PUP.Spyrix Personal Monitor
Threat Scorecard
EnigmaSoft Threat Scorecard
EnigmaSoft Threat Scorecards are assessment reports for different malware threats which have been collected and analyzed by our research team. EnigmaSoft Threat Scorecards evaluate and rank threats using several metrics including real-world and potential risk factors, trends, frequency, prevalence, and persistence. EnigmaSoft Threat Scorecards are updated regularly based on our research data and metrics and are useful for a wide range of computer users, from end users seeking solutions to remove malware from their systems to security experts analyzing threats.
EnigmaSoft Threat Scorecards display a variety of useful information, including:
Popularity Rank: The ranking of a particular threat in EnigmaSoft’s Threat Database.
Severity Level: The determined severity level of an object, represented numerically, based on our risk modeling process and research, as explained in our Threat Assessment Criteria.
Infected Computers: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
See also Threat Assessment Criteria.
| Popularity Rank: | 3,016 |
| Threat Level: | 10 % (Normal) |
| Infected Computers: | 5,405 |
| First Seen: | October 30, 2019 |
| Last Seen: | February 5, 2026 |
| OS(es) Affected: | Windows |
Table of Contents
SpyHunter Detects & Remove PUP.Spyrix Personal Monitor
File System Details
PUP.Spyrix Personal Monitor may create the following file(s):
| # | File Name | MD5 |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|---|
| 1. | spyrixemployee.exe | 6c13d14781e14c7de3c46d021af99641 | 365 |
| 2. | spm_setup [2].exe | 768c934fc4d0da03b14943eb9a1afaf9 | 0 |
| 3. | sem.exe | 2434c800b15e8c7cc717004b759f9c50 | 0 |
| 4. | spm_setup.exe | fc35ff9a236230b0abc1a449286e97c9 | 0 |
| 5. | sime64.exe | bffde5b3b7e3cc7ccf1014a81eee8dc6 | 0 |
| 6. | spmm.exe | 26f31f9afcef876e65a59db367785e16 | 0 |
| 7. | sps.exe | 6a21267b0f84f7b292f5126072411f74 | 0 |
| 8. | spr.exe | 4412fe26f6afb61162d2e4d3ffbbca04 | 0 |
| 9. | spm.exe | e32a10e76938c3b20d773d6710fb6eab | 0 |
| 10. | spm [2].exe | 4d89b4976c079d8005b88eac7f732406 | 0 |
| 11. | spmm [2].exe | ad5ce0646fef47dd3cd912da30894310 | 0 |
Analysis Report
General information
| Family Name: | PUP.Spyrix Personal Monitor |
|---|---|
| Signature status: | Root Not Trusted |
Known Samples
Known Samples
This section lists other file samples believed to be associated with this family.|
MD5:
ca35447cb4f78ee5c030d6b8ffcf3f39
SHA1:
7ab6fa518ce95043934228c2a49a2237275866f9
File Size:
5.33 MB, 5327808 bytes
|
|
MD5:
6809b7afd13df85832e8974d61bd12dc
SHA1:
402ce6756f7e57c6c408e219d6d55593c8526d11
File Size:
5.35 MB, 5351872 bytes
|
|
MD5:
97d14de7440081c84462b1076ecb0e15
SHA1:
2ca631a7a39bad85b7571bcb6059e0eb1ba1f4b9
File Size:
5.37 MB, 5365696 bytes
|
|
MD5:
0a9a72984dbe6774f493e9c9a4a46df0
SHA1:
bf29de434a64c3038691cf84945defb75e6a4901
File Size:
1.05 MB, 1048000 bytes
|
|
MD5:
bbc8ab66cd4e5b511dad9b140c9c8153
SHA1:
c49c978f4074a4ad7718e88f8a61aee295e46191
File Size:
5.33 MB, 5329344 bytes
|
Show More
|
MD5:
292752e16d144b1ff10946dc529c0c01
SHA1:
968e3c863cba0bcee10b5bf0b8147e3ec40fc808
File Size:
5.37 MB, 5367232 bytes
|
|
MD5:
6025c79842b0e29ffa3446b0e05ca889
SHA1:
0933c096faeb4fd3e4e1b30a248bcece8229d545
File Size:
5.41 MB, 5413824 bytes
|
|
MD5:
3060cf2e70ac3810148258f11994b3e3
SHA1:
187ed3b89c3ffd5073320cad71156176ba298181
File Size:
5.38 MB, 5378496 bytes
|
|
MD5:
977f8e4519778794fdae5e0a3508af28
SHA1:
52a5f90de811fef0c6b8dc26a8a15f0f98540f35
File Size:
5.33 MB, 5328832 bytes
|
|
MD5:
4eb97e027c80e5d850c71741d1e4ff2e
SHA1:
e29d4be6663f2a566c8ac0f329a64aa0da418b03
File Size:
5.10 MB, 5098656 bytes
|
|
MD5:
72623e60949a6425d424f4b21c4c6615
SHA1:
c1e9bac9265415916db89e8ff5a2c14df8dafc4b
SHA256:
8D09829D8F57DA5BBA9317B7A677F2A9051216DF1A2028CD64D9DB32CF0352A6
File Size:
5.37 MB, 5374912 bytes
|
|
MD5:
96811c4ffe6b094339c582ed3e40f2ac
SHA1:
323734683ea40d9a0372c47733b73e1825f3f3c7
SHA256:
A889FCDB06373C9909E9531DC3BC96F4D3F323072B0A59E5BB065AEFEA076A90
File Size:
5.36 MB, 5362688 bytes
|
|
MD5:
74e1dfd8b3228a0627637ff3b7d48a2d
SHA1:
d25f7954098cf59cebdea577095e4eca413ab6c3
SHA256:
7F4D06269BC5B435EA6F112A4668EDCA4480908AD38E0B6A57923F2DEFD93042
File Size:
5.37 MB, 5370816 bytes
|
|
MD5:
e5135dbb03b7dc0fb823100d96dcda81
SHA1:
c46b2112332ba62c1fc81724993c0608f606a6a8
SHA256:
861069E50C68E171C1443BA54B4040DA5F6E814CAD033DACB0662E9BDD52AC8C
File Size:
5.35 MB, 5350848 bytes
|
|
MD5:
8424179e971190fd7d89dbd371d69041
SHA1:
7a22709139163fe9dfb43da6cbc5c7089208eaad
SHA256:
E1CA8C09C1C83FF6D728A2CB30A4C6AF2A01BC20267A4504C195CF94A5E35CFF
File Size:
5.37 MB, 5370816 bytes
|
|
MD5:
ccb4fd612203ffaec795df032de2e9a0
SHA1:
2dcc5278379824f5fd9a5d95c6302038ceee4433
SHA256:
D2CE9DD0E18D934C03E6B851D0EFEC9310C3212D8E10BD3678DB2E097E4C2AF4
File Size:
5.38 MB, 5376960 bytes
|
|
MD5:
61a5e05675093d458b4b7849bb32fa4c
SHA1:
421b2f90122ea250622a4ddd86686853ed4e72a5
SHA256:
3055CCA1D16FD410492921085C28C2CCCF0D13AE09CB243848FA9CD5DBBAA340
File Size:
5.37 MB, 5373376 bytes
|
|
MD5:
dc934367a2dcbc7b2141639bbbe300d2
SHA1:
97e0fd623a9bf684f0620e6047239af6f7aac9a1
SHA256:
09936E26C204317929258461033BEB53EAE77BCA15D38AF5D1BC4720BA3D0B76
File Size:
5.38 MB, 5375424 bytes
|
|
MD5:
0955628222e3fe715728bd89d00ecef6
SHA1:
fb0b3656dfa7d3348144963e0a32f85f5f23e73e
SHA256:
870AD39721E3D8DDDA5DB8CC5F07E76E6959537670D0C148A2FCBBCC2B371576
File Size:
5.37 MB, 5372864 bytes
|
|
MD5:
59437b43752ec4f081d66d1d40c74b18
SHA1:
58b50fdbc473d07ac59237bc20deb713ca8b95fd
SHA256:
D837FDFEA0DC9AF40B6934358401010B340E90143D78EBE64C846CD9DEFEBD03
File Size:
1.87 MB, 1874880 bytes
|
|
MD5:
3bd1131e0e8d2df2df73246cee937b89
SHA1:
6458ef6495dfd9de45296463a6f03446a6cc2234
SHA256:
7C36B731261315AB7D806A5CE732A71398298C415A1FEB62846B4A0434362461
File Size:
5.41 MB, 5411776 bytes
|
|
MD5:
fc88e3f37ed4c1b4c6dd566d79e34ea6
SHA1:
4cd251adb4cd1795f70e3b1769924529121f8497
SHA256:
A9D91271CAED73BDB8383E3C24A3C5DC64336BCE904F08461078C53582659CBB
File Size:
5.41 MB, 5411992 bytes
|
|
MD5:
5af3171ea790f8b007c1fe2582a50c4e
SHA1:
d02b485629c00edbb7337f0348f957abff34fdd5
SHA256:
EA5EE4A63474C1B6A432710138BCE89F1096414AB70723081A3D814E19D39122
File Size:
5.37 MB, 5369280 bytes
|
|
MD5:
d267d672e9ceb51a53889f76166af6c1
SHA1:
6f07b383b36fe008feed12742458895d6557feed
SHA256:
B6064FDC9501D5A524E7F3243523B50FF4536E873E74C59BECE3B479C3313BFA
File Size:
5.42 MB, 5415360 bytes
|
|
MD5:
a7d64cca9b3a040c549f1d86e8cec848
SHA1:
d3b6f0f06dce67a424ac399f94e79907982e64a0
SHA256:
827894530078B455DDA8071DD24B599B51D1B6FEA6177909C9B73B4184712453
File Size:
5.41 MB, 5409432 bytes
|
|
MD5:
977c22e21db96ac2a83dde47436fe346
SHA1:
14cc51d83b1aa29631628f18ad800e229f692184
SHA256:
DA4B4E8E469CCC576E6CD23CDEAAB74494FFEE5E833D1D171E42C187D4686E9B
File Size:
5.41 MB, 5407896 bytes
|
|
MD5:
f8cb21e97cfe13c767e9e1a969837ca0
SHA1:
a32087f46b16c5f3575f06c465f03582426b5dff
SHA256:
0502A49EDF5962E3BFDD634402EBDF710605323081F86DD637660F102B9A5927
File Size:
5.10 MB, 5099136 bytes
|
|
MD5:
083d61e00d2c90dbf1f0b77da25bb869
SHA1:
beaafb14a485bef0c882b7eaf528099ef39bbbc0
SHA256:
0C64291E584EB721D0AE2EF4E327D60A47294C30EEC425B1FA9FBCCBE553E8FC
File Size:
5.41 MB, 5412504 bytes
|
|
MD5:
83ab94f17f01720c2a0413f54f4f920d
SHA1:
be204b54eaa47496517984107861386a3ea04ea1
SHA256:
9C7690BF32C10719FCAB298B3CFA22FB78FDE2768A21DEDBA60EE6CD65D7F2D9
File Size:
5.41 MB, 5411480 bytes
|
|
MD5:
5e1c384a40d8ac25241edf50c633a922
SHA1:
ce9ba5ba8d02a572cc7030c37b8bacb0ebfbb3c5
SHA256:
3830B0CE4BE220763024CB5EC2EF1B9AA766C40A3CF8E0CBD97DDFE87D2BA68D
File Size:
5.41 MB, 5414552 bytes
|
|
MD5:
48bd56b83aacf441a9de43abfe48865e
SHA1:
a127602dc62c2a773dddee75f229f7d31a68584b
SHA256:
02041DD9EA38CE756371BF8CB3D69B86CDC304E6C79F6F2C6D3C6141F4DB02F8
File Size:
5.41 MB, 5411480 bytes
|
|
MD5:
8c0cb17551e15a911fc694c274505e88
SHA1:
c020f4b9c388bb31378232017f7998f71a40f3f9
SHA256:
9AC5A75C4D353C5E71868FCF377A6708C0D02A1AA902C01D0297F1904B1D9548
File Size:
5.42 MB, 5418648 bytes
|
|
MD5:
ce8c2e5e25a0739313e13b74c4f90705
SHA1:
2564c721db9be83bd6d1d0e20a02ce3d42544a4b
SHA256:
04D08CFFD4342FE8321083658DE77B876AF645ED9257D8F9D85B01BF4F7056CD
File Size:
5.41 MB, 5413528 bytes
|
|
MD5:
369e9f12c3f45a09931f9dc3d32f3615
SHA1:
085e8d3bd5c0a81ab7af036c1c51581bb5bb02d2
SHA256:
99E36D5B73EC5C3E5346624F62F01A5177E17C51F4D8023DBEE46E2810026DB9
File Size:
5.33 MB, 5330384 bytes
|
|
MD5:
a4a22ff69a22f6adc80bc40856842156
SHA1:
88429b28e548caef4482d6583503facdfd09034f
SHA256:
AFC7764D0BA338CD6EED714508CA1DFDE192A16469E2CDA040204FF5FD338D3C
File Size:
5.27 MB, 5270416 bytes
|
|
MD5:
0e148cf867c45b033e4efc1b5035c05b
SHA1:
3fd9011aa7d5c9cfdf65b174f25803f7b6fd2996
SHA256:
B4F9449D4850F7F3135762849BAEAB3FCB4F137E613B353F563712D09D2B237F
File Size:
5.42 MB, 5415064 bytes
|
|
MD5:
642652830754b37a1684803cbb5d8f79
SHA1:
3b58ef9cdbdb65ee08273b1f4cd12fffb021df57
SHA256:
39A7407273BE878DB6278497C08F3E6A7CF355F53BBA70D5A4C7DCA998F6ABCE
File Size:
5.42 MB, 5421208 bytes
|
|
MD5:
cb581c03fea4f47686c2d9ac0862f6f6
SHA1:
1b1223eae13391634f20ac195f14adefc2750a79
SHA256:
A093599EA079B13B2C4BC1DCD90B97A4C4812C9F56C03104CAEECAB390979A50
File Size:
5.41 MB, 5411992 bytes
|
|
MD5:
c65ea66e72894a91c503b17604fe6427
SHA1:
14351a7ef372e38512d251d39959fbf97beb045e
SHA256:
790F937CA4A548DCC9EEA5EF1955391AB47C079CB8579274BBAB4307E8AB40B6
File Size:
5.41 MB, 5408408 bytes
|
|
MD5:
2dc65100796a4f627706b68e4279f5ba
SHA1:
1bf81b1f02d9d87d9ea6b79548eda82fb25420e7
SHA256:
BCD41181F87850065D4B1C67A8054FCEF36DF5ADB76C38CA4B3FC609EA14721E
File Size:
5.38 MB, 5377472 bytes
|
|
MD5:
c9884dd8270b3a5d15c76bc05e832f12
SHA1:
5de2525fefe9962546b60bc7bff6db671596480d
SHA256:
9112909285A89A11C96A6E4D516A01BD0DFF16930DE4E091B2FEBB5ED7533DFE
File Size:
5.41 MB, 5411480 bytes
|
|
MD5:
2bdaa34f7090949d609cffb167b55058
SHA1:
1b559c9e8c9e45a01d77d1f17231f3f8ee002a6e
SHA256:
31B82FB74957F780B432927AC1193EF718023F7A2C06BE45FE474D6ACF0F1245
File Size:
5.35 MB, 5346256 bytes
|
|
MD5:
7ef41f68b2a6f720c45b6d7b015cfa01
SHA1:
77d6b58c489dbcd0aacb24ea8273345655cd47ca
SHA256:
01540AEA665C85029A6AEB054100B151A66234B903BD62CD5BAC747749EE8C1F
File Size:
5.41 MB, 5409944 bytes
|
|
MD5:
2b7948f3f931209b76ce229110d78af9
SHA1:
57d3a1e77a481da18a77433fc38eb4ae4b2f3f4c
SHA256:
9E5FE2FD4CAF2BE196337B99AFFA1C1E2BACDC71A61C5ADA6A5204ADAC664C28
File Size:
5.42 MB, 5415576 bytes
|
|
MD5:
018833e32aa28ed3240ee25029a8c257
SHA1:
d6886f7c4eb9106eef21e48293796f8592795156
SHA256:
4C6B14C75AE62B1F4379C703BA2AB937657DBA4B1B24B06645F28E93B46ADB2F
File Size:
5.42 MB, 5418136 bytes
|
|
MD5:
f090bd928a1da6c3bf469f9d26e9e18a
SHA1:
0020093e9c3db28291d2d717856ed168ae791479
SHA256:
461A97037C9FD7F1959D6A709AE9C5C3B421A93FFD4F2E000BFE14907DAE5437
File Size:
5.28 MB, 5282768 bytes
|
|
MD5:
47b1fb3c7215fbe65f80ee356656ac88
SHA1:
39c05500918257754a7578073371f3e90ab46044
SHA256:
646531E7B35FAA2E0B48A98BA923C51B4C18973E03A96C1856E529DCE1746937
File Size:
5.42 MB, 5415576 bytes
|
|
MD5:
e48b396b8c0eb053fa8e211b33013ada
SHA1:
1cef95acf8bc226e728ca9548bf9d30690495473
SHA256:
50ABCE35084EFA40F7F2C7052F07CC8BEB8CF491229A3799F6CD85D0BB6DE3AE
File Size:
1.04 MB, 1044632 bytes
|
|
MD5:
6b3f6d73c719b83d4dc0e3e7c6bb2eb5
SHA1:
8c5cbf52c538618376ebb8f3a6e5e171568114de
SHA256:
BC27A023A11ECF47583201AF81E34030F43D2D40B73052E24C11610E2E70AE42
File Size:
5.35 MB, 5352912 bytes
|
|
MD5:
b7f56cf2b58b5931ff3ad1365c3cc1e9
SHA1:
747eff0e344e86e4f89482f80de68dee1b43c2c9
SHA256:
30D50DCCF5FF644DE907EA88B943EA8F0C51D4D45496ADA9FB7CE1902BC662CA
File Size:
5.41 MB, 5406872 bytes
|
|
MD5:
efd76234bc1f3effc58331d50fcddf83
SHA1:
e5bd20c9c2e21a5b899dd686f272c85eb4c282d0
SHA256:
2A971BD29CF444A09ECE05418DB83C41A6DC434ACF7B4FF7875942DE50A9261A
File Size:
5.41 MB, 5410968 bytes
|
|
MD5:
74f1e472909ca0e30917b1c440c81595
SHA1:
6e3ad5a97350141910dde3faeb1c37433c5170a3
SHA256:
CF68E6C96C2757CB11B04D246783C36A7DB1731D504E918681F3B34984E97853
File Size:
5.41 MB, 5412504 bytes
|
|
MD5:
6846db3bee3e0883624bcc420b0b040c
SHA1:
5920d3947c2bd50d726d4522a3cc219931066c01
SHA256:
2E219B6759F3A024D21D519EDE296D445CE1D6F842571C5C5AC6828C69CCB042
File Size:
5.42 MB, 5415064 bytes
|
|
MD5:
03a1cf882ddccd00550849373458604d
SHA1:
b6eca0e35a8ef77f8f6e7ac1046cb15c9b7d460d
SHA256:
4C342CAFA90295F7021D7DAE7B3FD200A2B27192D50B2E4E0A8280B96E7860A4
File Size:
5.42 MB, 5415576 bytes
|
|
MD5:
7824f213cf119c7e32e7e91493d23c18
SHA1:
aaa96d8be95f589c5d0e983e620845b6d5bf162a
SHA256:
AAD2A1D7BF5BB0A6A4CE5EFE0A73E0FAD818713D5761AB10C579E34610D19277
File Size:
5.41 MB, 5412504 bytes
|
|
MD5:
526a3d2a693e4d0c2bc3441cc0a2367c
SHA1:
f62c07c5aa4edc58aab49eaf3a5d3008d66b1977
SHA256:
2017CE8E32680710158D98F0DC2280FDF9AD046C1FEA9FC117843ED30282E26D
File Size:
5.42 MB, 5415064 bytes
|
|
MD5:
d8072d785810003c6276c0b0a0f7b49e
SHA1:
fd2cd2919ca38a387e0f735714a4d71ae3a0e629
SHA256:
A2C110B9569A0A3ACB72539DE519F0C5604AFDA846DCEB0A24C3F7762643C1BF
File Size:
5.41 MB, 5408328 bytes
|
|
MD5:
509845662c445ebafd7450079712e902
SHA1:
1c649a240659a9c09aaf72b8220c64489ab495fa
SHA256:
8BFC9EC702F51053A8D8B5C00268F66F7C4238FE493AA436EB86DB9A2F2CB968
File Size:
5.41 MB, 5414040 bytes
|
|
MD5:
439ec6a41ce6dfd05053cac07b8ef560
SHA1:
6f1f285c1ce1f88faeb5972328f8a372f2ed7f52
SHA256:
B69FC25C01CD4F11883E9D42F68D8AA70151C2387D7F4F35C153F998A35CCF6B
File Size:
5.41 MB, 5408408 bytes
|
|
MD5:
89fc7d6376160da0eeb301912ee1118d
SHA1:
b6dd0ae05d32ddd76f026a652844b8f8e62a128f
SHA256:
881F9CDA5782B5973ABEE73D371DF0866976C6F8855A6F27E92C2C0E12626003
File Size:
5.41 MB, 5406280 bytes
|
|
MD5:
7e848b3977ac2729eced1ff875d4a517
SHA1:
5b62a6e205a1696edd221bde2905d41e736f535e
SHA256:
17D0AD7077E4C118D6034351EA10C38DB165644AB75379BFF93D0C5E92BBB6A3
File Size:
5.32 MB, 5322152 bytes
|
|
MD5:
7c0a72a4ba7239d6167bfbef7aa3834a
SHA1:
a9228314d71434dc4cf00580f486d59c8678e2bf
SHA256:
030D9B22763609B3BABC28EE887D98AC4CAFEF55884183D2D994BD17447CEA02
File Size:
5.38 MB, 5381784 bytes
|
|
MD5:
4b75c166ce77f531bb46de779c349e79
SHA1:
1d79b080288a37b9f48f0bd2210549b6736299cd
SHA256:
A67BDFEC146E3E287C5D76D945F607704BDEF518AB125598FE2570EB32977A01
File Size:
5.41 MB, 5410376 bytes
|
|
MD5:
5988a6b34aa517ab7f11bb1e0ade0c43
SHA1:
c9bbbde1d5dfa76c0e02ef92037e272afcfcce7a
SHA256:
9E621E4FA50B5900905572D58F282B2ACA117138EDC62BF8CE6E5202A7A9AA34
File Size:
5.40 MB, 5400648 bytes
|
Windows Portable Executable Attributes
- File doesn't have "Rich" header
- File doesn't have debug information
- File doesn't have exports table
- File doesn't have relocations information
- File doesn't have security information
- File has TLS information
- File is 32-bit executable
- File is either console or GUI application
- File is GUI application (IMAGE_SUBSYSTEM_WINDOWS_GUI)
- File is Native application (NOT .NET application)
Show More
- File is not packed
- IMAGE_FILE_DLL is not set inside PE header (Executable)
- IMAGE_FILE_EXECUTABLE_IMAGE is set inside PE header (Executable Image)
File Icons
File Icons
This section displays icon resources found within family samples. Malware often replicates icons commonly associated with legitimate software to mislead users into believing the malware is safe.
Windows PE Version Information
Windows PE Version Information
This section displays values and attributes that have been set in the Windows file version information data structure for samples within this family. To mislead users, malware actors often add fake version information mimicking legitimate software.| Name | Value |
|---|---|
| File Description | System component |
| File Version |
|
| Original Filename |
|
| Product Name | Host application |
| Product Version |
|
Digital Signatures
Digital Signatures
This section lists digital signatures that are attached to samples within this family. When analyzing and verifying digital signatures, it is important to confirm that the signature’s root authority is a well-known and trustworthy entity and that the status of the signature is good. Malware is often signed with non-trustworthy “Self Signed” digital signatures (which can be easily created by a malware author with no verification). Malware may also be signed by legitimate signatures that have an invalid status, and by signatures from questionable root authorities with fake or misleading “Signer” names.| Signer | Root | Status |
|---|---|---|
| CLEVERCONTROL LLC | CLEVERCONTROL LLC | Self Signed |
| Clevercontrol LLC | GlobalSign Code Signing Root R45 | Root Not Trusted |
| CLEVERCONTROL LLC | GlobalSign GCC R45 CodeSigning CA 2020 | Self Signed |
| LLC KLEVER | Sectigo Public Code Signing Root R46 | Root Not Trusted |
File Traits
- .adata
- 00 section
- 2+ executable sections
- HighEntropy
- ntdll
- x86
Block Information
Block Information
During analysis, EnigmaSoft breaks file samples into logical blocks for classification and comparison with other samples. Blocks can be used to generate malware detection rules and to group file samples into families based on shared source code, functionality and other distinguishing attributes and characteristics. This section lists a summary of this block data, as well as its classification by EnigmaSoft. A visual representation of the block data is also displayed, where available.| Total Blocks: | 10 |
|---|---|
| Potentially Malicious Blocks: | 1 |
| Whitelisted Blocks: | 6 |
| Unknown Blocks: | 3 |
Visual Map
0
0
0
0
0
0
?
?
x
?
0 - Probable Safe Block
? - Unknown Block
x - Potentially Malicious Block
? - Unknown Block
x - Potentially Malicious Block
Similar Families
Similar Families
This section lists other families that share similarities with this family, based on EnigmaSoft’s analysis. Many malware families are created from the same malware toolkits and use the same packing and encryption techniques but uniquely extend functionality. Similar families may also share source code, attributes, icons, subcomponents, compromised and/or invalid digital signatures, and network characteristics. Researchers leverage these similarities to rapidly and effectively triage file samples and extend malware detection rules.- ClipBanker.QA
- Delf.AJ
- Delf.XA
- Deyma.G
- Deyma.GA
Show More
- Deyma.GB
- FakeInstaller.A
- FakeInstaller.B
- Injector.XG
- Injector.XN
- Keylogger.KC
- Keylogger.KD
- Keylogger.KE
- Keylogger.KH
- Keylogger.KI
- Kryptik.OFE
- Kryptik.XXBA
- Lotok.J
- Redline.R
- Spy.Agent.KG
- Stealer.UH
- Stealer.UHA
- Stealer.UHB
- Stealer.UHBA
- Stealer.UHBB
- Stealer.UHBC
- Stealer.UHBD
- Stealer.UHBE
- Stealer.UHBF
- Stealer.UHBG
- Stealer.UHBh
- Stealer.UHE
- Stealer.UHEA
- Stealer.UHEC
- Stealer.UHG
- Stealer.UHJ
- Stealer.UHJA
- Stealer.UHJB
- Stealer.UHM
- Stealer.UHN
- Stealer.UHO
- Stealer.UHR
- Stealer.UHRA
- Stealer.UHRB
- Stealer.UHRC
- Stealer.UHT
- Stealer.UHV
- Stealer.UHY
- WindowsExpertConsole.A
