Extracted

• • Target

    file.exe

  • Size

    1.3MB

  • MD5

    ea5d0b2e405840eb71f760eaf6bbff6e

  • SHA1

    5dc6ba3743f47b4dba4af9d7a25b0858e97ef31b

  • SHA256

    cc7b7c80fcb3d14fdc1dd35b617061de9efbc54e73ddb6c2cb46b46e3ccedebd

  • SHA512

    01eb070c78233d33977108f3b8f894aa7bdd4bacecee3239f5ddb1c47d2973fe7d01bde62ae3d60b3bdc94f2d571846b6b4228b523d1605ff978e059978c3b6c

  • SSDEEP

    24576:q20ITfWw961ZEwfNjH6BeRLUQ70lm0/wFV/AITA8DtK1WygXC75ld1qSVpk:q2b61PtE4PIlm0/MAIM8EBd1qapk

  Score

  10^/10

  nymaimdiscoverytrojan

  • NyMaim

    NyMaim is a malware with various capabilities written in C++ and first seen in 2013.

    trojannymaim

  • Executes dropped EXE

  • Loads dropped DLL

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2