Nymaim 22052018


        
            
                Markdown 1.37 KB
                                    
                        | None                    
                
                                        |
    0    0                            

            
                
                                    raw
                    download
                    clone
                    embed
                    print
                
                                    report
                
                                    
                        diff                    
                
                            
        
        
            [Nymaim 22052018]
[File Details]
MD5 5d6a35ff4c29cc08912f88b2f7729c34

SHA-1   9b81f980c8b4b07fd0aaf0d16a66febb9bf96726

SHA-256 d3d53010e5487139cb2f879a243a8d8b6f50778f4a76136119aaf77ac7a56922

ssdeep  12288:Oe0emNPr5eAU4PhBcBeFiAvoMM73HjlXRQSO4ZnWilmQv0KW:OeGgAa4xGjlX+St5v

Size    652.5 KB (668160 bytes)

Type    Win32 EXE

Magic   PE32 executable for MS Windows (GUI) Intel 80386 32-bit

Win32 Dynamic Link Library (generic) (38.4%)

Win32 Executable (generic) (26.3%)

OS/2 Executable (generic) (11.8%)

Generic Win/DOS Executable (11.6%)

DOS Executable Generic (11.6%)

Detection ratio 49 / 67

First submission    2018-05-22 11:11:51 UTC ( 3 minutes ago )

Last submission 2018-05-22 11:11:51 UTC ( 3 minutes ago )
https://app.any.run/tasks/d93f4f29-189f-4151-9efe-7864dc1b03fc
[Nymaim C2]
http://zepter.com/uexonbvxdf/index.php

http://carfax.com/uexonbvxdf/index.php  
[Nymaim IP addresses contacted]
82.77.200.208

151.237.138.38

80.98.183.111

86.101.230.109

186.87.135.2

213.6.58.250

46.40.123.136

89.190.74.198

47.74.242.102

79.185.39.90

109.96.248.32   
[Nymaim Filenames]

Directpay.com

Bank-Pay.com

Paydirect.com

OnlinePay.com

GiroPay.com

Sofort.com