Trojan.Stealer.BRCE

By CagedTech in Stealers, Trojans

Threat Scorecard

Popularity Rank:	28,181
Threat Level:	80 % (High)
Infected Computers:	30

First Seen:	July 24, 2024
Last Seen:	January 29, 2026
OS(es) Affected:	Windows

Table of Contents

Analysis Report

General information

Family Name:	Trojan.Stealer.BRCE
Signature status:	No Signature

Known Samples

MD5: 67d6a2eef76dffc786866d3174bd2bfb

SHA1: 6d68d383e10d36e830c83aba25c9b1e2f223d4c6

SHA256: ED606ADDD3CE0A4ACDB773B5807565C96CC655DD061B5341C15EDD81DC6DE739

File Size: 6.43 MB, 6431534 bytes

MD5: 22241da4f860ad8debab9de63064eb51

SHA1: afa5ed10ba5915a987a4e78b27bd90e545963d09

SHA256: 697653B2467E9C492A79C5711C39057F56C64B318067485FFCC390D20BC6A3B0

File Size: 9.11 MB, 9112567 bytes

Windows Portable Executable Attributes

File doesn't have "Rich" header
File doesn't have exports table
File doesn't have security information
File is 32-bit executable
File is either console or GUI application
File is GUI application (IMAGE_SUBSYSTEM_WINDOWS_GUI)
File is Native application (NOT .NET application)
File is not packed
IMAGE_FILE_DLL is not set inside PE header (Executable)
IMAGE_FILE_EXECUTABLE_IMAGE is set inside PE header (Executable Image)

File Icons

Windows PE Version Information

Name	Value
Original Filename	MA2 Dual NSP Emulator v1.2.exe
Product Name	MA2 Dual NSP Emulator
Product Version	1.2

File Traits

HighEntropy
No Version Info
Py-installer
x86
zlib (In Overlay)
zlib overlay

Block Information

Total Blocks:	911
Potentially Malicious Blocks:	22
Whitelisted Blocks:	889
Unknown Blocks:	0

Visual Map

0 x 0 0 0 0 0 0 0 x x 0 0 0 0 x 0 0 x 0 0 0 0 0 0 x 0 x x 0 x 0 0 0 0 0 0 0 0 x x 0 0 0 0 0 0 0 0 0 0 0 x x 0 0 0 0 0 0 0 0 x 0 0 x x x 0 0 x 0 0 0 x 0 x 0 0 x 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 2 0 2 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 2 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 1 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 1 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 2 0 2 0 0 0 0 0 0 0 1 1 0 0 2 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 2 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 2 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 1 0 0 0 0 0 2 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 2 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 2 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 2 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 2 0 0 0 0 0 0 0 0 0 0 2 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 2 2 0 0 0 0 0 0 0 0 0 2 0 0 0 0 2 0 0 0 0 0 0 0 2 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 2 2 0 0 3 1 1 0 1 0 1 0 0 1 1 0 0 0 0

0 - Probable Safe Block
? - Unknown Block
x - Potentially Malicious Block

Files Modified

File	Attributes
c:\users\user\appdata\local\temp\_mei14402\_bz2.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei14402\_decimal.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei14402\_hashlib.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei14402\_lzma.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei14402\_socket.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei14402\base_library.zip	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei14402\libcrypto-3.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei14402\python312.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei14402\select.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei14402\unicodedata.pyd	Generic Write,Read Attributes

c:\users\user\appdata\local\temp\_mei14402\vcruntime140.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei16722\_bz2.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei16722\_decimal.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei16722\_hashlib.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei16722\_lzma.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei16722\_socket.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei16722\base_library.zip	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei16722\libcrypto-3.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei16722\python312.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei16722\select.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei16722\unicodedata.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei16722\vcruntime140.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei18282\_bz2.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei18282\_decimal.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei18282\_hashlib.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei18282\_lzma.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei18282\_socket.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei18282\base_library.zip	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei18282\libcrypto-3.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei18282\python312.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei18282\select.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei18282\unicodedata.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei18282\vcruntime140.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei21802\_bz2.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei21802\_decimal.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei21802\_hashlib.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei21802\_lzma.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei21802\_socket.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei21802\base_library.zip	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei21802\libcrypto-3.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei21802\python312.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei21802\select.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei21802\unicodedata.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei21802\vcruntime140.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\_bz2.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\_decimal.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\_hashlib.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\_lzma.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\_queue.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\_socket.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\_ssl.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\_tkinter.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-core-console-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-core-datetime-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-core-debug-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-core-errorhandling-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-core-file-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-core-file-l1-2-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-core-file-l2-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-core-handle-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-core-heap-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-core-interlocked-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-core-libraryloader-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-core-localization-l1-2-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-core-memory-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-core-namedpipe-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-core-processenvironment-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-core-processthreads-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-core-processthreads-l1-1-1.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-core-profile-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-core-rtlsupport-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-core-string-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-core-synch-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-core-synch-l1-2-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-core-sysinfo-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-core-timezone-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-core-util-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-crt-conio-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-crt-convert-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-crt-environment-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-crt-filesystem-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-crt-heap-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-crt-locale-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-crt-math-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-crt-process-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-crt-runtime-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-crt-stdio-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-crt-string-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-crt-time-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\api-ms-win-crt-utility-l1-1-0.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\base_library.zip	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\certifi\cacert.pem	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\certifi\py.typed	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\libcrypto-1_1.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\libssl-1_1.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\python39.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\select.pyd	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl86t.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl8\8.4\platform-1.0.18.tm	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl8\8.4\platform\shell-1.1.4.tm	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl8\8.5\msgcat-1.6.1.tm	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl8\8.5\tcltest-2.5.3.tm	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl8\8.6\http-2.9.5.tm	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\auto.tcl	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\clock.tcl	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\ascii.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\big5.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cns11643.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cp1250.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cp1251.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cp1252.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cp1253.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cp1254.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cp1255.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cp1256.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cp1257.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cp1258.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cp437.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cp737.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cp775.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cp850.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cp852.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cp855.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cp857.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cp860.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cp861.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cp862.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cp863.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cp864.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cp865.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cp866.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cp869.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cp874.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cp932.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cp936.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cp949.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\cp950.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\dingbats.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\ebcdic.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\euc-cn.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\euc-jp.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\euc-kr.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\gb12345.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\gb1988.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\gb2312-raw.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\gb2312.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\iso2022-jp.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\iso2022-kr.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\iso2022.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\iso8859-1.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\iso8859-10.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\iso8859-11.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\iso8859-13.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\iso8859-14.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\iso8859-15.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\iso8859-16.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\iso8859-2.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\iso8859-3.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\iso8859-4.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\iso8859-5.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\iso8859-6.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\iso8859-7.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\iso8859-8.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\iso8859-9.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\jis0201.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\jis0208.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\jis0212.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\koi8-r.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\koi8-u.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\ksc5601.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\maccenteuro.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\maccroatian.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\maccyrillic.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\macdingbats.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\macgreek.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\maciceland.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\macjapan.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\macroman.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\macromania.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\macthai.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\macturkish.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\macukraine.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\shiftjis.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\symbol.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\encoding\tis-620.enc	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\history.tcl	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\http1.0\http.tcl	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\http1.0\pkgindex.tcl	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\init.tcl	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\msgs\af.msg	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\msgs\af_za.msg	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\msgs\ar.msg	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\msgs\ar_in.msg	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\msgs\ar_jo.msg	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\msgs\ar_lb.msg	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\msgs\ar_sy.msg	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\msgs\be.msg	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\msgs\bg.msg	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\msgs\bn.msg	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\_mei40682\tcl\msgs\bn_in.msg	Generic Write,Read Attributes

854 additional files are not displayed above.

Windows API Usage

Category	API
Process Manipulation Evasion	NtUnmapViewOfSection
Process Shell Execute	CreateProcess

Shell Command Execution


							c:\users\user\downloads\6d68d383e10d36e830c83aba25c9b1e2f223d4c6_0006431534 "c:\users\user\downloads\6d68d383e10d36e830c83aba25c9b1e2f223d4c6_0006431534"


							c:\users\user\downloads\6d68d383e10d36e830c83aba25c9b1e2f223d4c6_0006431534 "c:\users\user\downloads\6d68d383e10d36e830c83aba25c9b1e2f223d4c6_0006431534"


							c:\users\user\downloads\6d68d383e10d36e830c83aba25c9b1e2f223d4c6_0006431534 "c:\users\user\downloads\6d68d383e10d36e830c83aba25c9b1e2f223d4c6_0006431534"


							c:\users\user\downloads\6d68d383e10d36e830c83aba25c9b1e2f223d4c6_0006431534 "c:\users\user\downloads\6d68d383e10d36e830c83aba25c9b1e2f223d4c6_0006431534"


							c:\users\user\downloads\6d68d383e10d36e830c83aba25c9b1e2f223d4c6_0006431534 "c:\users\user\downloads\6d68d383e10d36e830c83aba25c9b1e2f223d4c6_0006431534"


									c:\users\user\downloads\6d68d383e10d36e830c83aba25c9b1e2f223d4c6_0006431534 "c:\users\user\downloads\6d68d383e10d36e830c83aba25c9b1e2f223d4c6_0006431534"


									c:\users\user\downloads\6d68d383e10d36e830c83aba25c9b1e2f223d4c6_0006431534 "c:\users\user\downloads\6d68d383e10d36e830c83aba25c9b1e2f223d4c6_0006431534"


									c:\users\user\downloads\6d68d383e10d36e830c83aba25c9b1e2f223d4c6_0006431534 "c:\users\user\downloads\6d68d383e10d36e830c83aba25c9b1e2f223d4c6_0006431534"


									c:\users\user\downloads\6d68d383e10d36e830c83aba25c9b1e2f223d4c6_0006431534 "c:\users\user\downloads\6d68d383e10d36e830c83aba25c9b1e2f223d4c6_0006431534"


									c:\users\user\downloads\6d68d383e10d36e830c83aba25c9b1e2f223d4c6_0006431534 "c:\users\user\downloads\6d68d383e10d36e830c83aba25c9b1e2f223d4c6_0006431534"

EnigmaSoft’s Payment Processor Digital River GmbH Filing for Bankruptcy Does Not Impact SpyHunter Customers’ Anti-Malware Protection

Search

Change Region

Trojan.Stealer.BRCE

Threat Scorecard

EnigmaSoft Threat Scorecard

Analysis Report

General information

Known Samples

Known Samples

Windows Portable Executable Attributes

Windows Portable Executable Attributes

File Icons

File Icons

Windows PE Version Information

Windows PE Version Information

File Traits

Block Information

Block Information

Visual Map

Files Modified

Files Modified

Windows API Usage

Windows API Usage

Shell Command Execution

Shell Command Execution

Submit Comment

Trending

New VBScript IE Exploit May Plant Malware on Windows XP

Warning: Internet Explorer Zero-Day Bug Goes Public

Boobies

Most Viewed

How To Fix 'Printer Driver is Unavailable' Error

Discord Shows Black Screen when Sharing Screen

How to Fix 'macOS cannot verify that this app is...