Details
Robot
FileName
Malware Family NanoCore
Date Added 2016-04-22 06:28:28
MD5 e21f4ede136f0836169c51a5423ccd9c
Sha256 fa4239b95cb0fef314027cab805fe744dd4fef52ea096398fc657f07532a0201
Robot Robots lovingly delivered by robohash.org
Advertising
C2 Data
SetCriticalProcess 00
RestartDelay 5000
Group Default
Domain2 475804.codns.com
ConnectDelay 4000
UseCustomDNS 01
ClearAccessControl 00
BypassUAC 01
PrimaryDNSServer 8.8.8.8
Mutex 48369fa5db787246b33c311aa69156c9
PreventSystemSleep 01
RequestElevation 01
ClearZoneIdentifier 01
RunOnStartup 00
Domain1 475804.codns.com
EnableDebugMode 00
Port 9877
Version 1.2.2.0
Virustotal

45 out of 57 AV Engines identified the sample as Malicious.

Virustotal Report

C2 Information
Domain FQDN IP Country Code
codns.com 475804.codns.com 127.0.0.1 0