查看: 2151|回复: 19
收起左侧

[病毒样本] 【05.31】#VirusPackage 10x + Modified Samples

[复制链接]
Jerry.Lin
发表于 2018-5-31 17:19:01 | 显示全部楼层 |阅读模式
https://abuaaedugr-my.sharepoint ... nMC_vMV4FQ?e=rh3S40


请勿刻意上传至VT


如 Modified Samples 报毒名与原样本有较大出入,则不计算在内。
行为防御检测计算在内
鼓励双击,结果置顶


回帖格式建议

杀软名称 + 时间

Samples查杀率 + M_Samples查杀率 = Total



例如:

XXXX  05 22 21:27

Samples(5/10) + M(3/10) = Total(8/20)


----------------------------------------------
Second Scan 05 22 21:29

Samples(7/10) + M(3/10) = Total(10/20)


2605276004x
发表于 2018-5-31 17:38:00 | 显示全部楼层
本帖最后由 2605276004x 于 2018-5-31 17:45 编辑

Kaspersky     2018/05/31--17:40
Samples(8/10) + M(2/10) = Total(10/20)

双击,sandboxie,2号自动注销,8号无法运行
pal家族
发表于 2018-5-31 17:44:40 | 显示全部楼层
TM PC-cillin
15.0.1099 beta

5&4=9
值得鼓励。。

林外楼主这次样本好厉害!!
刚解压,还没有运行,PC-cillin就连续崩溃2次,最后提示重启才能回复保护。
这怕是用了什么新0day,直接干死了pc-cillin。厉害啊!

评分

参与人数 1人气 +1 收起 理由
Jerry.Lin + 1 ...

查看全部评分

j2016
发表于 2018-5-31 18:39:28 | 显示全部楼层
本帖最后由 j2016 于 2018-5-31 18:43 编辑

Samples(9/10) + M(5/10) = Total(14/20)

avast
余下双击
Samples(0/1) + M(2/5) = Total(2/6)
Jerry.Lin
 楼主| 发表于 2018-5-31 20:38:09 | 显示全部楼层
本帖最后由 191196846 于 2018-5-31 20:40 编辑

AVIRA

新启发技术效果不错呀

Samples(10/10) + M(10/10) = Total(20/20)

  1. 2018/5/31, 20:37:35 [Real-Time Protection] Malware found
  2.         The pattern of 'TR/Crypt.XPACK.Gen (Cloud) [TR/Crypt.XPACK.Gen]'
  3.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\Virus10x 0531\Modified Samples\(9).exe'.
  4.         Action performed: Delete file
  5.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  6. 2018/5/31, 20:37:20 [Real-Time Protection] Malware found
  7.         The pattern of 'TR/Crypt.XPACK.ae6a28 (Cloud) [TR/Crypt.XPACK.ae6a28]'
  8.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\Virus10x 0531\Modified Samples\(10).exe'.
  9.         Action performed: Delete file
  10.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  11. 2018/5/31, 20:37:03 [Real-Time Protection] Malware found
  12.         The pattern of 'HEUR/APC (Cloud) [HEUR/APC]'
  13.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\Virus10x 0531\Modified Samples\(8).exe'.
  14.         Action performed: Delete file
  15.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  16. 2018/5/31, 20:36:48 [Real-Time Protection] Malware found
  17.         The pattern of 'DR/Delphi.f15f87 (Cloud) [DR/Delphi.f15f87]'
  18.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\Virus10x 0531\Modified Samples\(6).exe'.
  19.         Action performed: Delete file
  20.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  21. 2018/5/31, 20:36:31 [Real-Time Protection] Malware found
  22.         The pattern of 'HEUR/AGEN.1014677 [heuristic]'
  23.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\Virus10x 0531\Modified Samples\(5).exe'.
  24.         Action performed: Delete file
  25.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  26. 2018/5/31, 20:36:28 [Real-Time Protection] Malware found
  27.         The pattern of 'HEUR/AGEN.1014677 [heuristic]'
  28.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\Virus10x 0531\Modified Samples\(4).exe'.
  29.         Action performed: Delete file
  30.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  31. 2018/5/31, 20:36:24 [Real-Time Protection] Malware found
  32.         The pattern of 'TR/ATRAPS.Gen [trojan]'
  33.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\Virus10x 0531\Modified Samples\(3).exe'.
  34.         Action performed: Delete file
  35.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  36. 2018/5/31, 20:36:09 [Real-Time Protection] Malware found
  37.         The pattern of 'TR/Crypt.XPACK.Gen (Cloud) [TR/Crypt.XPACK.Gen]'
  38.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\Virus10x 0531\Modified Samples\(2).exe'.
  39.         Action performed: Delete file
  40.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  41. 2018/5/31, 20:35:47 [Real-Time Protection] Malware found
  42.         The pattern of 'HEUR/APC (Cloud) [HEUR/APC]'
  43.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\Virus10x 0531\Modified Samples\(1).exe'.
  44.         Action performed: Delete file
  45.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  46. 2018/5/31, 20:35:00 [Real-Time Protection] Malware found
  47.         The pattern of 'TR/AD.Emotet.E (Cloud) [TR/AD.Emotet.E]'
  48.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\Virus10x 0531\Samples\(10).exe'.
  49.         Action performed: Delete file
  50.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  51. 2018/5/31, 20:34:57 [Real-Time Protection] Malware found
  52.         The pattern of 'TR/AD.Emotet.F (Cloud) [TR/AD.Emotet.F]'
  53.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\Virus10x 0531\Samples\(9).exe'.
  54.         Action performed: Delete file
  55.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  56. 2018/5/31, 20:34:53 [Real-Time Protection] Malware found
  57.         The pattern of 'HEUR/Malware [heuristic]'
  58.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\Virus10x 0531\Samples\(8).exe'.
  59.         Action performed: Move file to quarantine
  60.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  61. 2018/5/31, 20:34:50 [Real-Time Protection] Malware found
  62.         The pattern of 'DR/Delphi.5ab807 (Cloud) [DR/Delphi.5ab807]'
  63.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\Virus10x 0531\Samples\(6).exe'.
  64.         Action performed: Delete file
  65.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  66. 2018/5/31, 20:34:46 [Real-Time Protection] Malware found
  67.         The pattern of 'HEUR/AGEN.1014677 [heuristic]'
  68.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\Virus10x 0531\Samples\(5).exe'.
  69.         Action performed: Delete file
  70.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  71. 2018/5/31, 20:34:43 [Real-Time Protection] Malware found
  72.         The pattern of 'HEUR/AGEN.1014677 [heuristic]'
  73.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\Virus10x 0531\Samples\(4).exe'.
  74.         Action performed: Delete file
  75.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  76. 2018/5/31, 20:34:38 [Real-Time Protection] Malware found
  77.         The pattern of 'HEUR/APC (Cloud) [HEUR/APC]'
  78.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\Virus10x 0531\Samples\(3).exe'.
  79.         Action performed: Delete file
  80.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  81. 2018/5/31, 20:34:34 [Real-Time Protection] Malware found
  82.         The pattern of 'TR/Crypt.XPACK.9bb681 (Cloud) [TR/Crypt.XPACK.9bb681]'
  83.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\Virus10x 0531\Samples\(2).exe'.
  84.         Action performed: Delete file
  85.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  86. 2018/5/31, 20:34:29 [Real-Time Protection] Malware found
  87.         The pattern of 'HEUR/AGEN.1019945 [heuristic]'
  88.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\Virus10x 0531\Samples\(1).exe'.
  89.         Action performed: Delete file
  90.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  91. 2018/5/31, 20:34:10 [Real-Time Protection] Malware found
  92.         The pattern of 'DR/Delphi.onlgl [dropper]'
  93.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\Virus10x 0531\Samples\(7).exe'.
  94.         Action performed: Delete file
  95.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  96. 2018/5/31, 20:34:10 [Real-Time Protection] Malware found
  97.         The pattern of 'DR/Delphi.onlgl [dropper]'
  98.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\Virus10x 0531\Modified Samples\(7).exe'.
  99.         Action performed: Delete file
  100.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001

  101. 2018/5/31, 20:34:09 [Real-Time Protection] Malware found
  102.         The pattern of 'DR/Delphi.onlgl [dropper]'
  103.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\Virus10x 0531\Samples\(7).exe'.
  104.         Action performed: Delete file
  105.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001
复制代码



ELOHIM
发表于 2018-5-31 17:35:30 | 显示全部楼层
本帖最后由 ELOHIM 于 2018-5-31 17:49 编辑

SCEP 05 31 17:28

Samples(1/10) + M(2/10) = Total(3/20)

又破记录没?

其中,samples里面的9号已经提示病毒,但是迟迟不动。

9#拒绝访问。
楼楼,你的样本这次怎么玩?
果如楼下大神所言有0day?
这么贵的0day这么撒手??

Nocria
发表于 2018-5-31 17:39:58 | 显示全部楼层
Avira
2605276004x
发表于 2018-5-31 17:48:19 | 显示全部楼层
ELOHIM 发表于 2018-5-31 17:35
SCEP 05 31 17:28

Samples(1/10) + M(2/10) = Total(3/20)

微软这才硬了多久,就软了
ELOHIM
发表于 2018-5-31 17:49:53 | 显示全部楼层
2605276004x 发表于 2018-5-31 17:48
微软这才硬了多久,就软了

这是贤者时间。
估计下一次公测会石更吧。
a445441
发表于 2018-5-31 17:51:00 | 显示全部楼层
微点拦截2个 ,扫描MISS
761773275
发表于 2018-5-31 17:59:19 | 显示全部楼层
本帖最后由 761773275 于 2018-6-2 11:29 编辑

(2018/5/31)
-----------------------------------
卡巴斯基
Samples(10/10) + M(09/10) = Total(19/20)
-----------------------------------
Bitdefender
Samples(06/10) + M(03/10) = Total(09/20)
-----------------------------------
(2018/6/01)
Emsisoft
Samples(10/10) + M(08/10) = Total(18/20)
-----------------------------------
F-PROT
Samples(07/10) + M(07/10) = Total(14/20)









您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-3-28 16:29 , Processed in 0.138105 second(s), 20 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表