nymaim | 8319d37661855ed727fe99fb78a988300b4938e60f4003239ddadf910f4d0da3 | Triage

Submit
Reports

Overview

overview

Static

static

file.exe

windows7-x64

file.exe

windows10-2004-x64

Sharing

General

Target

file.exe
Size

359KB
Sample

221005-x8yf4afch7
MD5

b850cae79bd87b5fa5f3762fea7ac52b
SHA1

4718c0c9f033471e21ea04e43cd0759761e21224
SHA256

8319d37661855ed727fe99fb78a988300b4938e60f4003239ddadf910f4d0da3
SHA512

ab27670ae2ac1c7bb72fef1ad4d776b41714c10661478839d878d19f8ad35556769c30d1d82f92f7bcc4e52a6fc8c912acf5ea0f12a3486efe71573194311de4
SSDEEP

6144:lRTH+eLVVvJyJ5ysGNQm1sQw+z+xaYW3z5LYuzbgwuQR2QrZwVfUPk:vTXB/yJ5U1sl+2aYa5cunn2QTc

Score

10^/10

nymaim trojan

Static task

static1

Behavioral task

behavioral1

Sample

file.exe

Resource

win7-20220812-en

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

file.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Extracted

Family

nymaim

C2

208.67.104.97

85.31.46.167

Targets

- Target
  
  file.exe
- Size
  
  359KB
- MD5
  
  b850cae79bd87b5fa5f3762fea7ac52b
- SHA1
  
  4718c0c9f033471e21ea04e43cd0759761e21224
- SHA256
  
  8319d37661855ed727fe99fb78a988300b4938e60f4003239ddadf910f4d0da3
- SHA512
  
  ab27670ae2ac1c7bb72fef1ad4d776b41714c10661478839d878d19f8ad35556769c30d1d82f92f7bcc4e52a6fc8c912acf5ea0f12a3486efe71573194311de4
- SSDEEP
  
  6144:lRTH+eLVVvJyJ5ysGNQm1sQw+z+xaYW3z5LYuzbgwuQR2QrZwVfUPk:vTXB/yJ5U1sl+2aYa5cunn2QTc
Score

10^/10

nymaim trojan
- NyMaim
  NyMaim is a malware with various capabilities written in C++ and first seen in 2013.
  trojan nymaim
- Downloads MZ/PE file
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Web Service

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy