Malware

Win32/Webprefix.B information

Malware Removal

The Win32/Webprefix.B is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32/Webprefix.B virus can do?

  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Authenticode signature is invalid

How to determine Win32/Webprefix.B?



File Info:

name: 286A4A2BD8C994574A77.mlw
path: /opt/CAPEv2/storage/binaries/4447eed98063996a5f839cf209c14d21f60bab21e956282abf2966dd34732cfe
crc32: C3CD8C3D
md5: 286a4a2bd8c994574a77a6e03a8ea8db
sha1: 891f583e50ff0a6ceddd32877065a709428269d3
sha256: 4447eed98063996a5f839cf209c14d21f60bab21e956282abf2966dd34732cfe
sha512: 5d2d6701f0614f5cd149c8ff9720ad6a6682252f35339c8770227592a29fe9c8a24c176497a144debea0a9a3416a8ea72f3627127c6759c91c5780d428a6c1f4
ssdeep: 1536:QOEM4FVSeodFDMXA2CQerI2JAvStJ0VRnAvoEmR3io3e:rEqeAmX1eh8nAvorR3J3e
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T144A38D2178D5C472E23400F54CA2C6A7DA1AFD340A671DCB3FDB06A86F79597CA29307
sha3_384: 6ea66aa9ac86e5ab9bdcf8c09e7ae60df027dc8eac9dd48a37e6b6703965298af1a68ea264fe29f2f6c34813a71423fa
ep_bytes: e8403e0000e9a4feffff558bec83ec04
timestamp: 2013-06-13 13:39:15


Version Info:

Comments: 
CompanyName: 
FileDescription:  
FileVersion: 1.0
InternalName: 
LegalCopyright: 
LegalTrademarks: 
OriginalFilename: 
PrivateBuild: 
ProductName: 
ProductVersion: 
SpecialBuild: 
Translation: 0x0409 0x04b0

Win32/Webprefix.B also known as:

tehtrisGeneric.Malware
MicroWorld-eScanGen:Variant.Cerbu.146680
CylanceUnsafe
VIPREGen:Variant.Cerbu.146680
K7AntiVirusTrojan ( 004791aa1 )
K7GWTrojan ( 004791aa1 )
Cybereasonmalicious.bd8c99
VirITTrojan.Win32.Atros.RIN
CyrenW32/Webprefix.B.gen!Eldorado
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/Webprefix.B
APEXMalicious
CynetMalicious (score: 99)
KasperskyHEUR:Trojan.Win32.Generic
BitDefenderGen:Variant.Cerbu.146680
NANO-AntivirusTrojan.Win32.GFilter.dflxvs
AvastFileRepMalware [PUP]
TencentMalware.Win32.Gencirc.10bb9e35
Ad-AwareGen:Variant.Cerbu.146680
SophosGeneric ML PUA (PUA)
Trapminemalicious.high.ml.score
FireEyeGeneric.mg.286a4a2bd8c99457
EmsisoftGen:Variant.Cerbu.146680 (B)
SentinelOneStatic AI – Malicious PE
GDataGen:Variant.Cerbu.146680
JiangminTrojan/Generic.bhypw
AviraADWARE/GFilter.Gen2
Antiy-AVLTrojan/Generic.ASMalwS.330C
ArcabitTrojan.Cerbu.D23CF8
MicrosoftTrojan:Win32/Wacatac.B!ml
GoogleDetected
ALYacGen:Variant.Cerbu.146680
MAXmalware (ai score=82)
VBA32BScope.Trojan.Pynamer
MalwarebytesMalware.AI.4243183934
RisingTrojan.Webprefix!8.979 (TFE:5:a3QZAqgnM9G)
YandexTrojan.Webprefix!68vLb+66y0k
IkarusTrojan.SuspectCRC
MaxSecureTrojan.Malware.2588.susgen
FortinetW32/Generic.AC.3C6FAF!tr
AVGFileRepMalware [PUP]
CrowdStrikewin/grayware_confidence_60% (D)

How to remove Win32/Webprefix.B?

Win32/Webprefix.B removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment