Extracted

• • Target

    file.exe

  • Size

    1.2MB

  • MD5

    6bc7bfb3b0de95ecc134eb6aef4242bc

  • SHA1

    b9b9a76e34dd1b397bc9da4bd610607047f4c804

  • SHA256

    fce5f00df53eb645655267976e2b25449d3fda76a82c2b317cab4f63f72f8930

  • SHA512

    71fe7eb0fc778e7c3dbd98ed01414f8bdd6a388510d6a4c3042c2ea344a76046e804fcf21c518ab35926ecd40792f01de2dd7f64e06a79ae04f40c0de4644cdf

  • SSDEEP

    24576:R20A8Byc/pHf75Vrmt3beQZyRnvI52Zd7M9UaxY/S9AcKKtUIbSkl5l/Hlc:R26BppHXQbOfZd7M0/S9A2USl50

  Score

  10^/10

  nymaimdiscoverytrojan

  • NyMaim

    NyMaim is a malware with various capabilities written in C++ and first seen in 2013.

    trojannymaim

  • Executes dropped EXE

  • Loads dropped DLL

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2