再发一个样本求鉴定

显示全部楼层 · 发表于 2012-4-30 22:25:02

To 卡巴

显示全部楼层 · 发表于 2012-4-30 23:36:59

金山报毒了，但是小红伞没报

显示全部楼层 · 发表于 2012-4-30 23:38:46

青鱼发表于 2012-4-30 23:36
金山报毒了，但是小红伞没报

金山 360都会报国外的BD小A 红伞基本不报

显示全部楼层 · 发表于 2012-5-1 00:14:03

wjcharles 发表于 2012-4-30 21:59
还好双击杀了

你是虚拟机还是沙盘？

显示全部楼层 · 发表于 2012-5-1 00:34:21

本帖最后由 humanlwj52 于 2012-5-1 00:37 编辑

To AVG.

Analysis Report for 1.exe

Summary:

Description	Risk
Write to foreign memory areas: This executable tampers with the execution of another process.
Packed Binary: This executable is protected with a packer in order to prevent it from being reverse engineered.
Changes security settings of Internet Explorer: This system alteration could seriously affect safety surfing the World Wide Web.
Execution did not terminate correctly: The executable crashed.
Spawns Processes: The executable produces processes during the execution.
Performs Registry Activities: The executable creates and/or modifies registry entries.

显示全部楼层 · 发表于 2012-5-1 01:00:53

FS 能防住

显示全部楼层 · 发表于 2012-5-1 11:07:55

报了报了反应很迅速

显示全部楼层 · 发表于 2012-5-1 16:23:52

还是反HIPS病毒。。

显示全部楼层 · 发表于 2012-5-1 16:45:11

To ESET.

显示全部楼层 · 发表于 2012-5-1 19:59:16

小A 没报！

[病毒样本] 再发一个样本求鉴定