Malware

Cerbu.167553 (file analysis)

Malware Removal

The Cerbu.167553 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Cerbu.167553 virus can do?

  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid

How to determine Cerbu.167553?



File Info:

name: E8FDDB7BDB8CAFF0ABE9.mlw
path: /opt/CAPEv2/storage/binaries/19a25c7aa8dcbb76957cf5c4baf9153c5f9ce6a42faea8c0eb1a09cc1ee191e6
crc32: 47B4E768
md5: e8fddb7bdb8caff0abe930de8959b2d3
sha1: 29ff90c207c54600da1623e16e2471b670998bae
sha256: 19a25c7aa8dcbb76957cf5c4baf9153c5f9ce6a42faea8c0eb1a09cc1ee191e6
sha512: a1f892051c654ac21af46b1bc417d6a6188d85e18a51ca5ef370dfc7a5cdb8b0bfa2a35d837d547d902814d66dc9afdee86b526a4aac8819042456f80c23db5b
ssdeep: 768:1I2HV0L3IKFU8oV6vonMouwr+EuijFlPchWBwFrwz:rHV0LcV6R/+xjFrBwFsz
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1D7D2D7539B1C713ED45216B9A5A9B372096778B01B18F28FF2801E4B7CB86D1B93D347
sha3_384: 7e6abfeddb8fdaa16a35f54eec2f44bc9e691194e99ebd24e78f632f817a1e583692ddae90db6b3072aaf5d48d81831f
ep_bytes: 6a7068a02a0001e81d02000033db895d
timestamp: 2008-07-02 12:38:31


Version Info:

Comments: Utility for setting a default MIDI device
CompanyName: Creative Technology Ltd
FileDescription: mididef
FileVersion: 2, 9, 0, 6
InternalName: mididef
LegalCopyright: Copyright© 2000-2005 Creative Technology Ltd
LegalTrademarks: 
OriginalFilename: mididef.exe
PrivateBuild: 
ProductName: Creative Audio Product
ProductVersion: 2, 9, 0, 6
SpecialBuild: 
Translation: 0x0409 0x04b0

Cerbu.167553 also known as:

MicroWorld-eScanGen:Variant.Cerbu.167553
FireEyeGen:Variant.Cerbu.167553
ALYacGen:Variant.Cerbu.167553
Cylanceunsafe
VIPREGen:Variant.Cerbu.167553
SymantecML.Attribute.HighConfidence
KasperskyHEUR:Trojan.Win32.Microt.gen
BitDefenderGen:Variant.Cerbu.167553
AvastWin32:Evo-gen [Trj]
DrWebTrojan.MulDrop21.59792
TrendMicroPAK_Xed-21
McAfee-GW-EditionArtemis
EmsisoftGen:Variant.Cerbu.167553 (B)
GDataGen:Variant.Cerbu.167553
MAXmalware (ai score=80)
ArcabitTrojan.Cerbu.D28E81
ZoneAlarmHEUR:Trojan.Win32.Microt.gen
MicrosoftTrojan:Win32/Wacatac.B!ml
AhnLab-V3Trojan/Win.Generic.R567795
McAfeeArtemis!E8FDDB7BDB8C
PandaTrj/Genetic.gen
TrendMicro-HouseCallPAK_Xed-21
RisingTrojan.Generic@AI.100 (RDML:gPLhKSrRswjN5bHb3LH03A)
FortinetW32/Wacatac.B!tr
AVGWin32:Evo-gen [Trj]
DeepInstinctMALICIOUS

How to remove Cerbu.167553?

Cerbu.167553 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment