Categories: Malware

What is “Win32/Filecoder.NIC”?

The Win32/Filecoder.NIC is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Win32/Filecoder.NIC virus can do?

Unconventionial language used in binary resources: Spanish (Modern)
Mimics the file times of a Windows system file
Installs itself for autorun at Windows startup
Creates a hidden or system file
Creates a copy of itself
Anomalous binary characteristics

How to determine Win32/Filecoder.NIC?


File Info:
crc32: B431B24Dmd5: 548f509a14545dc28885a16a06ca7cd8name: 548F509A14545DC28885A16A06CA7CD8.mlwsha1: 7e9073b93194bc9f98d94e9fbe2b2f06747640c6sha256: 918a5f0d186d82ce0af97e847bb6ec7f1263d201e3c09f88cc529b87dcf52313sha512: f8bb86612c29aeb63b970b5890055816c79f93ac2da97d092ba5d4b57d012cc7de84665a9d2461fba525f7feaf562253a039b520504617f0c8f1eca7c8d94336ssdeep: 768:x1y6k/ohmGV3l6q9GVM5+d6u4QLBr6O6wb:x1pkkmGP6qgVM5+sXQLREwbtype: PE32 executable (GUI) Intel 80386, for MS Windows
Version Info:
LegalCopyright: xa9 Microsoft Corporation. Todos los derechos reservados.InternalName: explorerFileVersion: 10.0.14393.0 (rs1_release.160715-1616)CompanyName: Microsoft CorporationProductName: Sistema operativo Microsoftxae WindowsxaeProductVersion: 10.0.14393.0FileDescription: Explorador de WindowsOriginalFilename: EXPLORER.EXE.MUITranslation: 0x0c0a 0x04b0

Win32/Filecoder.NIC also known as:

K7AntiVirus	Trojan ( 004f246c1 )
Elastic	malicious (high confidence)
DrWeb	Trojan.Encoder.5883
Cynet	Malicious (score: 100)
McAfee	GenericRXAP-DF!548F509A1454
Cylance	Unsafe
Zillya	Trojan.Filecoder.Win32.10257
Sangfor	Trojan.Win32.Save.a
CrowdStrike	win/malicious_confidence_70% (D)
Alibaba	Trojan:Win32/Starter.ali2000005
K7GW	Trojan ( 004f246c1 )
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Filecoder.NIC
APEX	Malicious
Avast	Win32:Trojan-gen
ClamAV	Win.Malware.Au6r-1
Kaspersky	HEUR:Trojan.Win32.Generic
BitDefender	Gen:Trojan.Malware.eq0@au6r@EVc
NANO-Antivirus	Trojan.Win32.Crypted.ehenxx
MicroWorld-eScan	Gen:Trojan.Malware.eq0@au6r@EVc
Tencent	Malware.Win32.Gencirc.114b5dbf
Ad-Aware	Gen:Trojan.Malware.eq0@au6r@EVc
Sophos	Mal/FakeAV-CS
Comodo	TrojWare.Win32.Fabiansomware.A@6mnx0l
BitDefenderTheta	Gen:NN.ZexaF.34628.eq0@au6r@EVc
VIPRE	Trojan.Win32.Generic!BT
TrendMicro	Ransom_APOCALYPSE.E
McAfee-GW-Edition	BehavesLike.Win32.PWSZbot.kt
FireEye	Generic.mg.548f509a14545dc2
Emsisoft	Gen:Trojan.Malware.eq0@au6r@EVc (B)
SentinelOne	Static AI – Suspicious PE
Jiangmin	Trojan.Generic.gkdxo
Avira	TR/Crypt.XPACK.Gen2
eGambit	Unsafe.AI_Score_94%
Kingsoft	Win32.Troj.Undef.(kcloud)
Microsoft	Ransom:Win32/Apocalypse
AegisLab	Trojan.Win32.Generic.4!c
ZoneAlarm	HEUR:Trojan.Win32.Generic
GData	Win32.Trojan-Ransom.Apocalypse.C
AhnLab-V3	Trojan/Win32.Fsysna.R189238
VBA32	BScope.Trojan.Encoder
MAX	malware (ai score=88)
Panda	Trj/GdSda.A
TrendMicro-HouseCall	Ransom_APOCALYPSE.E
Yandex	Trojan.GenAsa!X6Z4O+cgMzQ
Ikarus	Trojan-Ransom.Fabiansom
MaxSecure	Trojan.Malware.121218.susgen
Fortinet	W32/Generic.AC.395335!tr
AVG	Win32:Trojan-gen
Paloalto	generic.ml
Qihoo-360	Win32/Trojan.Generic.HxQB5h8A