Multi-License Discount Quote

Change Region

English
Threat Database Worms Worm.Allaple.F

Worm.Allaple.F

By CagedTech in Worms

Threat Scorecard

Popularity Rank: 8,475
Threat Level: 50 % (Medium)
Infected Computers: 101
First Seen: June 25, 2022
Last Seen: February 19, 2026
OS(es) Affected: Windows

Analysis Report

General information

Family Name: Worm.Allaple.F
Packers: UPX
Signature status: No Signature

Known Samples

MD5: 3762563f0fd1a1dbe61ff17daa47cf72
SHA1: e8c9d1855e91b986dcb02920d40b2abc2b4063d0
SHA256: 9B862B38FEF3EFB3B6B45C090CA04F30A6FC68F80B8E931ECF31A8620103BD2E
File Size: 152.63 KB, 152633 bytes
MD5: 57642b84479dc19bd3fc6d13b01a37d1
SHA1: d47edc83bc0679f0d23304c11d4a06be878570f4
SHA256: 7129D81A4672EC5D370F1D20B2C3204E0BD4A73137A9AB1E2D33F7F4C46CB1FB
File Size: 32.77 KB, 32768 bytes
MD5: 6f2efc139e89711634d9b72e2bd3d483
SHA1: 71f512527537da725c4dc4f1c4ed1155190c8eb4
SHA256: B2F1CF9141CF9D65EC9817F5A467FB5B662743285CA521127199D42EC37C92F6
File Size: 263.86 KB, 263864 bytes
MD5: 737ac5dd1bf8d35a98499a75a9edd9da
SHA1: 3b139cbb773e2132311bfa2eb33fa05b4eed3d0d
SHA256: 10E4455C3D07489C1DEBF41DBD656F816E1A7EB38A9E9287EDA42C0E6F2CD67B
File Size: 168.18 KB, 168178 bytes
MD5: c4428987c3c9b46f44720d621623d202
SHA1: 9968fd60549ff36ecdea0e15e4f3bfe625bb8a0f
SHA256: 4839A57A887F0C647A60130D1490A99FFF4B507D906D667245F47DCF3C512659
File Size: 190.23 KB, 190227 bytes

Windows Portable Executable Attributes

  • File doesn't have "Rich" header
  • File doesn't have debug information
  • File doesn't have exports table
  • File doesn't have relocations information
  • File doesn't have security information
  • File has been packed
  • File is 32-bit executable
  • File is either console or GUI application
  • File is GUI application (IMAGE_SUBSYSTEM_WINDOWS_GUI)
  • File is Native application (NOT .NET application)
Show More
  • File is not packed
  • IMAGE_FILE_DLL is not set inside PE header (Executable)
  • IMAGE_FILE_EXECUTABLE_IMAGE is set inside PE header (Executable Image)

File Icons

File Traits

  • big overlay
  • Installer Manifest
  • No Version Info
  • ntdll
  • packed
  • x86

Block Information

Total Blocks: 49
Potentially Malicious Blocks: 23
Whitelisted Blocks: 19
Unknown Blocks: 7

Visual Map

x 0 x x x 0 0 0 x ? x ? x 0 ? ? x x x 0 0 0 x ? 0 0 x 0 0 0 0 0 x x 0 x x ? x x x ? 0 0 x x x 0 x
0 - Probable Safe Block
? - Unknown Block
x - Potentially Malicious Block

Similar Families

  • Allaple.F

Files Modified

File Attributes
c:\users\user\downloads\bin\cfg.link Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\downloads\bin\mt.cfg Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\downloads\log.txt Generic Read,Write Data,Write Attributes,Write extended,Append data

Windows API Usage

Category API
Anti Debug
  • IsDebuggerPresent
User Data Access
  • GetUserObjectInformation
Process Shell Execute
  • CreateProcess
Process Terminate
  • TerminateProcess

Shell Command Execution

c:\users\user\downloads\d47edc83bc0679f0d23304c11d4a06be878570f4_0000032768 \r

Trending

Most Viewed

Loading...