Get Started
Platform
Why SentinelOne?
Services
Partners
Resources
About
Pricing
Get Started
Back to Resources

SentinelOne Vs. Nemucod – Prevent (On-Execution)

Video
SentinelOne Vs. Nemucod – Prevent (On-Execution)

The Nemucod family of trojans, which have existed for several years, typically serve as downloaders and/or droppers for additional malicious components. The JSCRIPT-based droppers are associated with a number of ransomware/malware families including TeslaCrypt, Kryptik, ElDorado, Emotet, Ryuk, and countless others. Distribution of these droppers, in the form of obfuscated JSCRIPT, is common, with the scripts themselves often being delivered via phishing/email. JS_Nemucod was utilized heavily as a dropper for Locky ransomware just a few years ago, and often appears in various “Top Malware” frequency lists. Over the years, various ‘mutations’ of Nemucod have appeared, including some which drop executable ransomware payloads directly from the body of the executable.

Watch Now
Related Resources
Video
SentinelOne PartnerOne – America’s 2025
Video
Just a Sec: Cybersecurity Unfiltered—Fast, Frank, and From the Front Lines
Video
LABScon24 Replay | A Walking Red Flag (With Yellow Stars) | Cary & Benincasa
Video
LABScon24 Replay | Kryptina RaaS: From Unsellable Cast-off to Enterprise Ransomware | Jim Walter

Experience the World’s Most Advanced Cybersecurity Platform

See how our intelligent, autonomous cybersecurity platform harnesses the power of data and AI to protect your organization now and into the future.

Request a Demo