Extracted

• • Target

    file.exe

  • Size

    1.2MB

  • MD5

    532ceeb263948f2202ee9035bf59c06f

  • SHA1

    73749a041c824943835615a9ff9b23bd0dac2e77

  • SHA256

    c3c889105bdc49111b7247d4b658348c489b4c94ef05640f31a375003ff53c57

  • SHA512

    0f2bb7c900fc94d3a896e93680fffb3c743bd962158b10fe369ed518768d6228f374e1755223a80b3792c0245e58e3856fc6ac7e75143ca91c418c300e983526

  • SSDEEP

    24576:FizPXxP0TFPl1pU5neYoplGv8GkVp0cdNWXC9euE/dJ1pLNjNVs1T2zIkgZIY7eQ:ufiTfivoHGvMAIdqdJ1pxjN6Z2zIDNeQ

  Score

  10^/10

  nymaimdiscoverytrojan

  • NyMaim

    NyMaim is a malware with various capabilities written in C++ and first seen in 2013.

    trojannymaim

  • Executes dropped EXE

  • Loads dropped DLL

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2