Gridinsoft Logo

Fix2021_v2.0.exe Trojan Wacatac Analysis

Trojan Wacatac
Updated on 2024-06-10 (3 months ago)
Checked by Online Virus Scanner
Online Virus Checker v.1.0.179.174
DB Version: 2024-06-10 11:00:17

Ransom.Win32.Wacatac.sa

Wacatac is a type of malware that falls under the wide category of computer viruses. It is known for its malicious capabilities, which include data theft, system compromise, and the execution of additional malicious payloads on the infected system like ransomware.

File Fix2021_v2.0.exe
Checked 2024-06-10 08:46:37
MD5 d1701ef0b47053aef2ee5f7819ea7b60
SHA1 a7cba621446002956bf5331044ce6637b7e04d76
SHA256 22ff58c44c6f053aa4bc6422929686162fa17a6a683afedcf6b76035f93527a5
SHA512 8c5b26c65b1a6eacb19d5f34f36c51a702ef091db1fce48f6bf240b9c304e162357d6c1be7d0233f35db0a08565ea80f2212dd1e9cf2c8b704da3d1fd209eb1f
Imphash fcf1390e9ce472c7270447fc5c61a0c1
File Size 9217369 bytes

Ransom.Win32.Wacatac.sa Removal

Ransom.Win32.Wacatac.sa Removal

Gridinsoft has the capability to identify and eliminate Ransom.Win32.Wacatac.sa without requiring further user intervention.

  • Start by downloading Gridinsoft Anti-Malware to your computer.
  • Double-click on the gsam-en-install.exe file and follow the on-screen instructions to install the program.
  • Once the installation of Gridinsoft Anti-Malware is complete, the program will open on the Scan screen.
  • Click on the "Standard Scan" button.
  • After the scanning process is finished, click on "Clean Now" to remove any detected threats.
  • If prompted, restart your system to complete the removal process.

Portable Executable Info

d40e019711e39f98cecdd8d24fe0a9f3
c9987d7111fb9ef4edf756f43a930ba7
b2b2b2b0b296aa00
Image Base: 0x00400000
Entry Point: 0x0041ea80
Compilation: 2020-06-25 10:38:24
Checksum: 0x00000000 (Actual: 0x008da0a0)
OS Version: 5.1
PDB Path: D:\Projects\WinRAR\sfx\build\sfxrar32\Release\sfxrar.pdb
PEiD: PE32 executable (GUI) Intel 80386, for MS Windows
Sign: The PE file does not contain a certificate table.
Sections: 6
Imports: KERNEL32, gdiplus,
Exports: 0
Resources: 21

Sections

Name Virtual Address Virtual Size Raw Size MD5 Entropy
.text 0x00001000 0x00030f2a 0x00031000 3c04cde3cc3b72af7b1e5a35b06420dc 6.70
.rdata 0x00032000 0x0000a5f2 0x0000a600 760372d2370342e64378d3e8b917ae32 5.26
.data 0x0003d000 0x00023720 0x00001000 27d251ff3aec1bff309011eb004804f1 3.71
.didat 0x00061000 0x00000188 0x00000200 da0d4a9d1bf535265b1265ced51650f2 3.30
.rsrc 0x00062000 0x00004a68 0x00004c00 259e8c1003245e4545176eb33b7440c3 6.38
.reloc 0x00067000 0x00002264 0x00002400 df2e025914d3601fca48e85a4d0106df 6.56

Leave a comment *

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Anti-Malware Download Now
Gridinsoft Anti-Malware