Extracted

• • Target

    file.exe

  • Size

    1.4MB

  • MD5

    afe9ad1bd7aedb6f26bc0fa1d3e786f1

  • SHA1

    4f2e9749a898a5db29819b10771624711763f140

  • SHA256

    785d5d2fc4604c7a7e1a794141f13762d82f30fa104e572c639cd2ef65e7a775

  • SHA512

    3426fc818e25f6b6d921d55a7881ee2dd3c82c984545d03490d73aa349dcaf98fca6e906736f4fd221ffd805b81239a77f6fc3af2d14410c571260e776e5e5e3

  • SSDEEP

    24576:5iz9D05eG4hCSe3b/fFKrZ+qY9xHxr6Fo+lYnQ5/gwen7yjigZIY7eCLxYi4:y9DrG40Se3T82J++QSlq1NeVi4

  Score

  10^/10

  nymaimdiscoverytrojan

  • NyMaim

    NyMaim is a malware with various capabilities written in C++ and first seen in 2013.

    trojannymaim

  • Executes dropped EXE

  • Loads dropped DLL

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2