Threat Database Trojans Trojan.Kryptik.Gen.ALH

Trojan.Kryptik.Gen.ALH

By CagedTech in Trojans

Analysis Report

General information

Family Name: Trojan.Kryptik.Gen.ALH
Signature status: No Signature

Known Samples

MD5: 6038464f064d77e604a23fa1d09079ac
SHA1: 13ea09034c23d0b8284ea0db7f83bc6e04952e69
SHA256: 1B3AFFEBA6499B7BDC08148DB2C650B9C984DEF70FF3710E7E8975A458A24CD4
File Size: 1.72 MB, 1724416 bytes
MD5: 6f76b2108e2ac61bd3a526a149663ed9
SHA1: ba5c4393b6dd0c4b281175d5275f8a5d0909a408
SHA256: 32D93CBC0A3DFF192FE4B4895CCAC9CCE60AB66D470B0ED5327B271237035374
File Size: 1.70 MB, 1699840 bytes
MD5: 26488d2c66a6a055fccf2c9ba0ee714c
SHA1: 1904328ce547931582bde055296e435ec53647e5
SHA256: 14966BBCA137471D5DD7B605E2D1623299868BD8ED91A30A6318E8411DC85CAF
File Size: 4.79 MB, 4791808 bytes
MD5: 6e39c3952182e28df6c0851c5cb00fc3
SHA1: e244146b10c2142a9bede535796e24c96f3a0ba3
SHA256: FD2069AAF961B4C6EC6476C55027862329C0B729883EEEAEA36D4E1742F51899
File Size: 1.68 MB, 1679360 bytes
MD5: 8ac94f2d130234a7fcecb46aef07a0ee
SHA1: 5ef4f09a5fe78ac73d4e75f5f50e745ff88f8619
SHA256: 09B131A0D96C78597E6981B9F59CD803C1702BF6B2E3B28C2603885A0EC3B2EE
File Size: 3.12 MB, 3124659 bytes
Show More
MD5: 10c25eef5957bb77e51e42b6abffc903
SHA1: 33310257ce5c139c42a9056c6a535eda6c681b98
SHA256: 1B026F7A00E9351F40B2AFA63D6B6BEAE6C66C14997AB5EA5E490087DEEB79BF
File Size: 3.28 MB, 3280775 bytes
MD5: 0a93a8e2f6bc6b2b111a4a5fe03d2292
SHA1: c837c6c8101f92ad374997a3df1b7c31b3c6e4ac
SHA256: 18637C7F04FBF3A1371C60EC3607D55D229665BF0884106404183E0034742C35
File Size: 4.73 MB, 4731904 bytes
MD5: bc31e89356aba52607cbd678176182a2
SHA1: 497ee8edf8a444381b90d8f1898e06d82e06220f
SHA256: 24B8178BE8FBDB90561B6472FD82E220787189C86D007C4AF4F6FBF4EE940A0C
File Size: 3.24 MB, 3236924 bytes
MD5: 5fdb0b6c66e7996dfaf1f2acad436af0
SHA1: 5c4e0e86eaaab9cd53a95d21c3ab632fa8d8ef75
SHA256: 6D250F4EFE15643160F09FBA73795BD4148E33BC69A1C6360C5BED9CD70F526A
File Size: 5.22 MB, 5219328 bytes

Windows Portable Executable Attributes

  • File doesn't have "Rich" header
  • File doesn't have debug information
  • File doesn't have exports table
  • File doesn't have security information
  • File has TLS information
  • File is 64-bit executable
  • File is either console or GUI application
  • File is GUI application (IMAGE_SUBSYSTEM_WINDOWS_GUI)
  • File is Native application (NOT .NET application)
  • File is not packed
Show More
  • IMAGE_FILE_DLL is not set inside PE header (Executable)
  • IMAGE_FILE_EXECUTABLE_IMAGE is set inside PE header (Executable Image)

File Icons

Windows PE Version Information

Name Value
Company Name
  • Alpha Smart Group
  • Alpha Smart Pro LLC
  • Base Prime LLC
  • Data Neural Solutions
  • Digital Logic Ltd
  • Digital Modern Global Inc
  • Future Elite Net Ltd
  • Global Web LLC
  • Web Future Inc
File Description
  • Concurrent Excellence
  • Detector Remarkable Excellence Detector
  • Dynamic API Outstanding Network
  • Easy Robust Accelerator
  • Manager AI Safe Data
  • Processor Productive
  • Real Instant Performance Precision
  • Secure Enterprise Premium
  • Trusted Auto
File Version
  • 20.5.0.4046
  • 18.2.6.8116
  • 18.0.89.8300
  • 16.1.74.4590
  • 13.1.60.6544
  • 12.9.65.9656
  • 8.6.98.1336
  • 3.3.12.4602
  • 3.1.93.9192
Internal Name
  • advanced_excellence_memory
  • encrypted_buffer_cyber
  • exceptional_compiler_parallel
  • innovative_max_precision
  • instant_total_accuracy
  • outstanding_quick_pro
  • quick_live_powerful
  • robust_hyper_precision
  • tree_live_blockchain
Legal Copyright
  • Copyright (C) 2020 Digital Modern Global Inc
  • Copyright (C) 2021 Base Prime LLC
  • Copyright (C) 2022 Alpha Smart Group
  • Copyright (C) 2022 Future Elite Net Ltd
  • Copyright (C) 2022 Global Web LLC
  • Copyright (C) 2023 Data Neural Solutions
  • Copyright (C) 2023 Digital Logic Ltd
  • Copyright (C) 2024 Web Future Inc
  • Copyright (C) 2025 Alpha Smart Pro LLC
Original Filename
  • advanced_excellence_memory.dat
  • encrypted_buffer_cyber.dat
  • exceptional_compiler_parallel.exe
  • innovative_max_precision.exe
  • instant_total_accuracy.dat
  • outstanding_quick_pro.dat
  • quick_live_powerful.dat
  • robust_hyper_precision.dat
  • tree_live_blockchain.exe
Product Name
  • Advanced Excellence Memory Explorer
  • Encrypted Buffer Cyber Enhancer
  • Exceptional Compiler Parallel Easy Browser
  • Innovative Max Precision Monitor
  • Instant Total Accuracy Tracker
  • Outstanding Quick Pro Async Creator
  • Quick Live Powerful Explorer
  • Robust Hyper Precision Business Manager
  • Tree Live Blockchain Optimizer
Product Version
  • 20.5.0.4046
  • 18.2.6.8116
  • 18.0.89.8300
  • 16.1.74.4590
  • 13.1.60.6544
  • 12.9.65.9656
  • 8.6.98.1336
  • 3.3.12.4602
  • 3.1.93.9192

File Traits

  • big overlay
  • HighEntropy
  • x64

Block Information

Total Blocks: 21,101
Potentially Malicious Blocks: 20,542
Whitelisted Blocks: 559
Unknown Blocks: 0

Visual Map

0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x x x x 0 x 0 x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x
... Data truncated
0 - Probable Safe Block
? - Unknown Block
x - Potentially Malicious Block

Similar Families

Windows API Usage

Category API
Syscall Use
  • ntdll.dll!NtFreeVirtualMemory
  • ntdll.dll!NtQueryInformationProcess
  • ntdll.dll!NtQueryVirtualMemory
  • ntdll.dll!NtSetEvent
  • ntdll.dll!NtSetInformationProcess
  • ntdll.dll!NtSetInformationWorkerFactory
  • ntdll.dll!NtTestAlert
  • ntdll.dll!NtWaitLowEventPair
  • ntdll.dll!NtWriteFile
  • UNKNOWN

Trending

Most Viewed

Loading...