Online Virus Checker | v.1.0.179.174 |
DB Version: | 2024-06-10 11:00:17 |
Wacatac is a type of malware that falls under the wide category of computer viruses. It is known for its malicious capabilities, which include data theft, system compromise, and the execution of additional malicious payloads on the infected system like ransomware.
File | Fix2021_v2.0.exe |
Checked | 2024-06-10 08:46:37 |
MD5 | d1701ef0b47053aef2ee5f7819ea7b60 |
SHA1 | a7cba621446002956bf5331044ce6637b7e04d76 |
SHA256 | 22ff58c44c6f053aa4bc6422929686162fa17a6a683afedcf6b76035f93527a5 |
SHA512 | 8c5b26c65b1a6eacb19d5f34f36c51a702ef091db1fce48f6bf240b9c304e162357d6c1be7d0233f35db0a08565ea80f2212dd1e9cf2c8b704da3d1fd209eb1f |
Imphash | fcf1390e9ce472c7270447fc5c61a0c1 |
File Size | 9217369 bytes |
Gridinsoft has the capability to identify and eliminate Ransom.Win32.Wacatac.sa without requiring further user intervention.
d40e019711e39f98cecdd8d24fe0a9f3 c9987d7111fb9ef4edf756f43a930ba7 b2b2b2b0b296aa00 |
|
Image Base: | 0x00400000 |
Entry Point: | 0x0041ea80 |
Compilation: | 2020-06-25 10:38:24 |
Checksum: | 0x00000000 (Actual: 0x008da0a0) |
OS Version: | 5.1 |
PDB Path: | D:\Projects\WinRAR\sfx\build\sfxrar32\Release\sfxrar.pdb |
PEiD: | PE32 executable (GUI) Intel 80386, for MS Windows |
Sign: | The PE file does not contain a certificate table. |
Sections: | 6 |
Imports: | KERNEL32, gdiplus, |
Exports: | 0 |
Resources: | 21 |
Name | Virtual Address | Virtual Size | Raw Size | MD5 | Entropy |
---|---|---|---|---|---|
.text | 0x00001000 | 0x00030f2a | 0x00031000 | 3c04cde3cc3b72af7b1e5a35b06420dc | 6.70 |
.rdata | 0x00032000 | 0x0000a5f2 | 0x0000a600 | 760372d2370342e64378d3e8b917ae32 | 5.26 |
.data | 0x0003d000 | 0x00023720 | 0x00001000 | 27d251ff3aec1bff309011eb004804f1 | 3.71 |
.didat | 0x00061000 | 0x00000188 | 0x00000200 | da0d4a9d1bf535265b1265ced51650f2 | 3.30 |
.rsrc | 0x00062000 | 0x00004a68 | 0x00004c00 | 259e8c1003245e4545176eb33b7440c3 | 6.38 |
.reloc | 0x00067000 | 0x00002264 | 0x00002400 | df2e025914d3601fca48e85a4d0106df | 6.56 |