Details
FileName | |
---|---|
Malware Family | NanoCore |
Date Added | 2016-04-22 06:28:28 |
MD5 | 0c576c69acb95bfeb54c5d7de6df0951 |
Sha256 | f7fae606cc092df15605a8fc0856a1a7c92a022fdf30d89643b0b7d7bdb5bb90 |
Robot | Robots lovingly delivered by robohash.org |
Advertising
Config Data
SetCriticalProcess | 01 |
---|---|
RestartDelay | 5000 |
Group | Default |
Domain2 | 127.0.0.1 |
ConnectDelay | 4000 |
UseCustomDNS | 01 |
ClearAccessControl | 01 |
BypassUAC | 01 |
PrimaryDNSServer | |
Mutex | 258cbbef3d2c1445ababc2ce37372d40 |
Version | 1.2.2.0 |
PreventSystemSleep | 01 |
RequestElevation | 01 |
ClearZoneIdentifier | 01 |
RunOnStartup | 01 |
Domain1 | nanoco.codns.com |
EnableDebugMode | 00 |
Port | 53984 |
BackupDNSServer |
Virustotal
41 out of 57 AV Engines identified the sample as Malicious.