Backdoor

UDS:Backdoor.MSIL.NanoBot removal

Malware Removal

The UDS:Backdoor.MSIL.NanoBot is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What UDS:Backdoor.MSIL.NanoBot virus can do?

  • Presents an Authenticode digital signature

How to determine UDS:Backdoor.MSIL.NanoBot?



File Info:

crc32: 94ED7AF3
md5: dc8e7cde980f05501758f8ce3048682e
name: DC8E7CDE980F05501758F8CE3048682E.mlw
sha1: fca9c2a66cfddfe6a8677e1568ea32ad18dda600
sha256: e3b80db58c1fa79c3780e68cf7d3ea987fb2615a68077ba3b110cfd3a7cf4de6
sha512: 5cd3210d136dcc6854781911960d7abeb6afcc2b22d78ac37665d68c93d7141335ebe1865db42098d7a17ab7b2c035d77b9621e814c0e0d1843b11b82d7c82e2
ssdeep: 768:DVo9K0V0z/hpL8dKKuzVczbeso66z0Rb6eQxl8+to23I9aFhVkSdM2VhY:DOKU0Dhp7HI
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows


Version Info:

LegalCopyright: All Rights Reserved
Assembly Version: 4.500.444.190
InternalName: xd4bcxd4b9xd4c4xd4e3xd4c8xd4e0xd4c4xd4c3xd4e1xd4bbxd4eaxd4bbxd4e5xd4e7xd4c7xd4b6xd4cdxd4e5.exe
FileVersion: 4.500.444.190
CompanyName: xd4bcxd4b9xd4c4xd4e3xd4c8xd4e0xd4c4xd4c3xd4e1xd4bbxd4eaxd4bbxd4e5xd4e7xd4c7xd4b6xd4cdxd4e5 Inc.
LegalTrademarks: xd4bcxd4b9xd4c4xd4e3xd4c8xd4e0xd4c4xd4c3xd4e1xd4bbxd4eaxd4bbxd4e5xd4e7xd4c7xd4b6xd4cdxd4e5
Comments: xd4bcxd4b9xd4c4xd4e3xd4c8xd4e0xd4c4xd4c3xd4e1xd4bbxd4eaxd4bbxd4e5xd4e7xd4c7xd4b6xd4cdxd4e5
ProductName: xd4bcxd4b9xd4c4xd4e3xd4c8xd4e0xd4c4xd4c3xd4e1xd4bbxd4eaxd4bbxd4e5xd4e7xd4c7xd4b6xd4cdxd4e5
ProductVersion: 4.500.444.190
FileDescription: xd4bcxd4b9xd4c4xd4e3xd4c8xd4e0xd4c4xd4c3xd4e1xd4bbxd4eaxd4bbxd4e5xd4e7xd4c7xd4b6xd4cdxd4e5
OriginalFilename: xd4bcxd4b9xd4c4xd4e3xd4c8xd4e0xd4c4xd4c3xd4e1xd4bbxd4eaxd4bbxd4e5xd4e7xd4c7xd4b6xd4cdxd4e5.exe
Translation: 0x0000 0x0514

UDS:Backdoor.MSIL.NanoBot also known as:

Elasticmalicious (high confidence)
CynetMalicious (score: 100)
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_80% (W)
CyrenW32/MSIL_Kryptik.DRH.gen!Eldorado
SymantecScr.Malcode!gdn40
APEXMalicious
AvastFileRepMalware
KasperskyUDS:Backdoor.MSIL.NanoBot.gen
BitDefenderThetaGen:NN.ZemsilF.34670.fm1@aaChgcli
MicrosoftProgram:Win32/Wacapew.C!ml
ZoneAlarmUDS:DangerousObject.Multi.Generic
RisingDownloader.Agent!1.D296 (CLASSIC)
AVGFileRepMalware

How to remove UDS:Backdoor.MSIL.NanoBot?

UDS:Backdoor.MSIL.NanoBot removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment