Details

FileName | fedosh.exe |
---|---|
Malware Family | NanoCore |
Date Added | 2019-10-17 19:17:04.385000 |
MD5 | 9126e8fb2c26f2aa84d357881d02b241 |
Sha256 | 62398e7e430b9eac5895b050a481cf5bb81c306893e99d88d8d22ba08d2c9ca5 |
Robot | Robots lovingly delivered by robohash.org |
Advertising
Config Data
Version | b'\x071.2.2.0' |
---|---|
Mutex | b'\xb2J' |
Group | b'aze' |
Domain1 | b'fedosh.no-ip.net' |
Domain2 | b'127.0.0.1' |
Port | 54984 |
RunOnStartup | b'\x01' |
RequestElevation | b'\x01' |
BypassUAC | b'\x01' |
ClearZoneIdentifier | b'\x01' |
ClearAccessControl | b'\x00' |
SetCriticalProcess | b'\x00' |
PreventSystemSleep | b'\x01' |
EnableDebugMode | b'\x00' |
ConnectDelay | 4000 |
RestartDelay | 5000 |
UseCustomDNS | b'\x01' |
PrimaryDNSServer | b'8.8.8.8' |
Virustotal
0 out of 0 AV Engines identified the sample as Malicious.