Please ensure you understand and agree with our data protection policy before using this site. Review Policy
Online Virus Checker | v.1.0.177.174 |
DB Version: | 2024-05-26 16:00:36 |
Bladabindi, also known as NjRat, is a type of remote access Trojan (RAT) that allows cybercriminals to gain unauthorized access and control over infected computers. It was made by a hacking organization from different countries called M38dHhM and was often used against targets in the Middle East.
File | cheats.exe |
Checked | 2024-05-26 13:28:06 |
MD5 | 11b1155a3f6c4957ea1107e5e0e40855 |
SHA1 | 22b7607162b8a3acbfb7673e1caff05caf059dfd |
SHA256 | a7b865fa7b64453a919c2bf5e68cce4a2f4b4640a6d6ee3b1ee44a11e5c292a6 |
SHA512 | 1efabc8ebef8f4276361695f3b9f4c9f1cab52d5a0b1a69d8c33c2b2d7776c9d04e64e8d23de80ded2cbc79b61ab62c0a982aed363d1cf167572f54c7268bedb |
Imphash | f34d5f2d4577ed6d9ceec516c1f5a744 |
File Size | 37888 bytes |
Gridinsoft has the capability to identify and eliminate Ransom.Win32.Bladabindi.sa without requiring further user intervention.
Image Base: | 0x00400000 |
Entry Point: | 0x0040abae |
Compilation: | 2024-05-26 11:34:55 |
Checksum: | 0x00000000 (Actual: 0x00018164) |
OS Version: | 4.0 |
PEiD: | PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows |
Sign: | The PE file does not contain a certificate table. |
Sections: | 3 |
Imports: | mscoree, |
Exports: | 0 |
Resources: | 1 |
Name | Virtual Address | Virtual Size | Raw Size | MD5 | Entropy |
---|---|---|---|---|---|
.text | 0x00002000 | 0x00008bb4 | 0x00008c00 | 2c8bea07a28eb8de9b6fbae7af8c8497 | 5.60 |
.rsrc | 0x0000c000 | 0x00000240 | 0x00000400 | f7ce2f7b506ce16c06c85a549ef2cd98 | 4.97 |
.reloc | 0x0000e000 | 0x0000000c | 0x00000200 | 14e8c9d445c6e20e65bc602fcc627817 | 0.08 |