Malware

About “Mal/Cerber-Z” infection

Malware Removal

The Mal/Cerber-Z is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Mal/Cerber-Z virus can do?

  • Injection (inter-process)
  • Injection (Process Hollowing)
  • Executable code extraction
  • Creates RWX memory
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • Executed a process and injected code into it, probably while unpacking
  • Installs itself for autorun at Windows startup
  • Creates a copy of itself
  • Collects information to fingerprint the system
  • Anomalous binary characteristics

How to determine Mal/Cerber-Z?



File Info:

crc32: 8A4E9AE3
md5: 9eb95a98db35de596cf0453e2c25cd95
name: 9EB95A98DB35DE596CF0453E2C25CD95.mlw
sha1: 0643b9c8251436b23428fcfb2933cc30bfc4df49
sha256: b69e7b8ba03f2bc8cf4001ab271bbc6e93db31fc86eda83e3f32a71ffb00f7bb
sha512: ad262c1e07e54883b271543b40e0e2d27a63f73b2b439ceee8998649478cdc8b6c7a79d639a99455b4e4194229f5478a3a928954bc537a1f376c0bf9dc2ad5b7
ssdeep: 12288:FDOgvlimfM7WJGstWZrGef5jvXpLmPh997wd0/cMUPL2u/VdGvZdCgrpGyogELxO:FDjyWXonf57VmZLi8cMWTdOOgUfgWo
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: 
FileVersion: 2.5.4.3
CompanyName: Adobe PDF
ProductName: Adobe PDF
ProductVersion: 2.5.4.3
FileDescription: 
Translation: 0x0000 0x04e4

Mal/Cerber-Z also known as:

BkavW32.AIDetect.malware2
K7AntiVirusTrojan ( 0055e3991 )
LionicTrojan.NSIS.Onion.j!c
DrWebTrojan.Inject2.1233
MicroWorld-eScanTrojan.GenericKD.2671192
CAT-QuickHealRansom.Crowti.NSIS.A
ALYacTrojan.GenericKD.2671192
ZillyaTrojan.Onion.Win32.380
CrowdStrikewin/malicious_confidence_90% (D)
K7GWTrojan ( 0055e3991 )
Cybereasonmalicious.8db35d
SymantecML.Attribute.HighConfidence
ESET-NOD32Win32/Filecoder.CTBLocker.A
APEXMalicious
AvastWin32:Malware-gen
CynetMalicious (score: 99)
KasperskyHEUR:Trojan.Win32.Generic
BitDefenderTrojan.GenericKD.2671192
NANO-AntivirusTrojan.Win32.Inject.dvrllt
TencentNsis.Trojan.Onion.Hyab
Ad-AwareTrojan.GenericKD.2671192
SophosMal/Cerber-Z
ComodoMalware@#1b5db6a0ychqk
BitDefenderThetaGen:NN.ZedlaF.34790.aO4@aenuRA
VIPRETrojan.Win32.Generic!BT
TrendMicroTROJ_CRYPCTB.CE
McAfee-GW-EditionRDN/Ransom.e
FireEyeGeneric.mg.9eb95a98db35de59
EmsisoftTrojan.GenericKD.2671192 (B)
SentinelOneStatic AI – Suspicious PE
WebrootW32.Trojan.GenKD
AviraHEUR/AGEN.1141672
eGambitGeneric.Malware
KingsoftWin32.Troj.Generic_a.a.(kcloud)
MicrosoftRansom:Win32/Critroni
ArcabitTrojan.Generic.D28C258
ZoneAlarmHEUR:Trojan.Win32.Generic
GDataTrojan.GenericKD.2671192
AhnLab-V3Spyware/Win32.Fareit.C2385813
McAfeeRDN/Ransom.e
MAXmalware (ai score=83)
VBA32Hoax.Onion
PandaTrj/CI.A
TrendMicro-HouseCallTROJ_CRYPCTB.CE
YandexTrojan.Injector!R0MbG6MyyYw
IkarusTrojan-Spy.Agent
FortinetW32/CHID!tr
AVGWin32:Malware-gen
Paloaltogeneric.ml

How to remove Mal/Cerber-Z?

Mal/Cerber-Z removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment