精睿样本测试（16.4.28）

显示全部楼层 · 发表于 2016-4-28 13:32:10

狐狸糊涂发表于 2016-4-28 11:42
BD杀38，余12

[mw_shl_code=css,true]C:%users\QIU\Desktop\2016.4.28\36.vir=>(INFECTED_JS) JS:Trojan ...

C:\Users\QIU\Desktop\2016.4.28\29.vir=>Ex3.exe Gen:Variant.Zusy.Elzob.8031 Deleted

实测29号是加密压缩包Zip，密码是infected BD隔着加密压缩包都能扫到里面的文件太逆天了

显示全部楼层 · 发表于 2016-4-28 13:41:49

275751198 发表于 2016-4-28 13:32
C:%users\QIU\Desktop\2016.4.28\29.vir=>Ex3.exe Gen:Variant.Zusy.Elzob.8031 Deleted

实测29号是 ...

我手工输入了密码
加密是扫不到的

显示全部楼层 · 发表于 2016-4-28 13:54:02

狐狸糊涂发表于 2016-4-28 13:41
我手工输入了密码
加密是扫不到的

为什么BD就有这么耐心的童鞋在测试啊，为什么测360的连后缀名都不改每次测出个位数的结果就往上发，为什么啊。

显示全部楼层 · 发表于 2016-4-28 14:15:30

XZ8SM7Sx0bVkoUV 发表于 2016-4-28 10:26
火绒 21/50

火绒这个成绩很不错呀

显示全部楼层 · 发表于 2016-4-28 14:16:42

G data

显示全部楼层 · 发表于 2016-4-28 15:23:42

275751198 发表于 2016-4-28 13:54
为什么BD就有这么耐心的童鞋在测试啊，为什么测360的连后缀名都不改每次测出个位数的结果就往上发，为什 ...

这个不怪测试的童鞋吧，要怪就怪360。为什么杀个毒还得改后缀。化个妆TM就认不出了。。
国货仍需努力。。

显示全部楼层 · 发表于 2016-4-28 17:08:28

275751198 发表于 2016-4-28 13:54
为什么BD就有这么耐心的童鞋在测试啊，为什么测360的连后缀名都不改每次测出个位数的结果就往上发，为什 ...

嗯嗯，这个还是要怪360

显示全部楼层 · 发表于 2016-4-28 18:11:22

mcafee检测25，修复2个。

[mw_shl_code=css,true]4/28/2016 6:09:18 AM "D:\Virus\2016.4.28\18.vir" "Downloader-FBEO!39CE8345A9A7" "2"

4/28/2016 6:09:18 AM "D:\Virus\2016.4.28\31.vir" "JS/Nemucod.hy" "2"

4/28/2016 6:09:18 AM "D:\Virus\2016.4.28\44.vir" "Artemis!744C611D3F90" "2"

4/28/2016 6:09:05 AM "D:\Virus\2016.4.28\11.vir" "JS/Nemucod.hy" "2"

4/28/2016 6:09:05 AM "D:\Virus\2016.4.28\01.vir" "JS/Nemucod.ib" "2"

4/28/2016 6:09:05 AM "D:\Virus\2016.4.28\19.vir" "JS/Nemucod.ib" "2"

4/28/2016 6:09:05 AM "D:\Virus\2016.4.28\23.vir" "JS/Nemucod.ho" "2"

4/28/2016 6:09:05 AM "D:\Virus\2016.4.28\26.vir" "JS/Nemucod.ib" "2"

4/28/2016 6:09:05 AM "D:\Virus\2016.4.28\06.vir" "Dropper-FQL!30B75519082D" "2"

4/28/2016 6:09:05 AM "D:\Virus\2016.4.28\07.vir" "Downloader-FBEE!EE2A3AC30964" "2"

4/28/2016 6:09:05 AM "D:\Virus\2016.4.28\36.vir" "JS/Nemucod.ib" "2"

4/28/2016 6:09:06 AM "D:\Virus\2016.4.28\33.vir" "W97M/Downloader.bbl" "2"

4/28/2016 6:09:06 AM "D:\Virus\2016.4.28\43.vir" "JS/Nemucod.ib" "2"

4/28/2016 6:09:06 AM "D:\Virus\2016.4.28\46.vir" "Linux64/DDoS-Kaiten.gen.a" "2"

4/28/2016 6:09:06 AM "D:\Virus\2016.4.28\48.vir" "JS/Nemucod.ib" "2"

4/28/2016 6:09:06 AM "D:\Virus\2016.4.28\25.vir" "Dropper-FQL!7FF908005B14" "2"

4/28/2016 6:09:06 AM "D:\Virus\2016.4.28\28.vir" "Downloader-FBDW!69C5DA7A4465" "2"

4/28/2016 6:09:06 AM "D:\Virus\2016.4.28\04.vir" "PWSZbot-FAPO!C7490F5FC91F" "2"

4/28/2016 6:09:06 AM "D:\Virus\2016.4.28\12.vir" "Artemis!F83CB1F79C93" "2"

4/28/2016 6:09:06 AM "D:\Virus\2016.4.28\16.vir" "Ransomware-FHS!8790CA107220" "2"

4/28/2016 6:09:06 AM "D:\Virus\2016.4.28\27.vir" "Fareit-FED!F65957208250" "2"

4/28/2016 6:09:06 AM "D:\Virus\2016.4.28\30.vir" "Fareit-FEE!AA2BFB0C3664" "2"

4/28/2016 6:09:11 AM "D:\Virus\2016.4.28\47.vir" "W97M/Downloader!7221D6E1F6C4" "2"

4/28/2016 6:09:11 AM "D:\Virus\2016.4.28\49.vir" "W97M/Downloader!0AA8577E6C15" "2"

4/28/2016 6:09:11 AM "D:\Virus\2016.4.28\50.vir" "RDN/Generic.grp" "2"[/mw_shl_code]

显示全部楼层 · 发表于 2016-4-28 18:38:32

eis10解压报27个，

显示全部楼层 · 发表于 2016-4-28 18:40:14

HitmanPro 3.7.14.263
Scan date . . . . . . : 2016-04-28 18:32:04
Scan mode . . . . . . : Context
Scan duration . . . . : 56s
Disk access mode  . . : Direct disk access (SRB)
Cloud . . . . . . . . : Internet
Reboot  . . . . . . . : No

Threats . . . . . . . : 15

Objects scanned . . . : 50
Files scanned . . . . : 50
Remnants scanned  . . : 0 files / 0 keys

Malware _____________________________________________________________________

\2016.4.28\04.vir
   Size . . . . . . . : 96,026 bytes
   Age  . . . . . . . : 0.0 days (2016-04-28 18:31:47)
   Entropy  . . . . . : 6.4
   SHA-256  . . . . . : E7720B88BE24F36C701386E5382DAD3489D4EFE11ED4175A73DB5D254B006ED3
> Bitdefender  . . . : Gen:Variant.Zusy.189426

\2016.4.28\05.vir
   Size . . . . . . . : 89,602 bytes
   Age  . . . . . . . : 0.0 days (2016-04-28 18:31:47)
   Entropy  . . . . . : 6.0
   SHA-256  . . . . . : E253CD217E2BF1C13A02746DE97C747E2E926F3C7013C757D6A23DEA26C2038C
   Needs elevation  . : Yes
   Product  . . . . . : Loader MazeR
   Publisher  . . . . : Microsoft
   Description  . . . : Loader MazeR
   Version  . . . . . : 1.0.0.4
   LanguageID . . . . : 0
> Bitdefender  . . . : Trojan.GenericKD.3171641

\2016.4.28\10.vir
   Size . . . . . . . : 565,626 bytes
   Age  . . . . . . . : 0.0 days (2016-04-28 18:31:47)
   Entropy  . . . . . : 6.9
   SHA-256  . . . . . : 069A8C3F353F2D785C6D8A3EA2F710B6E2B3A4C4D59469B2CD7E331FD2B89075
> Bitdefender  . . . : Trojan.GenericKD.3169471

\2016.4.28\14.vir
   Size . . . . . . . : 719,025 bytes
   Age  . . . . . . . : 0.0 days (2016-04-28 18:31:47)
   Entropy  . . . . . : 6.5
   SHA-256  . . . . . : 4430019F935F0A3B62FD2900ACE37785D0B9CD73DFA57A5079C4AAF14D97FC43
   Product  . . . . . : ESET Security
   Publisher  . . . . : ESET
   Description  . . . : ESET Security
   Version  . . . . . : 9.0.374.0
   Copyright  . . . . : Copyright (c) ESET, spol. s r.o. 1992-2016. All rights reserved.
   LanguageID . . . . : 1033
> Bitdefender  . . . : Gen:Variant.Zusy.187495
> Kaspersky  . . . . : HEUR:Trojan.Win32.Generic

\2016.4.28\16.vir
   Size . . . . . . . : 420,354 bytes
   Age  . . . . . . . : 0.0 days (2016-04-28 18:31:47)
   Entropy  . . . . . : 7.7
   SHA-256  . . . . . : C3EE90994111070FD0D55FE2CBEBA80332196840DB97ACDE82122523CDC6673B
   Product  . . . . . : Microsoft® Windows® Operating System
   Publisher  . . . . : Microsoft Corporation
   Description  . . . : Windows Fault Reporting
   Version  . . . . . : 10.0.10240.16384
   Copyright  . . . . : © Microsoft Corporation. All rights reserved.
   LanguageID . . . . : 1033
> Bitdefender  . . . : Gen:Variant.Mazam.19
> Kaspersky  . . . . : Trojan-Ransom.Win32.Bitman.zet
> HitmanPro  . . . . : Troj/Ransom-CVT

\2016.4.28\21.vir
   Size . . . . . . . : 92,674 bytes
   Age  . . . . . . . : 0.0 days (2016-04-28 18:31:48)
   Entropy  . . . . . : 5.5
   SHA-256  . . . . . : E9F824365B5585671324429FCAB22E43CABCE79CACF25A5D4AF8CBA5C699EE66
   Product
   Publisher  . . . . : Kaspersky
   LanguageID . . . . : 0
> Bitdefender  . . . : Gen:Variant.Zusy.189214
> Kaspersky  . . . . : HEUR:Trojan.Win32.Generic

\2016.4.28\27.vir
   Size . . . . . . . : 339,970 bytes
   Age  . . . . . . . : 0.0 days (2016-04-28 18:31:48)
   Entropy  . . . . . : 7.1
   SHA-256  . . . . . : CF0F57FAB56957542C0F8EB894AE75F877CB01B3264FBDA30C01CBAB914D9D02
   Product  . . . . . : Solvability0
   Publisher  . . . . : romanlab Software
   Description  . . . : Newoffenburg5
   Version  . . . . . : 1.00
   LanguageID . . . . : 1033
> Bitdefender  . . . : Gen:Variant.Coantor.29
> Kaspersky  . . . . : HEUR:Trojan.Win32.Generic

\2016.4.28\30.vir
   Size . . . . . . . : 262,146 bytes
   Age  . . . . . . . : 0.0 days (2016-04-28 18:31:48)
   Entropy  . . . . . : 6.9
   SHA-256  . . . . . : 1D3CCB6C9C52998612727AFF1750FA4DB5A5045EF2799B04874FD2BB0D2C36B5
   Product  . . . . . : Buffetti Inc.
   Publisher  . . . . :  Sonic
   Description  . . . : Buffetti Inc.
   Version  . . . . . : 1.02.0002
   LanguageID . . . . : 1033
> Bitdefender  . . . : Trojan.GenericKD.3170279
> Kaspersky  . . . . : Trojan.Win32.Inject.wcqo
> HitmanPro  . . . . : Troj/Vawtrak-FO

\2016.4.28\34.vir
   Size . . . . . . . : 40,450 bytes
   Age  . . . . . . . : 0.0 days (2016-04-28 18:31:48)
   Entropy  . . . . . : 6.3
   SHA-256  . . . . . : 2D7A7845A71DEFCCC12CB6495C3D8D3A349E9E8A23C5D5B068A9E2EE0AD8E3BD
> Bitdefender  . . . : Gen:Variant.Graftor.272304
> Kaspersky  . . . . : Trojan-Banker.Win32.Capper.zzi

\2016.4.28\35.vir
   Size . . . . . . . : 593,410 bytes
   Age  . . . . . . . : 0.0 days (2016-04-28 18:31:48)
   Entropy  . . . . . : 6.6
   SHA-256  . . . . . : F1E39E59ECBB3032FCBB605382C75D3D87BF163EF219843317224A43AAD09E61
> Bitdefender  . . . : Trojan.Generic.16421651
> HitmanPro  . . . . : Mal/Behav-130

\2016.4.28\37.vir
   Size . . . . . . . : 383,169 bytes
   Age  . . . . . . . : 0.0 days (2016-04-28 18:31:48)
   Entropy  . . . . . : 7.9
   SHA-256  . . . . . : 29B1B3BB4AA5DB9E681F4C4AC269E14C545CC8E3A04647C696E87516129B825C
> Bitdefender  . . . : Trojan.GenericKD.3170473

\2016.4.28\38.vir
   Size . . . . . . . : 635,074 bytes
   Age  . . . . . . . : 0.0 days (2016-04-28 18:31:48)
   Entropy  . . . . . : 6.6
   SHA-256  . . . . . : 69F5AE0B47F5A5BC205CFEA740B09940B9A19F9A087417A19DE079899D02F498
   Product  . . . . . : Microsoft® Windows® Operating System
   Publisher  . . . . : Microsoft Corporation
   Description  . . . : Image Mastering File System Imaging API v2
   Version  . . . . . : 6.1.7601.17514
   Copyright  . . . . : © Microsoft Corporation. All rights reserved.
   LanguageID . . . . : 1033
> Bitdefender  . . . : Backdoor.Cridex.B
> Kaspersky  . . . . : Backdoor.Win64.Cridex.c

\2016.4.28\39.vir
   Size . . . . . . . : 16,386 bytes
   Age  . . . . . . . : 0.0 days (2016-04-28 18:31:48)
   Entropy  . . . . . : 5.0
   SHA-256  . . . . . : 126DF339801EE75155F3CB684314814127FC892557EFE48406F22798F014E295
   Product  . . . . . : FUD
   LanguageID . . . . : 0
> Bitdefender  . . . : Trojan.GenericKD.3157449

\2016.4.28\40.vir
   Size . . . . . . . : 536,066 bytes
   Age  . . . . . . . : 0.0 days (2016-04-28 18:31:48)
   Entropy  . . . . . : 7.9
   SHA-256  . . . . . : AD986F3A24E5F5F5CD11DC86C2A8C643B2127E0471FED974046C552D037BFA3C
> Bitdefender  . . . : Gen:Variant.Razy.42391

\2016.4.28\41.vir
   Size . . . . . . . : 561,154 bytes
   Age  . . . . . . . : 0.0 days (2016-04-28 18:31:48)
   Entropy  . . . . . : 7.9
   SHA-256  . . . . . : D90DBC79FDC9C41B4B097265DD2F51B18C293539D2868265427975B1E1DA68AF
   Product  . . . . . : DarkComet Fucker
   Publisher
   Description  . . . : DarkComet Fucker
   Version  . . . . . : 1.0.0.0
   LanguageID . . . . : 0
> Bitdefender  . . . : Trojan.GenericKD.3174266
> Kaspersky  . . . . : HEUR:Trojan.Win32.Generic
> HitmanPro  . . . . : Mal/DotNet-L

[病毒样本] 精睿样本测试（16.4.28）

本帖子中包含更多资源

浏览过的版块