Cerbu.64601 information

The Cerbu.64601 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Cerbu.64601 virus can do?

Behavioural detection: Executable code extraction – unpacking
Dynamic (imported) function loading detected
Authenticode signature is invalid

How to determine Cerbu.64601?


File Info:
name: D3C84899CCD19930ACAE.mlw
path: /opt/CAPEv2/storage/binaries/1a61e526c1cc91c107f8ab07f72c1081f86c3e01dac4b18cf8e5832988318088
crc32: 243143A0
md5: d3c84899ccd19930acaeb73edb7127c0
sha1: fe624d7eab34a6c09786f541a59331e75c6062d0
sha256: 1a61e526c1cc91c107f8ab07f72c1081f86c3e01dac4b18cf8e5832988318088
sha512: 5fdb358e8645f0f5d0abace5d8fef822d78c357e12dbec66cb1c05718aa6afb6b9b6e9d0330f4cf15ec8243c9139cdd708dd7da8e72d2714ec8adc1ed4af9844
ssdeep: 12288:s3+xoHrGTC2Yme6UuwRPoUs+wqn1JkNl2oWBmk28e8US:s3+u5By
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T12A35C7239AF146B2E5DB5031BFD56BCFB89436EA5B1791127243233C05128522AF93EF
sha3_384: db3b7266f4c457b05a70990fb3780e8df5c492d366f60d8a22a27b3cd6f25a40089971663f13b5c5270084072e47dd14
ep_bytes: 68244e4000e8eeffffff000000000000
timestamp: 2021-01-29 14:35:22

Version Info:
Translation: 0x0409 0x04b0
ProductName: OtomosyonX
FileVersion: 1.00
ProductVersion: 1.00
InternalName: Otomosyon
OriginalFilename: Otomosyon.exe

Cerbu.64601 also known as:

Bkav	W32.AIDetect.malware2
MicroWorld-eScan	Gen:Variant.Cerbu.64601
McAfee	Artemis!D3C84899CCD1
Cylance	Unsafe
Cybereason	malicious.9ccd19
Cyren	W32/OnlineGames.GK.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/GameHack.ATV potentially unsafe
APEX	Malicious
BitDefender	Gen:Variant.Cerbu.64601
Ad-Aware	Gen:Variant.Cerbu.64601
Emsisoft	Gen:Variant.Cerbu.64601 (B)
McAfee-GW-Edition	BehavesLike.Win32.Trojan.tm
FireEye	Generic.mg.d3c84899ccd19930
Sophos	Generic ML PUA (PUA)
GData	Gen:Variant.Cerbu.64601
Microsoft	Trojan:Win32/Wacatac.B!ml
ALYac	Gen:Variant.Cerbu.64601
MAX	malware (ai score=85)
Malwarebytes	Malware.AI.3950986219
TrendMicro-HouseCall	TROJ_GEN.R002H09KP21
Fortinet	Riskware/GameHack
BitDefenderTheta	Gen:NN.ZevbaF.34294.bn0@aeTmmqji

How to remove Cerbu.64601?

Cerbu.64601 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X