How to remove “Cerbu.157414”?

The Cerbu.157414 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Cerbu.157414 virus can do?

The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Cerbu.157414?


File Info:
name: 346CFF35FF12F7BA5DF8.mlw
path: /opt/CAPEv2/storage/binaries/9d81a8551b41dc25bb9d8295088337a8742b24e61b60d57b552f61a90a8ef00c
crc32: 73F80BB4
md5: 346cff35ff12f7ba5df87e0d9927b8eb
sha1: 1a70e22f005e0a4caff8e542ae535f574a673145
sha256: 9d81a8551b41dc25bb9d8295088337a8742b24e61b60d57b552f61a90a8ef00c
sha512: 1cf73b408e946eaa62b3e9daaa2f1d85a07fef84dd27f975dc3836d988787dc5b49f67961628c18791a2dde66c30c5a26955873a85698041b76df9dfd24348eb
ssdeep: 768:nB1So4fRnlumpuE7r97LcRRGBViF6YOVyguVE:nBA1fRlPZ97YRRGzHVygu
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1FB24812273F85505F1FB1B306DBA46A24DB6BC557A31CE0C5254BA4F2DB2B40D8A5B33
sha3_384: 39005c4140e320ceb98ad7bbb853eb97d5e79420180cb0fac6c53cf3cd96e760874edfd4bb845b0ac42497ce230f34be
ep_bytes: 60be003067018dbe00e0d8fe5783cdff
timestamp: 1992-06-19 22:22:17

Version Info:
0: [No Data]

Cerbu.157414 also known as:

Bkav	W32.AIDetect.malware1
Lionic	Trojan.Win32.Generic.4!c
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Cerbu.157414
FireEye	Generic.mg.346cff35ff12f7ba
Sangfor	Trojan.Win32.Save.a
CrowdStrike	win/malicious_confidence_90% (W)
BitDefenderTheta	Gen:NN.ZexaF.34796.nmW@a8Ak5zd
Symantec	ML.Attribute.HighConfidence
ClamAV	Win.Malware.Generic-9956637-0
BitDefender	Gen:Variant.Cerbu.157414
Cynet	Malicious (score: 100)
Avast	Win32:Evo-gen [Trj]
Ad-Aware	Gen:Variant.Cerbu.157414
Emsisoft	Gen:Variant.Cerbu.157414 (B)
Comodo	Packed.Win32.MUPX.Gen@24tbus
VIPRE	Gen:Variant.Cerbu.157414
SentinelOne	Static AI – Suspicious PE
Trapmine	suspicious.low.ml.score
Sophos	ML/PE-A
APEX	Malicious
GData	Gen:Variant.Cerbu.157414
Avira	W32/Poker.A
Arcabit	Trojan.Cerbu.D266E6
Microsoft	Trojan:Win32/Wacatac.B!ml
Google	Detected
Acronis	suspicious
MAX	malware (ai score=83)
Malwarebytes	Generic.Spyware.Stealer.DDS
Ikarus	Trojan.Win32.Agent
MaxSecure	Trojan.Malware.190074332.susgen
Fortinet	W32/ULPM.16C0!tr
AVG	Win32:Evo-gen [Trj]
Cybereason	malicious.f005e0

How to remove Cerbu.157414?

Cerbu.157414 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X