Threat Database Trojans Trojan.Kryptik.OSC

Trojan.Kryptik.OSC

By CagedTech in Trojans

Analysis Report

General information

Family Name: Trojan.Kryptik.OSC
Signature status: Self Signed

Known Samples

MD5: 19bda446099183a3658dab5ad8437411
SHA1: 94087e5417eca6df36f8fc3e1a32ab80b535cc02
SHA256: B832AD36977DF2BE73CB4A0D8B99D3DC86C722AE21820D63DEE92C4ED06B536D
File Size: 2.44 MB, 2436584 bytes
MD5: 87b21928a968e57c328c61b96153f0f2
SHA1: 7dcec90c1247a0ffccd83102c4f7eb867d8eb4e0
SHA256: DFBB76DA6AB0F1D1A372003500008A41FC98023A44C7819F8F8600747D5442C0
File Size: 2.92 MB, 2923536 bytes
MD5: b70366535deff374a88c42a530df0d72
SHA1: 552dc8b830b43ae2fe0b41d37ecb6ad064670dc5
SHA256: CB4387BD41F376753CB67C9068C565ABA54ED4DC10DA92DB0699E9CFAF7C9111
File Size: 8.21 MB, 8205784 bytes
MD5: b29f2c79457996242770da3a18396bef
SHA1: d8eaf1bfe14b3767ab6949274b5459deb9e6e604
SHA256: 0B12A1E35C4D8464BA592C140726330CDED2375CC975CD536E439EDEFDF9727B
File Size: 8.18 MB, 8184304 bytes
MD5: a083d58325bebaf5ef95bd1a4970eaa7
SHA1: cdea3284a5f2cd602512882269143b265b787b58
SHA256: 43CF605BC41C6F4B3C5EC7DD9A8A12732F81AE97A8C5DFC4FCC526D3B52CEB2A
File Size: 761.87 KB, 761872 bytes
Show More
MD5: 0e0d4d1febfee79ef6bd40ad44fa5283
SHA1: a7d86fadf9092387715764e6f2a024b89452b2f2
SHA256: 3EE4E1D8021AD6C0771C1BD5C13636BE3ED9392C7DC52951EE4BA02A6F621327
File Size: 2.18 MB, 2182224 bytes
MD5: a9ea798befc47317120b1e258e422392
SHA1: 4bbfbd989b8b475e6e81a3d331b95c58fadb67b9
SHA256: 730FDAEC9B6F9A98D151AF0D9F4094DA6DA1EA1B341AD6A27B74476FFF3E1FFC
File Size: 2.22 MB, 2224680 bytes
MD5: f2ce3f3553c8b892e48a962aa06da3de
SHA1: 6a4c679bb054dde5a3d80f26cd5fb156fb4afc46
SHA256: 8D31D2BDC412EDB2BC62C04A3337096A11A4F1C0E343E958B1DB539B17F3C2F0
File Size: 3.00 MB, 2999768 bytes
MD5: 23d4138b49ae3def22d35e96532845ab
SHA1: fc907dc81a6ec32ad326165ae776bd198196443e
SHA256: C596D7EE57AF9005FF06C449179B221B73895D920F32A0A7D2B56F79512B8BE4
File Size: 1.84 MB, 1838592 bytes
MD5: a7fe57c0c1e752c1963e61762712d3e0
SHA1: 9b76d2dd39853a5702eb75f4347e9a0fe74ebe45
SHA256: A2919B7724AA43D66810DF901C677E01B6C8AC3C98462AAE01728708DBC7EB1F
File Size: 732.70 KB, 732696 bytes
MD5: 6b5781eb6d94c66693cddd463e86ab25
SHA1: 03cef69bad17e0c3b02e2601258d733354d5e2a8
SHA256: 3E153A7EDB74F3950D50BCF968418184648A7F195FD81268F77525E9B97C6960
File Size: 2.92 MB, 2915392 bytes
MD5: 17bd27ce45e1ddb28dcb8d601426a126
SHA1: fd8db28911fb307aecec9f5a229ef40ac70f0447
SHA256: 652A6DE76CE62A798E533E3560236B38034149044CE7D79DF059A840249DE8BE
File Size: 4.04 MB, 4040248 bytes
MD5: a6dde5142cd9cb21e8951d0fcc9de266
SHA1: 9e06c37c97abd64cacf0bbb2c2b2a241da7d7bfb
SHA256: B4A174E02C3395B64D65F46FEE0352C3A54BD0F8741D267A363001AE9944DF92
File Size: 6.03 MB, 6028752 bytes
MD5: f5a69f8a757dfb2aa06b28baae4ba38f
SHA1: 54fe986164fa06d43edf2c4e713d0b7760c496bd
SHA256: 78F7DD516E5399A15873336A70F3E157AB3066F9D0E9081BA1D42F796F923528
File Size: 4.96 MB, 4958192 bytes
MD5: b60a829770d27f001b9dc744647564c2
SHA1: 827511fa92035d9ea1461b9951517647ee62c2b4
SHA256: 935D395F7DED23C45F4F8791287984D3E8944CA5CD919DB4A47043D1A2CC327E
File Size: 2.99 MB, 2986008 bytes
MD5: 1f9d75e8d2315b9ba551426be96af8c2
SHA1: 4dff1415c91f7e0e69453f68bc38a06bfa9f9aca
SHA256: 83D3C01A920B1AAE9D74D27D8AE86D49371CF54449E3FCC1AEBF11294B519D98
File Size: 3.49 MB, 3486720 bytes
MD5: 9e965876a90bf4dad8784e77a6c39d56
SHA1: 63e1fc26e56e4a86d98179a64fafd775110d0c72
SHA256: C4D326698CC8BA8DB3AE5D247C0FBA5032C3214326518F37BD66AB72EDF03E7F
File Size: 724.94 KB, 724936 bytes

Windows Portable Executable Attributes

  • File doesn't have "Rich" header
  • File doesn't have relocations information
  • File doesn't have security information
  • File has exports table
  • File is 32-bit executable
  • File is either console or GUI application
  • File is GUI application (IMAGE_SUBSYSTEM_WINDOWS_GUI)
  • File is Native application (NOT .NET application)
  • File is not packed
  • IMAGE_FILE_DLL is not set inside PE header (Executable)
Show More
  • IMAGE_FILE_EXECUTABLE_IMAGE is set inside PE header (Executable Image)

File Icons

Show More

41 additional icons are not displayed above.

Windows PE Version Information

Name Value
Comments
  • 5G Fractal Driver System enabler
  • APM Fusion Sequence Ultimate Kit tool
  • Containerized Lumen Intelliwave Edge Link runtime
  • Data CipherFramework classification
  • Digital UmbraStreamcore Lite forensics
  • Fault-tolerant Beta Cloudvibe Core framework
  • Message The Vector Encryptor queue
  • OCI Fusion Protocol Toolkit container
  • Platform as Zen for Conflux
  • Policy Pylon Bytenest Edge enforcement
Show More
  • RESTful Talon Quantumtide Sync endpoint
  • Smart contract Fractal Decryptor Advanced executor
  • Synthetic Nebula Hypercore Spark testing
Company Name
  • AdaptiveLogicFuture
  • BetaSmart-OrbitWave
  • CyberCore Implementation
  • DynamicEdge-Total
  • DynamoBytePixelCore
  • KineticNodeCorporationSaaS
  • KineticNode·Future·Quantum
  • ParallelFlow·Implementation
  • RiftQuest.HyperSpark
  • RiftQuest FluxPath
Show More
  • ShadowSynaptoGrid
  • StarkDataSynapCoreGameForge
  • ZenSyncTechVibe
Company Short Name
  • AdaptiveLogicFuture
  • BetaSmart-OrbitWave
  • CyberCore
  • DynamicEdge-Total
  • DynamoBytePixelCore
  • KineticNodeCorporationSaaS
  • KineticNode·Future·Quantum
  • ParallelFlow·Implementation
  • RiftQuest
  • RiftQuest.HyperSpark
Show More
  • ShadowSynaptoGrid
  • StarkDataSynapCoreGameForge
  • ZenSyncTechVibe
File Description
  • Beta Cloudvibe Core Injector
  • CipherFramework Decryptor
  • Fractal Decryptor Advanced Compactor
  • Fractal Driver System RateLimiter
  • Fusion Protocol Toolkit Predictor
  • Fusion Sequence Ultimate Kit Gateway
  • Lumen Intelliwave Edge Link Cleaner
  • Nebula Hypercore Spark ServiceMesh
  • Pylon Bytenest Edge Demuxer
  • Talon Quantumtide Sync IoTDevice
Show More
  • The Vector Encryptor Manager
  • UmbraStreamcore Lite Forker
  • Zen for Conflux ThreadPool
File Version
  • 124.1.8591.57
  • 102.8.6139.0
  • 94.5.5466.75
  • 80.8.9587.56
  • 53.5.8258.77
  • 36.1.5794.39
  • 35.3.5420.81
  • 28.19.7720.63
  • 20.13.4530.17
  • 20.8.7935.45
Show More
  • 12.9.1104.9
  • 6.13.6198.43
  • 6.4.2285.82
Internal Name
  • Beta Cloudvibe Core (x86)
  • CipherFramework (x86)
  • Fractal Decryptor Advanced (x86)
  • Fractal Driver System (x86)
  • Fusion Protocol Toolkit (x86)
  • Fusion Sequence Ultimate Kit (x86)
  • Lumen Intelliwave Edge Link (x86)
  • Nebula Hypercore Spark (x86)
  • Pylon Bytenest Edge (x86)
  • Talon Quantumtide Sync (x86)
Show More
  • The Vector Encryptor (x86)
  • UmbraStreamcore Lite (x86)
  • Zen for Conflux (x86)
Legal Copyright
  • Copyright © 2010-2019 AdaptiveLogicFuture. All rights reserved.
  • Copyright © 2012-2023 StarkDataSynapCoreGameForge. All rights reserved.
  • Copyright © 2013-2015 DynamicEdge-Total. All rights reserved.
  • Copyright © 2013-2016 ZenSyncTechVibe. All rights reserved.
  • Copyright © 2013-2018 KineticNodeCorporationSaaS. All rights reserved.
  • Copyright © 2014-2018 RiftQuest.HyperSpark. All rights reserved.
  • Copyright © 2015-2019 CyberCore Implementation. All rights reserved.
  • Copyright © 2015-2020 ShadowSynaptoGrid. All rights reserved.
  • Copyright © 2016-2017 KineticNode·Future·Quantum. All rights reserved.
  • Copyright © 2017-2023 ParallelFlow·Implementation. All rights reserved.
Show More
  • Copyright © 2018-2023 RiftQuest FluxPath. All rights reserved.
  • Copyright © 2021-2022 DynamoBytePixelCore. All rights reserved.
  • Copyright © 2022-2023 BetaSmart-OrbitWave. All rights reserved.
Legal Trademarks
  • AdaptiveLogicFuture proprietary technology
  • Beta Cloudvibe Core is a trademark of ZenSyncTechVibe
  • DynamicEdge-Total proprietary technology
  • KineticNodeCorporationSaaS proprietary technology
  • KineticNode·Future·Quantum proprietary technology
  • Lumen Intelliwave Edge Link is a trademark of StarkDataSynapCoreGameForge
  • Nebula Hypercore Spark is a trademark of BetaSmart-OrbitWave
  • ParallelFlow·Implementation proprietary technology
  • Pylon Bytenest Edge is a trademark of DynamoBytePixelCore
  • RiftQuest FluxPath proprietary technology
Show More
  • ShadowSynaptoGrid proprietary technology
  • Talon Quantumtide Sync is a trademark of RiftQuest.HyperSpark
  • The Vector Encryptor is a trademark of CyberCore Implementation
Original Filename
  • BetaCloudvibeCoreDivider-v28.exe
  • CipherFrameworkDependencyInjector-v6.exe
  • FractalDecryptorAdvancedPipelineEngine-v94.exe
  • FractalDriverSystemLauncher-v53.exe
  • FusionProtocolToolkitRegulator-v12.exe
  • FusionSequenceUltimateKitExecutor.exe
  • LumenIntelliwaveEdgeLinkSmoother.exe
  • NebulaHypercoreSparkMerger-v80.exe
  • PylonBytenestEdgeBootstrapper.exe
  • TalonQuantumtideSyncPurifier-v124.exe
Show More
  • TheVectorEncryptorStreamHandler-v35.exe
  • UmbraStreamcoreLiteActuator.exe
  • ZenforConfluxRedundancyManager.exe
Product Name
  • Beta Cloudvibe Core
  • CipherFramework
  • Fractal Decryptor Advanced
  • Fractal Driver System
  • Fusion Protocol Toolkit
  • Fusion Sequence Ultimate Kit
  • Lumen Intelliwave Edge Link
  • Nebula Hypercore Spark
  • Pylon Bytenest Edge
  • Talon Quantumtide Sync
Show More
  • The Vector Encryptor
  • UmbraStreamcore Lite
  • Zen for Conflux
Product Short Name
  • BetaCloudvibeCore
  • CipherFramework
  • FractalDecryptorAdvanced
  • FractalDriverSystem
  • FusionProtocolToolkit
  • FusionSequenceUltimateKit
  • LumenIntelliwaveEdgeLink
  • NebulaHypercoreSpark
  • PylonBytenestEdge
  • TalonQuantumtideSync
Show More
  • TheVectorEncryptor
  • UmbraStreamcoreLite
  • ZenforConflux
Product Version
  • 128.17.9141.30
  • 127.12.5051.5
  • 83.15.5525.2
  • 77.11.5751.43
  • 77.7.7823.71
  • 38.17.8681.96
  • 36.9.9803.19
  • 27.9.7554.48
  • 26.7.8026.86
  • 19.4.7404.47
Show More
  • 14.1.7309.90
  • 12.17.4325.27
  • 12.3.7995.34

Digital Signatures

Signer Root Status
AdaptiveLogicFuture AdaptiveLogicFuture Self Signed
BetaSmart-OrbitWave BetaSmart-OrbitWave Self Signed
CyberCore Implementation CyberCore Implementation Self Signed
CyberCoreUniversal CyberCoreUniversal Self Signed
DynamicEdge-Total DynamicEdge-Total Self Signed
Show More
KineticNodeCorporationSaaS KineticNodeCorporationSaaS Self Signed
KineticNodeFutureQuantum KineticNodeFutureQuantum Self Signed
ParallelFlowImplementation ParallelFlowImplementation Self Signed
QuantumLink&Distribution QuantumLink&Distribution Self Signed
RiftPixel-CodeVantage-EdVibe RiftPixel-CodeVantage-EdVibe Self Signed
RiftQuest FluxPath RiftQuest FluxPath Self Signed
ShadowSynaptoGrid ShadowSynaptoGrid Self Signed
StarkDataSynapCoreGameForge StarkDataSynapCoreGameForge Self Signed

File Traits

  • 2+ executable sections
  • HighEntropy
  • No Version Info
  • x86

Block Information

Total Blocks: 186
Potentially Malicious Blocks: 130
Whitelisted Blocks: 56
Unknown Blocks: 0

Visual Map

x x x x x x x x x x x x 0 x x x x x x x x x x x 0 x x x x 0 x 0 x x x x x x 0 x x x x x x x x x x x 0 x x x x x x 0 x x x x x 0 0 0 0 0 0 x 0 x 0 0 0 0 0 0 0 x x x 0 x 0 0 0 0 0 x 0 0 0 0 0 0 0 0 x 0 x x x x x x x x x x x x 0 0 0 x x 0 x 0 x x x x x x x 0 x 0 0 x x x x x x x x x x x 0 x x 0 x x x x x 0 x x 0 x x 0 x x 0 x x x x 0 x x x x x x 0 x x 0 x x 0 x x 0 0 x x x
0 - Probable Safe Block
? - Unknown Block
x - Potentially Malicious Block

Similar Families

  • Kryptik.OSC

Trending

Most Viewed

Loading...