Adоbe_Activator.exe Trojan Wacapew Analysis
| Online Virus Checker | v.1.0.183.174 |
| DB Version: | 2024-07-26 02:00:20 |
Trojan.Win32.Wacapew.cl
Wacapew belongs to the extensive family of computer viruses, characterized by its malevolent functionalities such as data exfiltration, system compromise, and the deployment of supplementary malicious payloads, including ransomware, on compromised systems.
| File | Adоbe_Activator.exe |
| Checked | 2024-07-25 23:56:40 |
| MD5 | 725dde67a6cfdbc0d46b807cec71dc7e |
| SHA1 | 858406551359313134b976f96ca53cbe2f697b61 |
| SHA256 | a43c374e28af1161459ecf6004eda3f39f1923374b51a81d4770690715ebf589 |
| SHA512 | c0f727fbe9748a8baf31d9c1dc274b81dc680fd0ec3528971f3becfef2a53f78b4eedb8456fd2093b4c3fd8c157d5d73f11fe520534f0053dcd79f3e27e6f627 |
| Imphash | b34f154ec913d2d2c435cbd644e91687 |
| File Size | 1392376 bytes |
Trojan.Win32.Wacapew.cl Removal
Gridinsoft has the capability to identify and eliminate Trojan.Win32.Wacapew.cl without requiring further user intervention.
- Start by downloading Gridinsoft Anti-Malware to your computer.
- Double-click on the gsam-en-install.exe file and follow the on-screen instructions to install the program.
- Once the installation of Gridinsoft Anti-Malware is complete, the program will open on the Scan screen.
- Click on the "Standard Scan" button.
- After the scanning process is finished, click on "Clean Now" to remove any detected threats.
- If prompted, restart your system to complete the removal process.
File Version Information
| CompanyName | Bitwarden Inc. |
| FileDescription | A secure and free password manager for all of your devices. |
| FileVersion | 2024.6.4 |
| LegalCopyright | Copyright © 2015-2024 Bitwarden Inc. |
| ProductName | Bitwarden |
| ProductVersion | 2024.6.4 |
| Translation | 0x0409 0x04e4 |
Portable Executable Info
 |
393313cf241e387d9b9825bebd53ba63 b81f4bc55f0111c239c96ddb14364a77 e4dc9898dcd87196 |
| Image Base: | 0x00400000 |
| Entry Point: | 0x0040338f |
| Compilation: | 2018-12-15 22:26:14 |
| Checksum: | 0x001621a5 (Actual: 0x001621a5) |
| OS Version: | 4.0 |
| PEiD: | PE32 executable (GUI) Intel 80386, for MS Windows |
| Sign: | The expected hash does not match the digest in SpcInfo |
| Sections: | 5 |
| Imports: | KERNEL32, USER32, GDI32, SHELL32, ADVAPI32, COMCTL32, ole32, |
| Exports: | 0 |
| Resources: | 25 |
Sections
| Name | Virtual Address | Virtual Size | Raw Size | MD5 | Entropy |
|---|---|---|---|---|---|
| .text | 0x00001000 | 0x00006627 | 0x00006800 | 45509d6f22b4e6d5babb8d6e5eb4dd90 | 6.73 |
| .rdata | 0x00008000 | 0x000014a2 | 0x00001600 | eecac1fed9cc6b447d50940d178404d8 | 5.03 |
| .data | 0x0000a000 | 0x00070ff8 | 0x00000600 | db8f31a08a2242d80c29e1f9500c6527 | 4.04 |
| .ndata | 0x0007b000 | 0x00188000 | 0x00000000 | d41d8cd98f00b204e9800998ecf8427e | 0.00 |
| .rsrc | 0x00203000 | 0x00056400 | 0x00056400 | f3422bb36b478b8f8cb5b35b41cb3cfc | 7.37 |
