给大家来个壮观的

zzh161

一个毒网解出来的，感谢阿米提供毒网，感谢我的智能sandbox帮我解地址

样本：
         
         
所有的crc校验值都不一样

[ 本帖最后由 zzh161 于 2008-2-14 22:05 编辑 ]

solcroft

... 什么叫做智能sandbox

无尽藏海

F:\virus\win32[1]\11\win32(131).exe - probably a variant of Win32/Statik application
F:\virus\win32[1]\11\win32(78).exe - probably a variant of Win32/Statik application

qianwenxiang

你的智能SANDBOX自此罢工
avast 光荣的鸭蛋

怪不得这包大一些 原来多了80个win32.exe

[ 本帖最后由 qianwenxiang 于 2008-2-14 22:14 编辑 ]

leonfg

FS 0

ykz1991

Begin scan in 'D:\Virus\11'
D:\Virus\11\win32(1).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(10).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(100).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(101).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(102).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(103).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(104).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(105).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(106).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(107).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(108).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(109).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(11).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(110).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(111).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(112).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(113).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(114).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(115).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(116).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(117).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(118).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(119).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(12).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(120).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(121).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(122).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(123).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(124).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(125).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(126).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(127).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(128).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(129).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(13).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(130).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(131).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(132).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(133).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(134).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(135).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(136).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(137).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(138).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(139).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(14).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(140).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(141).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(142).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(143).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(144).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(145).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(146).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(147).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(148).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(149).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(15).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(150).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(151).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(152).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(153).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(154).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(155).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(156).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(157).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(158).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(159).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(16).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(160).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(161).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(162).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(163).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(164).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(165).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(166).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(167).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(168).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(169).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(17).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(170).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(171).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(172).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(173).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(174).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(85).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(86).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(87).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(88).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(89).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(9).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(90).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(91).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(92).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(93).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(94).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(95).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(96).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(97).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(98).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32(99).exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!
D:\Virus\11\win32.exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
      [WARNING]   The file was ignored!


End of the scan: 2008年2月14日  22:14
Used time: 00:10 min

The scan has been done completely.

      1 Scanning directories
    189 Files were scanned
    189 viruses and/or unwanted programs were found
      0 Files were classified as suspicious:
      0 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      0 Files not concerned
      0 Archives were scanned
    189 Warnings
      0 Notes

zzh161

你用sbie跑一下，可好玩了，给你下一堆木马，然后提示你，your computer is not protected。。。。然后给你装个软件

ykz1991

antivir
啥也不说了
PS:为了能一帖发完，部分报告删除

swans

费尔居然也是光荣的鸭蛋

冷冷

IK

189 Files scanned
          (0 Archives with 0 files)
        0 Signatures found
        0 Suspect code-parts found
        Used time: 0:01.859