【04.12】#VirusPackage 12x

显示全部楼层 · 发表于 2018-4-12 19:05:34

本帖最后由 191196846 于 2018-4-12 19:40 编辑

https://abuaaedugr-my.sharepoint ... b6ukmQGrXA?e=9XFEkt

(1)是白文件，不好意思……

显示全部楼层 · 发表于 2018-4-12 19:15:23

本帖最后由 Jirehlov1234 于 2018-4-13 15:58 编辑

卡巴

(2).exe  Trojan.Win32.VBKrypt.zihl
(3).exe  Backdoor.Win32.Androm.popr
(4).exe  HEUR:Backdoor.MSIL.Generic
(5).exe  UDS:DangerousObject.Multi.Generic =>  Trojan.Win32.Crypt.ygw
(9).exe  UDS:Trojan-Downloader.Win32.Injecter.sb => Trojan-Downloader.Win32.Injecter.wze
(10).exe  Trojan.Win32.Dovs.nyn
(11).exe  Trojan.Win32.Dovs.nww
(12).exe  HEUR:Trojan.MSIL.Generic
(13).exe  HEUR:Trojan.Win32.Cometer.gen

剩下6 7 8 上报了

===================

(7).exe  UDS:Trojan.Win32.Inject.sb => Trojan.Win32.Inject.ajhfc

显示全部楼层 · 发表于 2018-4-12 19:17:10

Jirehlov1234 发表于 2018-4-12 19:15
卡巴

(2).exe Trojan.Win32.VBKrypt.zihl

速度好快，比我抢了一步

显示全部楼层 · 发表于 2018-4-12 19:32:39

显示全部楼层 · 发表于 2018-4-12 21:11:56

本帖最后由温馨小屋于 2018-4-12 23:15 编辑

BD：  23:15更新，新入库两个
(1).exe 这不是PuTTY吗，我一直在用的啊。。。
(2).exe ATD杀
(3).exe Gen:Variant.Graftor.48347
(4).exe ATD杀
(5).exe ATD杀       Trojan.GenericKDZ.43470
(6).exe 不知道密码，无法解压
(7).exe ATD杀
(8).exe ATD杀
(9).exe ATD杀
(10).exe ATD杀    Trojan.GenericKD.30601124
(11).exe Trojan.Agent.CXQZ
(12).exe Gen:Heur.MSIL.Androm.9
(13).exe Trojan.Generic.22656435

显示全部楼层 · 发表于 2018-4-12 21:34:29

SCEP MISS :

2018/03/16 16:39 774,200 (1).exe
2018/04/12 18:59 430,620 (6).exe
2018/04/12 18:53 422,400 (7).exe
2018/04/12 12:49 310,258 (8).exe
4 个文件 1,937,478 字节

复制代码

显示全部楼层 · 发表于 2018-4-12 21:54:55

WD miss (6) , (8)

显示全部楼层 · 发表于 2018-4-12 22:41:01

360杀毒miss 2,6,8,9

恶意软件(BDS.Bladabindi.ajooc)\(12).exe
感染型病毒(Win32/Backdoor.990)\(4).exe
恶意软件(HEUR/QVM03.0.73DF.Malware.Gen)\(3).exe
恶意软件(HEUR/QVM20.1.73DF.Malware.Gen)\(7).exe
恶意软件(HEUR/QVM20.1.73DF.Malware.Gen)\(10).exe
感染型病毒(Win32/Trojan.e5e)\(11).exe
恶意软件(TR.Crypt.XPACK.Gen)\(13).exe
恶意软件(HEUR/QVM05.1.73DF.Malware.Gen)\(5).exe

显示全部楼层 · 发表于 2018-4-12 23:10:11

norton

监控检测后剩余268，上报

显示全部楼层 · 发表于 2018-4-12 23:12:37

ESET kill 10x
Log
Scan Log
Version of detection engine: 17210P (20180412)
Date: 2018/4/12  Time: 23:11:57
Scanned disks, folders and files: D:\搜狗高速下载\Virus13x  0412
D:\搜狗高速下载\Virus13x  0412\(10).exe - a variant of Win32/Kryptik.GFNK trojan - cleaned by deleting [1]
D:\搜狗高速下载\Virus13x  0412\(11).exe - a variant of Win32/Kryptik.GFLR trojan - cleaned by deleting [1]
D:\搜狗高速下载\Virus13x  0412\(12).exe - a variant of MSIL/Kryptik.KSF trojan - cleaned by deleting [1]
D:\搜狗高速下载\Virus13x  0412\(13).exe - a variant of Win32/Rozena.CP trojan - cleaned by deleting [1]
D:\搜狗高速下载\Virus13x  0412\(2).exe - a variant of Win32/Injector.DXHB trojan - cleaned by deleting [1]
D:\搜狗高速下载\Virus13x  0412\(3).exe - a variant of Win32/Injector.DXHA trojan - cleaned by deleting [1]
D:\搜狗高速下载\Virus13x  0412\(4).exe - a variant of MSIL/Kryptik.NOR trojan - cleaned by deleting [1]
D:\搜狗高速下载\Virus13x  0412\(5).exe - a variant of Win32/Injector.DXHI trojan - cleaned by deleting [1]
D:\搜狗高速下载\Virus13x  0412\(6).exe » WINRARSFX - error - password-protected file
D:\搜狗高速下载\Virus13x  0412\(7).exe - Suspicious Object - deleted
D:\搜狗高速下载\Virus13x  0412\(9).exe - a variant of Win32/Kryptik.BDMA trojan - cleaned by deleting [1]
Number of scanned objects: 11
Number of threats found: 10
Number of cleaned objects: 10
Time of completion: 23:12:10  Total scanning time: 13 sec (00:00:13)

[病毒样本] 【04.12】#VirusPackage 12x

本帖子中包含更多资源