楼主: zjb0923
收起左侧

[病毒样本] Trojan

  [复制链接]
手中的红蜻蜓
发表于 2015-7-17 16:39:03 | 显示全部楼层
aboringman 发表于 2015-7-17 10:36
DR.WEB block the website.
[mw_shl_code=css,true]forum.php?mod=attachment&aid=MjY2Nzg4MnwzM2UyYzI2YX ...

右键解压蜘蛛全杀。奇怪,同一个文件夹内先是干掉三个。剩下一个等了10S左右才弹窗
开开心心卖手机
发表于 2015-7-17 18:07:27 | 显示全部楼层
4个都是这种报法,就不一一上图啦

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
aboringman
发表于 2015-7-17 20:22:43 | 显示全部楼层
手中的红蜻蜓 发表于 2015-7-17 16:39
右键解压蜘蛛全杀。奇怪,同一个文件夹内先是干掉三个。剩下一个等了10S左右才弹窗

不知道啊,我是网页拦截,4个都被block了
电脑发烧友
发表于 2015-7-17 22:38:59 | 显示全部楼层
AVG一个不杀
良民一枚
发表于 2015-7-17 23:27:01 | 显示全部楼层
开开心心卖手机 发表于 2015-7-17 18:07
4个都是这种报法,就不一一上图啦

This message is an automatically generated reply -- do not reply to this message.This system is designed to analyze and process suspicious file submissions into Symantec Security Response and cannot accept correspondence or inquiries.



Submission Date 2015-07-17T06:59:25.637
Tracking # 39286852
Submitter 贵显 黄
Customer Notes  病毒文件Trojan  


贵显 黄,


We have processed your submission (Tracking #39286852) and your submission is now closed. The following is a report of our findings for the files in your submission:

Submission Summary
--------------------------------------------------------------------------------

Files Submitted# Filename MD5 Determination Signature Protection Name RR Seq#
1 Trojan.rar 0x38DF0940F51DEB8CCED7A3F751DB90C1 Archive N/A  N/A
2 360anquanweishixpgod@36_99.exe 0xB1F16D82B00773E259EEB84A9873427E NotMalicious N/A  N/A
3 acrobatkeygenxpgod@36_14075.exe 0xB1F16D82B00773E259EEB84A9873427E NotMalicious N/A  N/A
4 audacityportablexpgod@36_7360.exe 0xB1F16D82B00773E259EEB84A9873427E NotMalicious N/A  N/A
5 powermillxpgod@36_23374.exe 0xB1F16D82B00773E259EEB84A9873427E NotMalicious N/A  N/A


Developer Notes:  


Trojan.rar is a container file e.g. archive, email

360anquanweishixpgod@36_99.exe is not malicious.

acrobatkeygenxpgod@36_14075.exe is not malicious.

audacityportablexpgod@36_7360.exe is not malicious.

powermillxpgod@36_23374.exe is not malicious.




--------------------------------------------------------------------------------
Assessment
--------------------------------------------------------------------------------

File1:  Trojan.rar  
MD5:  0x38DF0940F51DEB8CCED7A3F751DB90C1
SHA-1:  0x7FA08FE91C487BD7DFD169B51454833C896E713A
Determination: See Dev Notes
Submission Detail:  Please see the developer notes.

--------------------------------------------------------------------------------

  
File2:  360anquanweishixpgod@36_99.exe  
MD5:  0xB1F16D82B00773E259EEB84A9873427E
SHA-1:  0x8E6CF37F3503440254FA0A8D3E0CF49ACE53B106
Determination: See Dev Notes
Submission Detail:  Please see the developer notes.

--------------------------------------------------------------------------------

  
File3:  acrobatkeygenxpgod@36_14075.exe  
MD5:  0xB1F16D82B00773E259EEB84A9873427E
SHA-1:  0x8E6CF37F3503440254FA0A8D3E0CF49ACE53B106
Determination: See Dev Notes
Submission Detail:  Please see the developer notes.

--------------------------------------------------------------------------------

  
File4:  audacityportablexpgod@36_7360.exe  
MD5:  0xB1F16D82B00773E259EEB84A9873427E
SHA-1:  0x8E6CF37F3503440254FA0A8D3E0CF49ACE53B106
Determination: See Dev Notes
Submission Detail:  Please see the developer notes.

--------------------------------------------------------------------------------

  
File5:  powermillxpgod@36_23374.exe  
MD5:  0xB1F16D82B00773E259EEB84A9873427E
SHA-1:  0x8E6CF37F3503440254FA0A8D3E0CF49ACE53B106
Determination: See Dev Notes
Submission Detail:  Please see the developer notes.

--------------------------------------------------------------------------------

  
This message was generated by Symantec Security Response automation.

Should you have any questions about your submission, please contact our regional technical support from the Symantec Web site, and give them the tracking number included in this message.

Symantec Technical Support

http://www.symantec.com/techsupp/


Sincerely,

Symantec Security Response
辽宁大连~~小海
发表于 2015-7-18 08:06:46 | 显示全部楼层
本帖最后由 辽宁大连~~小海 于 2015-7-18 08:11 编辑

不说话,发错了!
230f4
发表于 2015-7-18 08:10:28 | 显示全部楼层
辽宁大连~~小海 发表于 2015-7-18 08:06
不说话,今天是18号了,说好的云呢?

发错地方了
辽宁大连~~小海
发表于 2015-7-18 08:11:30 | 显示全部楼层

我擦·········,不好意~~~
天耀群星
头像被屏蔽
发表于 2015-7-18 08:41:25 | 显示全部楼层
键盘记录、下载dll,修改IE安全区域等设置。
尘梦幽然
发表于 2015-7-18 10:50:07 | 显示全部楼层
bbszy 发表于 2015-7-17 10:26
趋势英文版全杀,报毒名字一样

Threat:        TROJ_GEN.R0EBC0RGG15

趋势科技简中8.0
威胁名称:        TROJ_GEN.R0EBC0RGG15
类型:        恶意软件
受感染文件:        C:\Users\simplr\Desktop\powermillxpgod@36_23374.exe
处理措施:        已移除
检测方式:        实时扫描
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-12-23 13:08 , Processed in 0.113208 second(s), 13 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表