File Name | Detection.exe |
File Type |
PE32+ executable (GUI) x86-64, for MS Windows
|
Scanner Version | 1.0.158.174 |
Database Version | 2024-02-09 04:00:37 UTC |
Malware family: Caypnamer
Hash Type | Value | Action |
---|---|---|
MD5 |
0d7c48aa8daccbfdc80596c656011b9e
|
|
SHA1 |
06862dafc5212678240835378aa490171c59de0c
|
|
SHA256 |
62235bc1fe4e820450ad4441b4127cdbd83161874091d69a894d2216544a1020
|
|
SHA512 |
cba005d2894e3a64fb61bf68c8c924af5005443dc27f72fc97fc3302afcf5f1bdd869328c4568ca9af1a5ab75291f110575ab4f84265546705ee608982d78a3b
|
|
ImpHash |
d6313786fb14fa2545d78caba831924b
|
Icon |
Hash: 21524a4bacc57e9307212d6931061936
Fuzzy: 9cf72ae1635f7d79fd63f78f7271b4f6 dHash: 0d0f0e969e0e4f48 |
Image Base | 0x140000000 |
Entry Point | 0x140220e24 |
Compilation Time | 2024-01-23 17:02:42 |
Checksum | 0x004b58c8 (Actual: 0x004b58c8) |
OS Version | 6.0 |
PEiD Signatures |
PE32+ executable (GUI) x86-64, for MS Windows
|
Digital Signature | OK |
Imports | 22 libraries |
Exports | 5 functions |
Resources | 47 Resources |
Sections | 7 Sections |
CompanyName | Husdawg, LLC |
FileDescription | System Requirements Lab Detection |
FileVersion | 6,5,18 |
InternalName | SRL Detection |
LegalCopyright | (c) Husdawg, LLC. All rights reserved. |
OriginalFilename | detection.exe |
ProductName | System Requirements Lab Detection |
ProductVersion | 6,5,18 |
Translation | 0x0409 0x04b0 |
Name | Virtual Address | Virtual Size | Raw Size | Entropy | Characteristics | MD5 |
---|---|---|---|---|---|---|
.text |
0x00001000 |
2,551,316 bytes | 2,551,808 bytes | 6.39 (Normal) |
IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ
|
52B456EDE59BD8DD0ADCE66DA76FC1F5 |
.rdata |
0x00270000 |
689,504 bytes | 689,664 bytes | 4.85 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
229C550CA8EDAE01A7A93745FC913B42 |
.data |
0x00319000 |
70,016 bytes | 37,888 bytes | 4.13 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
59188AB769E97DCBA3593790E3180AB7 |
.pdata |
0x0032b000 |
105,012 bytes | 105,472 bytes | 6.20 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
8F0CDF498E2B29A08C55F9F38D595048 |
_RDATA |
0x00345000 |
348 bytes | 512 bytes | 3.29 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
90A99C5ACBCEBB95328425409A6EDA16 |
.rsrc |
0x00346000 |
1,456,912 bytes | 1,457,152 bytes | 2.67 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
2B16D75590705C9D063698EB4C7B4D6D |
.reloc |
0x004aa000 |
63,416 bytes | 63,488 bytes | 5.45 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ
|
ABC139B72C877DAB25FB90179ABD3DD2 |
Resource Type | Count | Total Size | Percentage |
---|---|---|---|
AFX_DIALOG_LAYOUT | 2 | 4 bytes | |
RT_BITMAP | 8 | 1,136,476 bytes | |
RT_ICON | 9 | 306,600 bytes | |
RT_DIALOG | 2 | 576 bytes | |
RT_STRING | 23 | 9,588 bytes | |
RT_GROUP_ICON | 1 | 132 bytes | |
RT_VERSION | 1 | 832 bytes | |
RT_MANIFEST | 1 | 548 bytes |
This file is not digitally signed.
⚠ This file either lacks a digital signature or the certificate chain could not be verified
Exercise caution when executing unsigned files from unknown sources
OK
Gridinsoft has the capability to identify and eliminate PUP.Win64.Caypnamer.dd!c without requiring further user intervention.
Download Anti-MalwareFollow these steps to completely remove the threat from your system