Ransom • Trojan

Trojan.Ransom.Cerber.ER removal instruction

The Trojan.Ransom.Cerber.ER is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Trojan.Ransom.Cerber.ER virus can do?

Anomalous binary characteristics

How to determine Trojan.Ransom.Cerber.ER?


File Info:
crc32: 1336D906
md5: 3e20258dba346aba8c807f8eca182a77
name: 3E20258DBA346ABA8C807F8ECA182A77.mlw
sha1: cd271138da149cf8c6abc36f624181d12833899f
sha256: b7afbfc34296a251b70a1735e507ab7f5cf8fbb8f4f4a5b44c9332ef6b3c5b29
sha512: ee93f855e9b9db4b2af706e12d3a07401bf8eef61914b3985fb571e6761ae903c62dca7aa8a8143b408fa805caf96f86ce816aef024b0cba5f5f95a6f8f8386c
ssdeep: 3072:MAe+3aJpgWXTBucMzjrRe5bklV1CZXYXFQzg1Yl0xiR/EU1KsIdoWxMBWNQ3ZJJp:PB+pgUubguVcrcm0u/10/dRgdzs/j2
type: PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive

Version Info:
LegalCopyright: John T. Haller
InternalName: FileZilla Portable
FileVersion: 1.6.10.0
CompanyName: PortableApps.com
LegalTrademarks: PortableApps.com is a Trademark of Rare Ideas, LLC.
Comments: Allows FileZilla to be run from a removable drive.  For additional details, visit PortableApps.com/FileZillaPortable
ProductName: FileZilla Portable
ProductVersion: 1.6.10.0
FileDescription: FileZilla Portable
OriginalFilename: FileZillaPortable.exe
Translation: 0x0409 0x04b0

Trojan.Ransom.Cerber.ER also known as:

Bkav	W32.AIDetect.malware1
K7AntiVirus	Trojan ( 00501bed1 )
Elastic	malicious (high confidence)
DrWeb	Trojan.Inject2.40173
Cynet	Malicious (score: 100)
CAT-QuickHeal	Ransom.Cerber.B
ALYac	Trojan.Ransom.Cerber.ER
Cylance	Unsafe
Zillya	Trojan.Filecoder.Win32.8806
Sangfor	Ransom.Win32.Zerber.esej
CrowdStrike	win/malicious_confidence_100% (W)
Alibaba	Ransom:Win32/Zerber.ebcd4433
K7GW	Trojan ( 00501bed1 )
Cybereason	malicious.dba346
Symantec	Ransom.Cerber
ESET-NOD32	NSIS/Injector.PG
APEX	Malicious
Avast	Win32:Trojan-gen
Kaspersky	Trojan-Ransom.Win32.Zerber.esej
BitDefender	Trojan.Ransom.Cerber.ER
NANO-Antivirus	Trojan.Nsis.Zerber.ekfpwd
MicroWorld-eScan	Trojan.Ransom.Cerber.ER
Tencent	Win32.Trojan.Zerber.Lkxk
Ad-Aware	Trojan.Ransom.Cerber.ER
Sophos	Mal/Generic-R + Mal/Cerber-AA
VIPRE	Trojan.Win32.Generic!BT
TrendMicro	Possible_Cerber-13
McAfee-GW-Edition	BehavesLike.Win32.ICLoader.dc
FireEye	Generic.mg.3e20258dba346aba
Emsisoft	Trojan-Ransom.Cerber (A)
SentinelOne	Static AI – Malicious PE
Avira	HEUR/AGEN.1117985
Microsoft	Ransom:Win32/Cerber!rfn
Arcabit	Trojan.Ransom.Cerber.ER
AegisLab	Trojan.Win32.Zerber.j!c
GData	Trojan.Ransom.Cerber.ER
TACHYON	Ransom/W32.Agent.231624
AhnLab-V3	Trojan/Win32.Cerber.C1730368
McAfee	Artemis!3E20258DBA34
MAX	malware (ai score=100)
Malwarebytes	Ransom.Cerber
Panda	Trj/Genetic.gen
TrendMicro-HouseCall	Possible_Cerber-13
Fortinet	W32/Injector.PG!tr
AVG	Win32:Trojan-gen
Qihoo-360	Win32/Ransom.Cerber.HyoDLWMA

How to remove Trojan.Ransom.Cerber.ER?

Trojan.Ransom.Cerber.ER removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X