收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 #PACKAGE 0605
123456下一页
返回列表 发新帖
楼主: Jerry.Lin
 收起左侧

[病毒样本] #PACKAGE 0605

  [复制链接]
WCMS
发表于 2018-6-5 22:26:20 | 显示全部楼层
BDF 06 05 22:25

Samples(27/35) + M(17/35) = Total(44/70)
回复

举报

Jerry.Lin
 楼主| 发表于 2018-6-5 22:26:26 | 显示全部楼层
心醉咖啡 发表于 2018-6-5 21:57
毒霸

heur.ssc 不会就是云盾AI吧?
回复

举报

bbs2811125
发表于 2018-6-5 22:29:28 | 显示全部楼层
ESET 也是 67/70 22:29
  1. Log
  2. Scan Log
  3. Version of detection engine: 17502P (20180605)
  4. Date: 2018/6/5  Time: 22:27:40
  5. Scanned disks, folders and files: D:\搜狗高速下载\PACKAGE 0605
  6. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(10).exe - a variant of Win32/Kryptik.GHJY trojan - cleaned by deleting [1]
  7. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(11).exe - Win32/Emotet.BK trojan - cleaned by deleting [1]
  8. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(12).exe - a variant of MSIL/Injector.REK trojan - cleaned by deleting [1]
  9. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(13).exe - Win32/Dridex.U trojan - cleaned by deleting [1]
  10. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(14).exe - a variant of Win32/Injector.DYLF trojan - cleaned by deleting [1]
  11. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(15).exe - a variant of Win32/Kryptik.GHJQ trojan - cleaned by deleting [1]
  12. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(16).exe - a variant of MSIL/Injector.ESI trojan - cleaned by deleting [1]
  13. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(17).exe - Win32/Mydoom.Q worm - cleaned by deleting [1]
  14. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(19).exe - a variant of MSIL/Kryptik.LLL trojan - cleaned by deleting [1]
  15. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(2).exe - a variant of MSIL/Kryptik.OJF trojan - cleaned by deleting [1]
  16. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(20).exe - Win32/Emotet.BK trojan - cleaned by deleting [1]
  17. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(21).exe - a variant of Win32/Injector.DYLJ trojan - cleaned by deleting [1]
  18. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(22).exe - a variant of MSIL/Bladabindi.AS trojan - cleaned by deleting [1]
  19. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(23).exe - Win32/Adware.SystemSecurity.AK application - cleaned by deleting [1]
  20. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(24).exe - a variant of Win32/Injector.DYLF trojan - cleaned by deleting [1]
  21. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(25).exe - a variant of MSIL/Kryptik.OJH trojan - cleaned by deleting [1]
  22. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(26).exe - a variant of Win32/Injector.DYLI trojan - cleaned by deleting [1]
  23. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(27).exe - a variant of Win32/Kryptik.EOUU trojan - cleaned by deleting [1]
  24. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(28).exe - MSIL/Spy.Agent.AUS trojan - cleaned by deleting [1]
  25. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(29).exe - Win32/Spy.Bebloh.O trojan - cleaned by deleting [1]
  26. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(3).exe - a variant of Win32/GenKryptik.CBOH trojan - cleaned by deleting [1]
  27. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(30).exe - a variant of Win32/Injector.DYLO trojan - cleaned by deleting [1]
  28. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(31).exe - a variant of Win32/Injector.DYLF trojan - cleaned by deleting [1]
  29. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(32).exe - Suspicious Object - cleaned by deleting [1]
  30. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(33).exe - a variant of Win32/BackSwap.A trojan - cleaned by deleting [1]
  31. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(34).exe - Suspicious Object - cleaned by deleting [1]
  32. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(35).exe - a variant of Win32/Kryptik.GHKR trojan - cleaned by deleting [1]
  33. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(4).exe - a variant of Win32/Kryptik.GHLB trojan - cleaned by deleting [1]
  34. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(5).exe - Win32/Emotet.BK trojan - cleaned by deleting [1]
  35. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(6).exe - a variant of Win32/Kryptik.GHJV trojan - cleaned by deleting [1]
  36. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(7).exe - a variant of Win32/Injector.DYKM trojan - cleaned by deleting [1]
  37. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(8).exe - a variant of Win32/Kryptik.GHKA trojan - cleaned by deleting [1]
  38. D:\搜狗高速下载\PACKAGE 0605\Modified Samples\(9).exe - Win32/Emotet.BK trojan - cleaned by deleting [1]
  39. D:\搜狗高速下载\PACKAGE 0605\Samples\(10).exe - a variant of Win32/Kryptik.GHJY trojan - cleaned by deleting [1]
  40. D:\搜狗高速下载\PACKAGE 0605\Samples\(11).exe - Win32/Emotet.BK trojan - cleaned by deleting [1]
  41. D:\搜狗高速下载\PACKAGE 0605\Samples\(12).exe - a variant of MSIL/Injector.REK trojan - cleaned by deleting [1]
  42. D:\搜狗高速下载\PACKAGE 0605\Samples\(13).exe - Win32/Dridex.U trojan - cleaned by deleting [1]
  43. D:\搜狗高速下载\PACKAGE 0605\Samples\(14).exe - a variant of Win32/Injector.DYLF trojan - cleaned by deleting [1]
  44. D:\搜狗高速下载\PACKAGE 0605\Samples\(15).exe - a variant of Win32/Kryptik.GHJQ trojan - cleaned by deleting [1]
  45. D:\搜狗高速下载\PACKAGE 0605\Samples\(16).exe - a variant of MSIL/Injector.ESI trojan - cleaned by deleting [1]
  46. D:\搜狗高速下载\PACKAGE 0605\Samples\(17).exe - Win32/Mydoom.Q worm - cleaned by deleting [1]
  47. D:\搜狗高速下载\PACKAGE 0605\Samples\(18).exe - a variant of Win32/Injector.DVKD trojan - cleaned by deleting [1]
  48. D:\搜狗高速下载\PACKAGE 0605\Samples\(19).exe - a variant of MSIL/Kryptik.LLL trojan - cleaned by deleting [1]
  49. D:\搜狗高速下载\PACKAGE 0605\Samples\(2).exe - a variant of MSIL/Kryptik.OJF trojan - cleaned by deleting [1]
  50. D:\搜狗高速下载\PACKAGE 0605\Samples\(20).exe - Win32/Emotet.BK trojan - cleaned by deleting [1]
  51. D:\搜狗高速下载\PACKAGE 0605\Samples\(21).exe - a variant of Win32/Injector.DYLJ trojan - cleaned by deleting [1]
  52. D:\搜狗高速下载\PACKAGE 0605\Samples\(22).exe - a variant of MSIL/Bladabindi.AS trojan - cleaned by deleting [1]
  53. D:\搜狗高速下载\PACKAGE 0605\Samples\(23).exe - Win32/Adware.SystemSecurity.AK application - cleaned by deleting [1]
  54. D:\搜狗高速下载\PACKAGE 0605\Samples\(24).exe - a variant of Win32/Injector.DYLF trojan - cleaned by deleting [1]
  55. D:\搜狗高速下载\PACKAGE 0605\Samples\(25).exe - a variant of MSIL/Kryptik.OJH trojan - cleaned by deleting [1]
  56. D:\搜狗高速下载\PACKAGE 0605\Samples\(26).exe - a variant of Win32/Injector.DYLI trojan - cleaned by deleting [1]
  57. D:\搜狗高速下载\PACKAGE 0605\Samples\(27).exe - a variant of Win32/Kryptik.BWOY trojan - cleaned by deleting [1]
  58. D:\搜狗高速下载\PACKAGE 0605\Samples\(28).exe - MSIL/Spy.Agent.AUS trojan - cleaned by deleting [1]
  59. D:\搜狗高速下载\PACKAGE 0605\Samples\(29).exe - Win32/Spy.Bebloh.O trojan - cleaned by deleting [1]
  60. D:\搜狗高速下载\PACKAGE 0605\Samples\(3).exe - a variant of Win32/Injector.DYKC trojan - cleaned by deleting [1]
  61. D:\搜狗高速下载\PACKAGE 0605\Samples\(30).exe - a variant of Win32/Injector.DYLO trojan - cleaned by deleting [1]
  62. D:\搜狗高速下载\PACKAGE 0605\Samples\(31).exe - a variant of Win32/Injector.DYLF trojan - cleaned by deleting [1]
  63. D:\搜狗高速下载\PACKAGE 0605\Samples\(32).exe - Suspicious Object - cleaned by deleting [1]
  64. D:\搜狗高速下载\PACKAGE 0605\Samples\(33).exe - a variant of Win32/BackSwap.A trojan - cleaned by deleting [1]
  65. D:\搜狗高速下载\PACKAGE 0605\Samples\(34).exe - Suspicious Object - cleaned by deleting [1]
  66. D:\搜狗高速下载\PACKAGE 0605\Samples\(35).exe - a variant of Win32/Kryptik.GHKR trojan - cleaned by deleting [1]
  67. D:\搜狗高速下载\PACKAGE 0605\Samples\(4).exe - a variant of Win32/Kryptik.GHLB trojan - cleaned by deleting [1]
  68. D:\搜狗高速下载\PACKAGE 0605\Samples\(5).exe - Win32/Emotet.BK trojan - cleaned by deleting [1]
  69. D:\搜狗高速下载\PACKAGE 0605\Samples\(6).exe - a variant of Win32/Kryptik.GHJV trojan - cleaned by deleting [1]
  70. D:\搜狗高速下载\PACKAGE 0605\Samples\(7).exe - a variant of Win32/Injector.DYKM trojan - cleaned by deleting [1]
  71. D:\搜狗高速下载\PACKAGE 0605\Samples\(8).exe - a variant of Win32/Kryptik.GHKA trojan - cleaned by deleting [1]
  72. D:\搜狗高速下载\PACKAGE 0605\Samples\(9).exe - Win32/Emotet.BK trojan - cleaned by deleting [1]
  73. Number of scanned objects: 70
  74. Number of threats found: 67
  75. Number of cleaned objects: 67
  76. Time of completion: 22:27:53  Total scanning time: 13 sec (00:00:13)
复制代码
回复

举报

Jerry.Lin
 楼主| 发表于 2018-6-5 22:29:51 | 显示全部楼层
bbs2811125 发表于 2018-6-5 22:29
ESET 也是 67/70 22:29

伞伞100%嫉妒吗

评分

参与人数 1人气 +1 收起 理由
bbs2811125 + 1 嚣张

查看全部评分

回复

举报

bbs2811125
发表于 2018-6-5 22:31:34 | 显示全部楼层
191196846 发表于 2018-6-5 22:29
伞伞100%嫉妒吗

不嫉妒啊,我没测双击,这两个双击应该都是没问题的
而且avira本身我也有
回复

举报

懿寒
发表于 2018-6-5 22:36:17 | 显示全部楼层
191196846 发表于 2018-6-5 22:22
红伞右键扫描 剩余两个样本

双击

实机,不敢双击
回复

举报

闪电FLASH
发表于 2018-6-5 22:51:54 | 显示全部楼层
微点: 22:20
S(17/35) + M(13/35) = T(30/70)
回复

举报

心醉咖啡
发表于 2018-6-5 23:03:34 | 显示全部楼层
191196846 发表于 2018-6-5 22:26
heur.ssc 不会就是云盾AI吧?

应该不是,因为这个报法在云盾AI没提出之前就有
回复

举报

aboringman
发表于 2018-6-5 23:14:09 | 显示全部楼层
本帖最后由 aboringman 于 2018-6-5 23:15 编辑

BD:监控加实机双击,除(12).exe无法运行外全歼。



本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

WhiteCruel
发表于 2018-6-5 23:33:28 | 显示全部楼层
360卫士  11:30

Samples(32/35) + M(34/35) = Total(66/70)  94.3%


回复

举报

下一页 »
123456下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-4-25 10:06 , Processed in 0.086061 second(s), 15 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表