10S+10M（18.06.07）

petr0vic

https://my.mixtape.moe/topvcq.rar

infected

天使的愤怒

金山毒霸无法查杀

Jirehlov1234

kis18

9/10+m3/10=12/20

1.exe UDS:DangerousObject.Multi.Generic
2.exe UDS:DangerousObject.Multi.Generic
3.exe//# UDS:Trojan.Win32.Inject.sb
3.exe UDS:Trojan.Win32.Inject.sb
5.exe UDS:Trojan-Banker.Win32.Emotet.sb
6.exe UDS:DangerousObject.Multi.Generic
7.exe HEUR:Trojan.MSIL.Agent.gen
8.scr UDS:DangerousObject.Multi.Generic
9.exe Trojan-PSW.Win32.Fareit.ecjl
10.exe Backdoor.Win32.Androm.pzgv

m7.exe HEUR:Trojan.MSIL.Agent.gen
m9.exe HEUR:Trojan.Win32.Agent.gen
m10.exe HEUR:Trojan.Win32.Agent.gen

UDS全军覆没

===================
20:51
4.exe UDS:Trojan-Banker.Win32.Gozi.sb
21:34
m5.exe UDS:Trojan-Banker.Win32.Emotet.sb
4:18
m1.exe UDS:Trojan-Spy.Win32.Ursnif.sb
m4.exe UDS:Trojan-Banker.Win32.Gozi.sb
m6.exe UDS:Trojan-Ransom.Win32.GandCrypt.a6:19
m3.exe UDS:DangerousObject.Multi.Generic
m2.exe UDS:Trojan.Win32.Yakes.sb
m8.scr Trojan-PSW.Win32.Fareit.eclj

petr0vic

Bitdefender
S(3/10)+M(2/10)=5/20

杰伦Ｊ时代

天使的愤怒 发表于 2018-6-7 20:01
金山毒霸无法查杀

查杀一直这样，防御还行

天使的愤怒

杰伦Ｊ时代 发表于 2018-6-7 20:12
查杀一直这样，防御还行

嗯，蛮扎心的，目前云响应了三个样本。

歌德塔大蜘蛛

天使的愤怒 发表于 2018-6-7 20:14
嗯，蛮扎心的，目前云响应了三个样本。

看4楼，Bitdefender也是3个

cloud01

ESET
S(9/10)+M(8/10)=17/20

聆听落雨

诺顿NS

S(2/10)+M(3/10)=5/20

Jerry.Lin

  06 07 20:42

Samples(10/10) + M(10/10) = Total(20/20) 100%

几乎都是云报法，少有几个启发

谁敢与伞伞一战

1. 2018/6/7, 20:39:51 [Real-Time Protection] Malware found
   
2.         The pattern of 'TR/Injector.ee8829 (Cloud) [TR/Injector.ee8829]'
   
3.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\topvcq\10\Modifed\10.exe'.
   
4.         Action performed: Delete file
   
5.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001
   
6. 
   
7. 2018/6/7, 20:39:45 [Real-Time Protection] Malware found
   
8.         The pattern of 'TR/Injector.15a700 (Cloud) [TR/Injector.15a700]'
   
9.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\topvcq\10\Modifed\9.exe'.
   
10.         Action performed: Delete file
    
11.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001
    
12. 
    
13. 2018/6/7, 20:39:41 [Real-Time Protection] Malware found
    
14.         The pattern of 'TR/Crypt.ZPACK.Gen [trojan]'
    
15.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\topvcq\10\Modifed\8.scr'.
    
16.         Action performed: Delete file
    
17.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001
    
18. 
    
19. 2018/6/7, 20:39:36 [Real-Time Protection] Malware found
    
20.         The pattern of 'TR/ATRAPS.Gen [trojan]'
    
21.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\topvcq\10\Modifed\7.exe'.
    
22.         Action performed: Delete file
    
23.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001
    
24. 
    
25. 2018/6/7, 20:39:30 [Real-Time Protection] Malware found
    
26.         The pattern of 'TR/Crypt.ZPACK.d39803 (Cloud) [TR/Crypt.ZPACK.d39803]'
    
27.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\topvcq\10\Modifed\6.exe'.
    
28.         Action performed: Delete file
    
29.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001
    
30. 
    
31. 2018/6/7, 20:39:25 [Real-Time Protection] Malware found
    
32.         The pattern of 'TR/Crypt.ZPACK.3297b5 (Cloud) [TR/Crypt.ZPACK.3297b5]'
    
33.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\topvcq\10\Modifed\5.exe'.
    
34.         Action performed: Delete file
    
35.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001
    
36. 
    
37. 2018/6/7, 20:39:18 [Real-Time Protection] Malware found
    
38.         The pattern of 'TR/AD.Ursnif.Y (Cloud) [TR/AD.Ursnif.Y]'
    
39.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\topvcq\10\Modifed\4.exe'.
    
40.         Action performed: Delete file
    
41.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001
    
42. 
    
43. 2018/6/7, 20:39:12 [Real-Time Protection] Malware found
    
44.         The pattern of 'TR/AD.Inject.Y (Cloud) [TR/AD.Inject.Y]'
    
45.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\topvcq\10\Modifed\3.exe'.
    
46.         Action performed: Delete file
    
47.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001
    
48. 
    
49. 2018/6/7, 20:39:06 [Real-Time Protection] Malware found
    
50.         The pattern of 'TR/Dldr.Zurgop.170797 (Cloud) [TR/Dldr.Zurgop.170797]'
    
51.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\topvcq\10\Modifed\2.exe'.
    
52.         Action performed: Delete file
    
53.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001
    
54. 
    
55. 2018/6/7, 20:38:59 [Real-Time Protection] Malware found
    
56.         The pattern of 'TR/Crypt.XPACK.75c53b (Cloud) [TR/Crypt.XPACK.75c53b]'
    
57.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\topvcq\10\10.exe'.
    
58.         Action performed: Delete file
    
59.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001
    
60. 
    
61. 2018/6/7, 20:38:54 [Real-Time Protection] Malware found
    
62.         The pattern of 'TR/Crypt.XPACK.3e3f46 (Cloud) [TR/Crypt.XPACK.3e3f46]'
    
63.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\topvcq\10\9.exe'.
    
64.         Action performed: Delete file
    
65.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001
    
66. 
    
67. 2018/6/7, 20:38:49 [Real-Time Protection] Malware found
    
68.         The pattern of 'TR/Dropper.VB.ab8cfb (Cloud) [TR/Dropper.VB.ab8cfb]'
    
69.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\topvcq\10\8.scr'.
    
70.         Action performed: Delete file
    
71.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001
    
72. 
    
73. 2018/6/7, 20:38:42 [Real-Time Protection] Malware found
    
74.         The pattern of 'TR/Dropper.MSIL.6124ee (Cloud) [TR/Dropper.MSIL.6124ee]'
    
75.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\topvcq\10\7.exe'.
    
76.         Action performed: Delete file
    
77.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001
    
78. 
    
79. 2018/6/7, 20:38:36 [Real-Time Protection] Malware found
    
80.         The pattern of 'TR/Crypt.ZPACK.6fa211 (Cloud) [TR/Crypt.ZPACK.6fa211]'
    
81.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\topvcq\10\6.exe'.
    
82.         Action performed: Delete file
    
83.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001
    
84. 
    
85. 2018/6/7, 20:38:31 [Real-Time Protection] Malware found
    
86.         The pattern of 'TR/Crypt.ZPACK.AF (Cloud) [TR/Crypt.ZPACK.AF]'
    
87.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\topvcq\10\5.exe'.
    
88.         Action performed: Delete file
    
89.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001
    
90. 
    
91. 2018/6/7, 20:38:25 [Real-Time Protection] Malware found
    
92.         The pattern of 'TR/AD.Ursnif.Y (Cloud) [TR/AD.Ursnif.Y]'
    
93.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\topvcq\10\4.exe'.
    
94.         Action performed: Delete file
    
95.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001
    
96. 
    
97. 2018/6/7, 20:38:18 [Real-Time Protection] Malware found
    
98.         The pattern of 'TR/Injector.5a5665 (Cloud) [TR/Injector.5a5665]'
    
99.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\topvcq\10\3.exe'.
    
100.         Action performed: Delete file
     
101.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001
     
102. 
     
103. 2018/6/7, 20:38:12 [Real-Time Protection] Malware found
     
104.         The pattern of 'TR/AD.SmokeLoader.35a532 (Cloud) [TR/AD.SmokeLoader.35a532]'
     
105.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\topvcq\10\2.exe'.
     
106.         Action performed: Delete file
     
107.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001
     
108. 
     
109. 2018/6/7, 20:37:54 [Real-Time Protection] Malware found
     
110.         The pattern of 'TR/AD.Ursnif.tbkts [trojan]'
     
111.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\topvcq\10\Modifed\1.exe'.
     
112.         Action performed: Delete file
     
113.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001
     
114. 
     
115. 2018/6/7, 20:37:53 [Real-Time Protection] Malware found
     
116.         The pattern of 'TR/AD.Ursnif.tbkts [trojan]'
     
117.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\topvcq\10\1.exe'.
     
118.         Action performed: Delete file
     
119.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001
     
120. 
     
121. 2018/6/7, 20:37:53 [Real-Time Protection] Malware found
     
122.         The pattern of 'TR/AD.Ursnif.tbkts [trojan]'
     
123.         detected in file 'C:\Users\zhong\Downloads\Compressed\VIRUS TEST\topvcq\10\1.exe'.
     
124.         Action performed: Delete file
     
125.         User SID: S-1-5-21-3774652721-2607747548-2788097174-1001
     
126. 
     

复制代码