Backdoor.Wavipeg.A

By CagedTech in Backdoors

Threat Scorecard

Popularity Rank:	18,123
Threat Level:	60 % (Medium)
Infected Computers:	39

First Seen:	January 4, 2019
Last Seen:	October 10, 2025
OS(es) Affected:	Windows

Table of Contents

Analysis Report

General information

Family Name:	Backdoor.Wavipeg.A
Signature status:	No Signature

Known Samples

MD5: f010981047138d543a4990618338daeb

SHA1: ab3956c43b180d8d2e9ee730f4d0d7b2b3abb5bf

SHA256: 91E26708B61789D34D806F6D42D2E10A5CE20D7CA8CC663E70BF6345F34E6A97

File Size: 1.31 MB, 1310289 bytes

Windows Portable Executable Attributes

File doesn't have "Rich" header
File doesn't have debug information
File doesn't have security information
File has exports table
File is 32-bit executable
File is either console or GUI application
File is GUI application (IMAGE_SUBSYSTEM_WINDOWS_GUI)
File is Native application (NOT .NET application)
File is not packed
IMAGE_FILE_DLL is not set inside PE header (Executable)

IMAGE_FILE_EXECUTABLE_IMAGE is set inside PE header (Executable Image)

File Icons

File Traits

No Version Info
x86

Block Information

Total Blocks:	4,727
Potentially Malicious Blocks:	1,048
Whitelisted Blocks:	3,679
Unknown Blocks:	0

Visual Map

0 0 0 0 0 0 0 0 0 0 0 0 x 0 x x x x x 0 x 0 0 0 0 x x x x x x x x x x 0 x x 0 x x x x 0 0 0 x x x x x x x x x x 0 x x x x x x x x x x x x x x x x 0 x x x 0 x x x x x x x x 0 x x 0 0 0 x x x x 0 x x x x x x x x x 0 x 0 0 x x x 0 x x x x x x x x x x 0 0 0 0 0 0 x x 0 x 0 x 0 x x 0 0 x 0 0 0 x x 0 0 0 x x x 0 0 x x 0 0 0 0 0 0 0 0 0 x x 0 x 0 0 0 x x 0 0 0 x x x 0 0 x 0 0 0 x x 0 x 0 0 0 0 0 0 0 0 0 0 0 x 0 0 x x 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 x x x x 0 x x 0 0 x 0 0 0 0 x 0 x 0 0 x x x x x x x x x 0 0 0 0 0 x x x x x 0 x 0 0 0 0 x 0 x x 0 x x 0 x 0 x x x 0 0 0 x 0 0 0 0 0 x x 0 x 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 x 0 0 0 0 0 x 0 x 0 0 0 x 0 0 0 0 x 0 0 0 0 0 0 0 0 x x 0 0 0 0 x 0 0 x x 0 x x x 0 0 0 0 0 0 0 0 0 0 0 x 0 x 0 0 0 0 0 x 0 0 0 x 0 x 0 0 0 0 0 0 0 0 0 x x x 0 0 0 0 0 0 0 0 x x 0 0 0 x 0 0 x 0 x 0 0 x 0 0 0 x x 0 0 0 x 0 0 0 0 0 0 0 x 0 x x x x x x x 0 x 0 0 x x 0 0 0 x x 0 0 0 0 0 0 x 0 0 0 0 x 0 0 0 0 0 0 0 0 0 x 0 0 x 0 0 0 x x 0 0 0 0 0 0 0 0 0 0 0 x 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 x x x x x x x 0 x x x x x x 0 x 0 x x 0 x 0 0 0 0 0 0 x 0 x x x 0 x 0 x x 0 0 0 x x 0 0 0 x 0 0 0 x x 0 x x x x 0 x 0 x x 0 x 0 0 x x x x 0 0 0 0 x x 0 x 0 0 0 0 0 x 0 x x 0 0 x x x 0 0 x 0 x x 0 x x x 0 x 0 x x 0 x 0 0 x 0 x x 0 x 0 0 x x x 0 0 0 x x x 0 0 x x x x x 0 0 0 x 0 0 0 x x 0 x x x 0 x 0 x 0 0 0 x 0 x x x x x 0 0 0 0 0 0 x 0 x 0 0 x x 0 0 0 0 x x x x 0 x 0 x x x x x x x 0 x x x 0 0 x x x x x x x 0 0 x 0 x x x x x x x 0 x 0 x x x x x 0 x x x x 0 0 x x 0 0 0 x x x x 0 x 0 0 x 0 x x x 0 x 0 x x x 0 0 0 0 0 0 x x x x 0 x x x 0 x 0 0 x 0 0 0 0 0 0 x 0 x 0 0 x 0 x x x x x x x 0 x 0 x x x 0 x 0 0 0 0 0 x x 0 0 0 0 0 0 0 0 0 0 x x 0 0 0 0 x x x x 0 0 0 0 0 0 x 0 x x 0 x 0 x x x x x 0 0 0 0 x 0 0 0 0 0 0 0 0 0 x 0 x x x x x x 0 x 0 x x x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x x 0 x 0 0 0 0 0 0 0 x x 0 0 0 0 0 x 0 x 0 x 0 0 0 0 0 0 0 x 0 0 0 x 0 x x x x x x x 0 0 x x 0 x x 0 0 0 0 0 0 0 0 0 0 x x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x x x x x x 0 0 x x 0 0 x x 0 x 0 0 x x x x 0 x 0 0 x 0 x x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x x 0 x 0 0 x 0 x 0 0 0 x x x x x x x x 0 x x x 0 0 0 0 0 0 x x 0 x 0 x x 0 x x 0 0 0 0 0 0 0 0 0 x x x x x x x x x x 0 x x 0 x x 0 0 0 x x 0 0 x 0 0 0 x x 0 0 0 x x 0 0 0 0 0 0 0 x 0 0 0 0 0 x x x x x x 0 0 0 0 0 x 0 0 x 0 x 0 0 x x 0 0 0 0 x 0 0 0 0 x 0 x 0 x x x 0 0 0 x x x x x x x 0 x x x x 0 x 0 x x x 0 0 0 x x x 0 0 0 0 0 x x 0 x 0 0 x x 0 x x x x x 0 0 0 0 x x 0 x 0 0 x 0 x 0 x 0 x x 0 x 0 x x x 0 0 0 x 0 0 x 0 0 0 0 x x x x x 0 0 0 0 0 x x 0 0 x x 0 x 0 x 0 0 0 0 x 0 x x x 0 x 0 0 x x x x 0 x x 0 x x x x x x 0 x x 0 0 0 0 0 0 0 x x x x 0 x x 0 x x x x x 0 0 x x 0 x x x 0 0 x x 0 x 0 x 0 x 0 x 0 x x x 0 0 0 x x 0 0 0 0 x x x x 0 0 0 0 0 x x 0 x x 0 0 0 x x 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 x x 0 x x 0 0 0 0 x x 0 x x 0 x 0 x x 0 x 0 0 0 x 0 x x x x 0 x 0 x 0 0 x 0 x 0 0 0 0 x 0 0 0 x 0 x 0 0 x 0 0 0 x x x x 0 x x 0 x x 0 x x 0 x 0 0 0 0 x 0 0 0 x x x x x 0 0 0 x x 0 0 0 0 x x x x 0 0 x x x x x x 0 x 0 0 x 0 x x x 0 0 x 0 x 0 0 0 0 0 x 0 0 x 0 x 0 0 0 x x x x 0 x x x x x 0 x x 2 0 0 x 0 x x x x 0 x x x x 0 0 0 0 x 0 x 0 x x x 0 0 x x 0 0 0 x 0 0 x x x 0 x x x x x x 0 0 x x 0 x x 0 0 x 0 x 0 0 0 0 x x x 0 0 0 x x x x x 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 x x 0 0 0 x x 0 0 0 x x x 0 0 0 x 0 x x x 0 x 0 x x 0 x x x 0 x x 0 0 x 0 0 x 0 0 0 x 0 x 0 x x 0 x 0 0 0 0 0 x x x x 0 0 0 0 0 0 0 0 0 0 0 x 0 x 0 x x x x 0 0 x x 0 0 x 0 0 x x x 0 x x x x x x x 0 0 x x 0 x 0 x x 0 0 0 0 0 0 x 0 x x 0 x x x x x 0 x 0 0 0 0 x 0 0 x 0 x 0 0 0 0 0 0 x 0 x x 0 x x 0 x x x x x 0 x 0 0 0 x x 0 x 0 x 0 x x 0 0 x 0 0 0 x 0 0 0 x x x 0 0 0 0 0 x x x x 0 x x x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x x x x 0 0 0 0 0 0 0 0 0 x x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x x x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x x 0 0 x 0 0 0 0 0 0 0 0 0 0 x x x x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x x 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 x 0 x 0 x x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0

... Data truncated

0 - Probable Safe Block
? - Unknown Block
x - Potentially Malicious Block

Similar Families

Wavipeg.A

Files Modified

File	Attributes
c:\users\user\appdata\roaming\microsoft\media	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\roaming\microsoft\media	Synchronize,Write Attributes
c:\users\user\appdata\roaming\microsoft\media\mssvc.exe	Generic Write,Read Attributes

EnigmaSoft’s Payment Processor Digital River GmbH Filing for Bankruptcy Does Not Impact SpyHunter Customers’ Anti-Malware Protection

Search

Change Region

Backdoor.Wavipeg.A

Threat Scorecard

EnigmaSoft Threat Scorecard

Analysis Report

General information

Known Samples

Known Samples

Windows Portable Executable Attributes

Windows Portable Executable Attributes

File Icons

File Icons

File Traits

Block Information

Block Information

Visual Map

Similar Families

Similar Families

Files Modified

Files Modified

Submit Comment

Trending

Thewebtimes.net

PUP.KISS Keylogger

'866-291-9960' Pop-Ups

Most Viewed

How To Fix 'Printer Driver is Unavailable' Error

Discord Is Stuck on Gray Screen

Discord Shows Black Screen when Sharing Screen