Threat Database Trojans Trojan.Kryptik.VCKVA

Trojan.Kryptik.VCKVA

By CagedTech in Trojans

Threat Scorecard

Popularity Rank: 28,573
Threat Level: 80 % (High)
Infected Computers: 2
First Seen: May 18, 2024
Last Seen: January 6, 2026
OS(es) Affected: Windows

Analysis Report

General information

Family Name: Trojan.Kryptik.VCKVA
Signature status: No Signature

Known Samples

MD5: 2b8ee4b1de579437a993d6b1311e3077
SHA1: 08783e6efb041e8958ff1e7e68c4ae948a93fb07
SHA256: E0F11583DC55CF91C296C377E40E1E8785C5AC081542EBE243C50260A35BC057
File Size: 561.15 KB, 561152 bytes

Windows Portable Executable Attributes

  • File doesn't have "Rich" header
  • File doesn't have debug information
  • File doesn't have exports table
  • File doesn't have relocations information
  • File doesn't have security information
  • File is 32-bit executable
  • File is either console or GUI application
  • File is GUI application (IMAGE_SUBSYSTEM_WINDOWS_GUI)
  • File is Native application (NOT .NET application)
  • File is not packed
Show More
  • IMAGE_FILE_DLL is not set inside PE header (Executable)
  • IMAGE_FILE_EXECUTABLE_IMAGE is set inside PE header (Executable Image)

File Icons

Windows PE Version Information

Name Value
Comments Programmed by Pablo
Company Name Pablo Software Solutions
File Description FTPServer MFC Application
File Version 1, 0, 0, 8
Internal Name FTPServer
Legal Copyright Copyright (C) 2002
Original Filename FTPServer.EXE
Private Build Version 1.08
Product Name FTPServer Application
Product Version 1, 0, 0, 8

File Traits

  • x86

Block Information

Total Blocks: 72
Potentially Malicious Blocks: 45
Whitelisted Blocks: 27
Unknown Blocks: 0

Visual Map

0 0 0 0 x 0 x x 0 0 x x 0 0 0 x x 0 x x x 0 x 0 x x x x x x x x x x x x 0 0 x x x x 0 x 0 x 0 x x x x x x x x x 0 0 x x x x x x x 0 0 0 0 0 0 0
0 - Probable Safe Block
? - Unknown Block
x - Potentially Malicious Block

Similar Families

  • Zegost.FDC

Registry Modifications

Key::Value Data API Name
HKCU\software\microsoft\windows\currentversion\run:: c:\users\user\downloads\08783e6efb041e8958ff1e7e68c4ae948a93fb07_0000561152 RegNtPreCreateKey
HKLM\system\controlset001\control\rsgtbq dymnbtyu::marktime 2026-01-01 RegNtPreCreateKey

Windows API Usage

Category API
Anti Debug
  • OutputDebugString
Network Winsock2
  • WSAStartup
Network Winsock
  • closesocket
  • gethostbyname
  • setsockopt
  • socket
Keyboard Access
  • GetAsyncKeyState
  • GetKeyState

Trending

Most Viewed

Loading...