Cerbu.206033 removal guide

The Cerbu.206033 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Cerbu.206033 virus can do?

Sample contains Overlay data
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Cerbu.206033?


File Info:
name: 392DC458AA587ACCE277.mlw
path: /opt/CAPEv2/storage/binaries/b75183f565ade61e02c289bf1715b4772f5354036061fda2ca06e167e2c97e50
crc32: 0F1E3013
md5: 392dc458aa587acce2779de2e57b0844
sha1: 9603b834c8c7078eceea055d1738ff95a0c632e4
sha256: b75183f565ade61e02c289bf1715b4772f5354036061fda2ca06e167e2c97e50
sha512: 841f6abaec433eeb4163b4f16d32140e2f81c366f62eebc3d7e5db514a4fca65c639b767dcc9a0ebbb187c8cc52d4f56a9834ec09a29bede46eb22671de87e85
ssdeep: 384:G85c5vd+vg8gld+vg8gr4jZj9CeCIBs7Br5xjL8AgA71FbhvQ:G85c5VnD97BlpQpARFbh4
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1D4231B1E2B3CC0F3C214E5F88E7B18391E51669C21296D5BEB44CF170269A9944FFE9D
sha3_384: bca7d2b5847208828c64622f312b0b37d8267477a03890cb0126df6c389d41aa0686d14211f639e7d6f1683708c1dea6
ep_bytes: 97989d94516d6b7fa19e93a492a37873
timestamp: 2011-03-15 04:06:07

Version Info:
0: [No Data]

Cerbu.206033 also known as:

Bkav	W32.AIDetectMalware
MicroWorld-eScan	Gen:Variant.Cerbu.206033
FireEye	Generic.mg.392dc458aa587acc
CAT-QuickHeal	Trojan.CosmuRI.S28491928
ALYac	Gen:Variant.Cerbu.206033
Malwarebytes	Malware.Heuristic.2001
Sangfor	Suspicious.Win32.Save.ins
Alibaba	Trojan:Win32/Gamaredon.8d9fe737
BitDefenderTheta	Gen:NN.ZexaF.36804.duY@amj!OC
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
APEX	Malicious
TrendMicro-HouseCall	TROJ_GEN.R03BC0DDS24
Avast	Win32:WormX-gen [Wrm]
ClamAV	Win.Malware.Generickdz-9938530-0
BitDefender	Gen:Variant.Cerbu.206033
Rising	Virus.Zombie!1.AB2A (CLASSIC)
Emsisoft	Gen:Variant.Cerbu.206033 (B)
F-Secure	Trojan.TR/Patched.Ren.Gen
TrendMicro	TROJ_GEN.R03BC0DDS24
Trapmine	malicious.moderate.ml.score
Sophos	Mal/Generic-S
Avira	TR/Patched.Ren.Gen
MAX	malware (ai score=86)
Antiy-AVL	Trojan/Win32.Agent
Microsoft	Trojan:Win32/Gamaredon.psyO!MTB
Arcabit	Trojan.Cerbu.D324D1
GData	Gen:Variant.Cerbu.206033
Cynet	Malicious (score: 100)
Google	Detected
Cylance	unsafe
MaxSecure	Trojan.Cosmu.bwts
Fortinet	W32/Agent.NBJ
AVG	Win32:WormX-gen [Wrm]
DeepInstinct	MALICIOUS
alibabacloud	Trojan:Win/Gamaredon.pvkD3DGW

How to remove Cerbu.206033?

Cerbu.206033 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X