Details
Malware Family NanoCore
Date Added Sept. 9, 2015, 5:40 p.m.
MD5 a27422da3434275efefa03e2f2dd13ce
Sha256 6c45e146207904766a79953a8daf5632b4094bc3c77fca87e05af4379fc32fd0
Robot Robots lovingly delivered by robohash.org
Config Sections
RequestElevation 00
BypassUAC 00
RestartDelay 5000
Group
BackupDNSServer 8.8.4.4
RunOnStartup 00
PreventSystemSleep 00
UseCustomDNS 01
PrimaryDNSServer 8.8.8.8
ConnectDelay 4000
EnableDebugMode 00
Version 1.2.2.0
Mutex f7ea0d883a2a5b4bb67d507452e1a174
SetCriticalProcess 00
Domain2 127.0.0.1
Domain1 biga.zapto.org
Port 3312
ClearAccessControl 00
ClearZoneIdentifier 00
Advertising
VirusTotal

31 out of 57 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
biga.zapto.org 0.0.0.0 0
Geo Location
Yara Rules
Comments
comments powered by Disqus