How to remove NSudo.exe

NSudo.exe

The module NSudo.exe has been detected as Virtool.Gen

NSudo.exe
Remove NSudo.exe

File Details

Product Name:

NSudo
Company Name:

M2-Team
MD5: 5cae01aea8ed390ce9bec17b6c1237e4
Size: 247 KB
First Published: 2021-07-14 20:24:50 (3 years ago)
Latest Published: 2025-02-27 23:01:50 (2 weeks ago)
Status: Virtool.Gen (on last analysis)
Analysis Date: 2025-02-27 23:01:50 (2 weeks ago)

Common Places:

%sysdrive%\perform
%profile%\onedrive\рабочий стол\adobecc2019-2020-genp-2.6.2
%sysdrive%\programas\g3np_2.7_ap_znt
%profile%\downloads\adobe photoshop 2021 22.0.0.35 multilingual\adobe cc 2019-2020 genp 2.6.2.7.rar\adobe cc 2019-2020 genp 2.6.2.7
%sysdrive%\$recycle.bin\s-1-5-21-2809124836-3472117544-1409243803-1001\$rwo771z.7
%desktop%
%desktop%
%commondir%\adobe\adobe xd
%commondir%\adobe\adobe xd
%commondir%\adobe\adobe xd

Geography:

Peru 8.4%
Brazil 6.0%
Mexico 6.0%
Bosnia and Herzegovina 6.0%
Colombia 4.8%
India 4.8%
Bangladesh 4.8%
Palestine 4.8%
Botswana 4.8%
Argentina 3.6%
Egypt 3.6%
Russia 2.4%
United Kingdom 2.4%
Morocco 2.4%
Indonesia 2.4%
Poland 2.4%
Puerto Rico 2.4%
Tunisia 2.4%
Kenya 2.4%
Algeria 2.4%
Italy 2.4%
South Africa 2.4%
Saudi Arabia 2.4%
Germany 2.4%
Kazakhstan 1.2%
Croatia 1.2%
Taiwan 1.2%
Hong Kong 1.2%
Norway 1.2%
Ecuador 1.2%
Nigeria 1.2%
Angola 1.2%
Turkey 1.2%

OS Version:

Windows 10 85.9%
Windows 7 12.0%
Windows 8.1 2.2%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 64
Image Base: 0x0000000140000000
Entry Address: 0x0001b3e0

PE Sections:

Name Size of data MD5
.text 118784 2bb6014f49dd048ba2659ec6fa8408e9
.rdata 51200 18ecc7a2e5e307442685c841745b7954
.data 3072 b0dcf4ba030cb5d2f42927ebe7055487
.pdata 7168 c08072fef804c27fc3e537a6a8794a5a
.rsrc 70656 5b58a5b379d54d695d1d07df30e08922
.reloc 1024 fb1887e4a47a9e6cdfe77e3e02953396

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for NSudo.exe
copyright for information about NSudo.exe
­