:Variant.Cerbu.155294
Cylance	Unsafe
VIPRE	Gen:Variant.Cerbu.155294
Cyren	W64/Ipamor.A
Elastic	malicious (high confidence)
ESET-NOD32	Win64/Filecoder.GG
Kaspersky	VHO:Trojan-PSW.Win32.Stealer.gen
BitDefender	Gen:Variant.Cerbu.155294
Avast	Win64:Trojan-gen
Ad-Aware	Gen:Variant.Cerbu.155294
Emsisoft	Gen:Variant.Cerbu.155294 (B)
FireEye	Gen:Variant.Cerbu.155294
GData	Gen:Variant.Cerbu.155294
Jiangmin	Trojan.Blocker.urx
Google	Detected
Arcabit	Trojan.Cerbu.D25E9E
Microsoft	Trojan:Win32/Wacatac.B!ml
Cynet	Malicious (score: 100)
Acronis	suspicious
ALYac	Gen:Variant.Cerbu.155294
MAX	malware (ai score=88)
Malwarebytes	Ransom.Azov
Rising	Ransom.Agent!8.6B7 (TFE:2:U9tOTBNOHOO)
Fortinet	W64/Filecoder.GG!tr
AVG	Win64:Trojan-gen
CrowdStrike	win/malicious_confidence_90% (D)

How to remove Cerbu.155294 (B)?

Cerbu.155294 (B) removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X