Trojan.Kryptik.Gen.ALH

By CagedTech in Trojans

Table of Contents

Analysis Report

General information

Family Name:	Trojan.Kryptik.Gen.ALH
Signature status:	No Signature

Known Samples

MD5: 6038464f064d77e604a23fa1d09079ac

SHA1: 13ea09034c23d0b8284ea0db7f83bc6e04952e69

SHA256: 1B3AFFEBA6499B7BDC08148DB2C650B9C984DEF70FF3710E7E8975A458A24CD4

File Size: 1.72 MB, 1724416 bytes

MD5: 6f76b2108e2ac61bd3a526a149663ed9

SHA1: ba5c4393b6dd0c4b281175d5275f8a5d0909a408

SHA256: 32D93CBC0A3DFF192FE4B4895CCAC9CCE60AB66D470B0ED5327B271237035374

File Size: 1.70 MB, 1699840 bytes

MD5: 26488d2c66a6a055fccf2c9ba0ee714c

SHA1: 1904328ce547931582bde055296e435ec53647e5

SHA256: 14966BBCA137471D5DD7B605E2D1623299868BD8ED91A30A6318E8411DC85CAF

File Size: 4.79 MB, 4791808 bytes

MD5: 6e39c3952182e28df6c0851c5cb00fc3

SHA1: e244146b10c2142a9bede535796e24c96f3a0ba3

SHA256: FD2069AAF961B4C6EC6476C55027862329C0B729883EEEAEA36D4E1742F51899

File Size: 1.68 MB, 1679360 bytes

MD5: 8ac94f2d130234a7fcecb46aef07a0ee

SHA1: 5ef4f09a5fe78ac73d4e75f5f50e745ff88f8619

SHA256: 09B131A0D96C78597E6981B9F59CD803C1702BF6B2E3B28C2603885A0EC3B2EE

File Size: 3.12 MB, 3124659 bytes

MD5: 10c25eef5957bb77e51e42b6abffc903

SHA1: 33310257ce5c139c42a9056c6a535eda6c681b98

SHA256: 1B026F7A00E9351F40B2AFA63D6B6BEAE6C66C14997AB5EA5E490087DEEB79BF

File Size: 3.28 MB, 3280775 bytes

MD5: 0a93a8e2f6bc6b2b111a4a5fe03d2292

SHA1: c837c6c8101f92ad374997a3df1b7c31b3c6e4ac

SHA256: 18637C7F04FBF3A1371C60EC3607D55D229665BF0884106404183E0034742C35

File Size: 4.73 MB, 4731904 bytes

MD5: bc31e89356aba52607cbd678176182a2

SHA1: 497ee8edf8a444381b90d8f1898e06d82e06220f

SHA256: 24B8178BE8FBDB90561B6472FD82E220787189C86D007C4AF4F6FBF4EE940A0C

File Size: 3.24 MB, 3236924 bytes

MD5: 5fdb0b6c66e7996dfaf1f2acad436af0

SHA1: 5c4e0e86eaaab9cd53a95d21c3ab632fa8d8ef75

SHA256: 6D250F4EFE15643160F09FBA73795BD4148E33BC69A1C6360C5BED9CD70F526A

File Size: 5.22 MB, 5219328 bytes

Windows Portable Executable Attributes

File doesn't have "Rich" header
File doesn't have debug information
File doesn't have exports table
File doesn't have security information
File has TLS information
File is 64-bit executable
File is either console or GUI application
File is GUI application (IMAGE_SUBSYSTEM_WINDOWS_GUI)
File is Native application (NOT .NET application)
File is not packed

IMAGE_FILE_DLL is not set inside PE header (Executable)
IMAGE_FILE_EXECUTABLE_IMAGE is set inside PE header (Executable Image)

File Icons

Windows PE Version Information

Name	Value
Company Name	Alpha Smart Group Alpha Smart Pro LLC Base Prime LLC Data Neural Solutions Digital Logic Ltd Digital Modern Global Inc Future Elite Net Ltd Global Web LLC Web Future Inc
File Description	Concurrent Excellence Detector Remarkable Excellence Detector Dynamic API Outstanding Network Easy Robust Accelerator Manager AI Safe Data Processor Productive Real Instant Performance Precision Secure Enterprise Premium Trusted Auto
File Version	20.5.0.4046 18.2.6.8116 18.0.89.8300 16.1.74.4590 13.1.60.6544 12.9.65.9656 8.6.98.1336 3.3.12.4602 3.1.93.9192
Internal Name	advanced_excellence_memory encrypted_buffer_cyber exceptional_compiler_parallel innovative_max_precision instant_total_accuracy outstanding_quick_pro quick_live_powerful robust_hyper_precision tree_live_blockchain
Legal Copyright	Copyright (C) 2020 Digital Modern Global Inc Copyright (C) 2021 Base Prime LLC Copyright (C) 2022 Alpha Smart Group Copyright (C) 2022 Future Elite Net Ltd Copyright (C) 2022 Global Web LLC Copyright (C) 2023 Data Neural Solutions Copyright (C) 2023 Digital Logic Ltd Copyright (C) 2024 Web Future Inc Copyright (C) 2025 Alpha Smart Pro LLC
Original Filename	advanced_excellence_memory.dat encrypted_buffer_cyber.dat exceptional_compiler_parallel.exe innovative_max_precision.exe instant_total_accuracy.dat outstanding_quick_pro.dat quick_live_powerful.dat robust_hyper_precision.dat tree_live_blockchain.exe
Product Name	Advanced Excellence Memory Explorer Encrypted Buffer Cyber Enhancer Exceptional Compiler Parallel Easy Browser Innovative Max Precision Monitor Instant Total Accuracy Tracker Outstanding Quick Pro Async Creator Quick Live Powerful Explorer Robust Hyper Precision Business Manager Tree Live Blockchain Optimizer
Product Version	20.5.0.4046 18.2.6.8116 18.0.89.8300 16.1.74.4590 13.1.60.6544 12.9.65.9656 8.6.98.1336 3.3.12.4602 3.1.93.9192

File Traits

big overlay
HighEntropy
x64

Block Information

Total Blocks:	21,101
Potentially Malicious Blocks:	20,542
Whitelisted Blocks:	559
Unknown Blocks:	0

Visual Map

0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x x x x 0 x 0 x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x

... Data truncated

0 - Probable Safe Block
? - Unknown Block
x - Potentially Malicious Block

Similar Families

Kryptik.OPE
Trojan.Downloader.Gen.HV
Trojan.Kryptik.Gen.ALH

Windows API Usage

Category	API
Syscall Use	ntdll.dll!NtFreeVirtualMemory ntdll.dll!NtQueryInformationProcess ntdll.dll!NtQueryVirtualMemory ntdll.dll!NtSetEvent ntdll.dll!NtSetInformationProcess ntdll.dll!NtSetInformationWorkerFactory ntdll.dll!NtTestAlert ntdll.dll!NtWaitLowEventPair ntdll.dll!NtWriteFile UNKNOWN

EnigmaSoft’s Payment Processor Digital River GmbH Filing for Bankruptcy Does Not Impact SpyHunter Customers’ Anti-Malware Protection

Search

Change Region

Trojan.Kryptik.Gen.ALH

Analysis Report

General information

Known Samples

Known Samples

Windows Portable Executable Attributes

Windows Portable Executable Attributes

File Icons

File Icons

Windows PE Version Information

Windows PE Version Information

File Traits

Block Information

Block Information

Visual Map

Similar Families

Similar Families

Windows API Usage

Windows API Usage

Submit Comment

Trending

Trojan.Injector.KSB

Forestrievic.com

Pencetbnb.xyz

Most Viewed

How To Fix 'Printer Driver is Unavailable' Error

Pornktube.porn

Discord Shows Black Screen when Sharing Screen