Details
| FileName | fedosh.exe |
|---|---|
| Malware Family | NanoCore |
| Date Added | 2019-10-17 19:17:04.385000 |
| MD5 | 9126e8fb2c26f2aa84d357881d02b241 |
| Sha256 | 62398e7e430b9eac5895b050a481cf5bb81c306893e99d88d8d22ba08d2c9ca5 |
| Robot | Robots lovingly delivered by robohash.org |
Advertising
Config Data
| Version | b'\x071.2.2.0' |
|---|---|
| Mutex | b'\xb2J' |
| Group | b'aze' |
| Domain1 | b'fedosh.no-ip.net' |
| Domain2 | b'127.0.0.1' |
| Port | 54984 |
| RunOnStartup | b'\x01' |
| RequestElevation | b'\x01' |
| BypassUAC | b'\x01' |
| ClearZoneIdentifier | b'\x01' |
| ClearAccessControl | b'\x00' |
| SetCriticalProcess | b'\x00' |
| PreventSystemSleep | b'\x01' |
| EnableDebugMode | b'\x00' |
| ConnectDelay | 4000 |
| RestartDelay | 5000 |
| UseCustomDNS | b'\x01' |
| PrimaryDNSServer | b'8.8.8.8' |
Virustotal
0 out of 0 AV Engines identified the sample as Malicious.