Malware Analysis Report

2025-06-16 05:09

Sample ID 221222-26wa6sfd92
Target 252344dedeed4465186f707aa67cf8c9.bin
SHA256 9217e4f03e9061611c53f3966d6f50123632316f7f46072f33995c890bc44943
Tags
nymaim
score
10/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
10/10

SHA256

9217e4f03e9061611c53f3966d6f50123632316f7f46072f33995c890bc44943

Threat Level: Known bad

The file 252344dedeed4465186f707aa67cf8c9.bin was found to be: Known bad.

Malicious Activity Summary

nymaim

Nymaim family

MITRE ATT&CK

N/A

Analysis: static1

Detonation Overview

Reported

2022-12-22 23:12

Signatures

Nymaim family

nymaim

Analysis: behavioral1

Detonation Overview

Submitted

2022-12-22 23:12

Reported

2022-12-22 23:14

Platform

win7-20221111-en

Max time kernel

29s

Max time network

31s

Command Line

"C:\Users\Admin\AppData\Local\Temp\252344dedeed4465186f707aa67cf8c9.exe"

Signatures

N/A

Processes

C:\Users\Admin\AppData\Local\Temp\252344dedeed4465186f707aa67cf8c9.exe

"C:\Users\Admin\AppData\Local\Temp\252344dedeed4465186f707aa67cf8c9.exe"

Network

N/A

Files

N/A

Analysis: behavioral2

Detonation Overview

Submitted

2022-12-22 23:12

Reported

2022-12-22 23:14

Platform

win10v2004-20220812-en

Max time kernel

62s

Max time network

125s

Command Line

"C:\Users\Admin\AppData\Local\Temp\252344dedeed4465186f707aa67cf8c9.exe"

Signatures

N/A

Processes

C:\Users\Admin\AppData\Local\Temp\252344dedeed4465186f707aa67cf8c9.exe

"C:\Users\Admin\AppData\Local\Temp\252344dedeed4465186f707aa67cf8c9.exe"

Network

Country Destination Domain Proto
N/A 8.238.111.126:80 tcp
N/A 8.238.111.126:80 tcp

Files

N/A