nSoftware.Universal.Keygen.V1.9.by.yinsimB4A.exe
- Filename:
- nSoftware.Universal.Keygen.V1.9.by.yinsimB4A.exe
- md5:
- 53660c5cf5db5827844278dcf1fcb0a3
- sha1:
- 179445afb4b63f671cad072cad4450c6f333da54
- sha256:
- 6a1e8140e72a0841b11d5437be4444494c2d1cde1766f9fb9611531a28996125
- Filetype:
- PE32 executable (GUI) Intel 80386, for MS Windows, ...
- Size (Bytes):
- 1683968
- Classification:
- malicious
- Indexed:
- Sun Aug 27 2023 06:51:22 GMT+0000 (2 years ago)
- Last modified:
- Sun Aug 27 2023 07:15:04 GMT+0000 (2 years ago)
Sample information
6
Antivirus detections0
IDS alerts1
Processes0
Http events0
Contacted hosts0
DNS Requests10
Score
Current activity of this Sample
Blacklist timeline
First seen: Sun Aug 27 2023 06:15:04 GMT+0000
Last seen: Sun Aug 27 2023 07:15:04 GMT+0000
Period: an hour
Last seen: Sun Aug 27 2023 07:15:04 GMT+0000
Period: an hour
Hashes
In depth details
Dates
Developers can check API Specification here:
Request:
curl -H "Authorization: Bearer <API_KEY>" https://api.maltiverse.com/sample/6a1e8140e72a0841b11d5437be4444494c2d1cde1766f9fb9611531a28996125
Request:
Alternatively you can use Maltiverse Python3 Library:
import requests
import json
url = 'https://api.maltiverse.com/sample/6a1e8140e72a0841b11d5437be4444494c2d1cde1766f9fb9611531a28996125'
response = requests.get(url)
print(json.dumps(response.json(), indent=4, sort_keys=True))
Request:
$url = 'https://api.maltiverse.com/sample/6a1e8140e72a0841b11d5437be4444494c2d1cde1766f9fb9611531a28996125'
$headers = @{Authorization=("Bearer {0}" -f "<API_KEY>")}
$response = Invoke-RestMethod $url -Headers $headers
Write-Output $response
Response:
{
"antivirus": [
{
"description": "W32.AIDetectMalware",
"name": "Bkav"
},
{
"description": "Artemis!53660C5CF5DB",
"name": "McAfee"
},
{
"description": "BehavesLike.Win32.Dropper.tc",
"name": "McAfee-GW-Edition"
},
{
"description": "Trojan.Generic@AI.100 (RDML:b24slH9ec/yUUTeJa69pKw)",
"name": "Rising"
},
{
"description": "Trojan.Malware.300983.susgen",
"name": "MaxSecure"
},
{
"description": "win/grayware_confidence_60% (D)",
"name": "CrowdStrike"
}
],
"av_ratio": 8,
"blacklist": [
{
"count": 1,
"description": "Generic Malware",
"first_seen": "2023-08-27 07:15:04",
"last_seen": "2023-08-27 07:15:04",
"source": "Hybrid-Analysis"
}
],
"classification": "malicious",
"creation_time": "2023-08-27 06:51:22",
"filename": [
"nSoftware.Universal.Keygen.V1.9.by.yinsimB4A.exe"
],
"filetype": "PE32 executable (GUI) Intel 80386, for MS Windows, ...",
"is_alive": false,
"is_cdn": false,
"is_cnc": false,
"is_distributing_malware": false,
"is_hosting": false,
"is_iot_threat": false,
"is_known_attacker": false,
"is_known_scanner": false,
"is_mining_pool": false,
"is_open_proxy": false,
"is_phishing": false,
"is_sinkhole": false,
"is_storing_phishing": false,
"is_tor_node": false,
"is_vpn_node": false,
"md5": "53660c5cf5db5827844278dcf1fcb0a3",
"modification_time": "2023-08-27 07:15:04",
"process_list": [
{
"name": "nSoftware.Universal.Keygen.V1.9.by.yinsimB4A.exe",
"normalizedpath": "C:\\nSoftware.Universal.Keygen.V1.9.by.yinsimB4A.exe",
"sha256": "6a1e8140e72a0841b11d5437be4444494c2d1cde1766f9fb9611531a28996125",
"uid": "00000000-00003836"
}
],
"score": 10,
"scoring_executed_time": "2025-02-27 16:20:33",
"sha1": "179445afb4b63f671cad072cad4450c6f333da54",
"sha256": "6a1e8140e72a0841b11d5437be4444494c2d1cde1766f9fb9611531a28996125",
"size": 1683968,
"type": "sample"
}
Antivirus positives
| Antivirus | Threat |
|---|---|
| Bkav | W32.AIDetectMalware |
| McAfee | Artemis!53660C5CF5DB |
| McAfee-GW-Edition | BehavesLike.Win32.Dropper.tc |
| Rising | Trojan.Generic@AI.100 (RDML:b24slH9ec/yUUTeJa69pKw) |
| MaxSecure | Trojan.Malware.300983.susgen |
| CrowdStrike | win/grayware_confidence_60% (D) |
Process list
- uid
- 00000000-00003836
- commandline
- name
- nSoftware.Universal.Keygen.V1.9.by.yinsimB4A.exe
- normalizedpath
- C:\nSoftware.Universal.Keygen.V1.9.by.yinsimB4A.exe
- sha256
- 6a1e8140e72a0841b11d5437be4444494c2d1cde1766f9fb9611531a28996125