搜索
查看: 1392|回复: 74
收起左侧

[病毒样本] 样本集奉上_16

  [复制链接]
www-tekeze
发表于 2018-7-9 16:13:59 | 显示全部楼层 |阅读模式
文件较大只有30个样本,已检查过没有重复文件,似乎是火绒样本采集范围内的,但火绒不报。。  @火绒工程师
So,请大家帮忙测试下! 快来快来,扫描? 双击? 一概欢迎!  


蓝奏云盘,下载挺快。。。https://www.lanzous.com/i1dlnib    密码:infected

评分

参与人数 1人气 +3 收起 理由
天使的愤怒 + 3 版区有你更精彩: )

查看全部评分

191196846
发表于 2018-7-9 16:17:52 | 显示全部楼层
本帖最后由 191196846 于 2018-7-9 16:35 编辑

ESET


File_Reputation:




Detection Rate:  22/30

  1. Scan Log
  2. Version of detection engine: 17683 (20180709)
  3. Date: 2018/7/9  Time: 16:32:02
  4. Scanned disks, folders and files: C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_16
  5. C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_16\Samp (10).vir.exe - a variant of Win32/Adware.Qjwmonkey.C application - cleaned by deleting [1]
  6. C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_16\Samp (11).vir.exe - a variant of MSIL/Hoax.FakeHack.ATL application - cleaned by deleting [1]
  7. C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_16\Samp (14).vir.exe - a variant of Win32/Gaofenquming.B potentially unwanted application - action selection postponed until scan completion
  8. C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_16\Samp (15).vir.exe - Win32/InstallCore.Gen.A potentially unwanted application - action selection postponed until scan completion
  9. C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_16\Samp (16).vir.bat - BAT/TrojanDownloader.Agent.NOK trojan - cleaned by deleting [1]
  10. C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_16\Samp (17).vir.exe - a variant of Win32/TrojanDownloader.Banload.YEZ trojan - cleaned by deleting [1]
  11. C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_16\Samp (18).vir.exe - MSIL/Agent.SNX trojan - cleaned by deleting [1]
  12. C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_16\Samp (19).vir.exe - a variant of Win32/Injector.DYKZ trojan - cleaned by deleting [1]
  13. C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_16\Samp (20).vir.exe » NSIS » Script.nsi - Win32/Filecoder.Cerber.B trojan - cleaned by deleting [1]
  14. C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_16\Samp (21).vir.exe - Win32/InstallCore.Gen.A potentially unwanted application - action selection postponed until scan completion
  15. C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_16\Samp (22).vir.exe - a variant of Win32/Sogou.H potentially unwanted application - action selection postponed until scan completion
  16. C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_16\Samp (23).vir - DOC/Agent.BJ trojan - cleaned by deleting [1]
  17. C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_16\Samp (24).vir.exe - a variant of Win32/Gaofenquming.B potentially unwanted application - action selection postponed until scan completion
  18. C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_16\Samp (25).vir.dll - a variant of Win64/HackTool.Crack.J potentially unsafe application - action selection postponed until scan completion
  19. C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_16\Samp (26).vir.exe - a variant of Win32/Packed.NoobyProtect.M suspicious application - cleaned by deleting [1]
  20. C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_16\Samp (27).vir.exe - a variant of Win32/Kryptik.GHLJ trojan - cleaned by deleting [1]
  21. C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_16\Samp (29).vir.exe » WINRARSFX » eee.exe - incorrect CRC checksum, the file may be damaged
  22. C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_16\Samp (29).vir.exe » WINRARSFX »  - archive damaged
  23. C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_16\Samp (3).vir.exe - a variant of Win32/Agent.YXS trojan - cleaned by deleting [1]
  24. C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_16\Samp (30).vir.exe - Win32/InstallCore.Gen.A potentially unwanted application - action selection postponed until scan completion
  25. C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_16\Samp (6).vir.exe - a variant of Win32/Kryptik.GHLJ trojan - cleaned by deleting [1]
  26. C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_16\Samp (7).vir.exe - a variant of Win32/RiskWare.Khit.B application - cleaned by deleting [1]
  27. C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_16\Samp (8).vir.exe - a variant of Win32/Kryptik.GHMH trojan - cleaned by deleting [1]
  28. C:\Users\zhong\Downloads\Compressed\VIRUS TEST\卡饭\VirusSamples_16\Samp (9).vir.exe » NSIS » WindowsUpdate.exe - a variant of MSIL/Agent.RPP trojan - cleaned by deleting [1]
  29. Number of scanned objects: 401
  30. Number of threats found: 22
  31. Number of cleaned objects: 22
  32. Time of completion: 16:34:34  Total scanning time: 152 sec (00:02:32)

  33. Notes:
  34. [1] Object has been deleted as it only contained the virus body.
复制代码



本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
Jirehlov1234
发表于 2018-7-9 16:20:37 | 显示全部楼层
本帖最后由 Jirehlov1234 于 2018-7-9 16:39 编辑

kis19 scan 16:15

18/30

3  UDS:DangerousObject.Multi.Generic
6  not-a-virus:HEUR:AdWare.Win32.Generic
7  not-a-virus:UDS:AdWare.Win32.Agent.xxdbli
8  HEUR:Trojan.Win32.Generic
9  UDS:Backdoor.MSIL.Agent.zqv
9  //#  VHO:Trojan-Ransom.MSIL.WLock.cl
10  not-a-virus:Downloader.Win32.Agent.hfjr
11  UDS:Hoax.MSIL.Agent.bi
14  not-a-virus:Downloader.Win32.Donex.bk
15  not-a-virus:UDS:AdWare.Win32.DealPly.dguff
16  Trojan-Downloader.BAT.Agent.tp
17  UDS:DangerousObject.Multi.Generic
18  Trojan.MSIL.Agent.fqia
19  UDS:DangerousObject.Multi.Generic
20  HEUR:Trojan.Win32.Generic
24  not-a-virus:Downloader.Win32.Donex.bu
26  UDS:HackTool.Win32.Agent.ahqv
27  not-a-virus:HEUR:AdWare.Win32.Generic
30  not-a-virus:UDS:AdWare.Win32.Agent.xxdsmj

剩余文件中KSN认识的























本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x

评分

参与人数 1人气 +1 收起 理由
pal家族 + 1 样本质量确实高

查看全部评分

YU2711
发表于 2018-7-9 16:24:49 | 显示全部楼层
EMSI  SCAN17/30

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
dreams521
发表于 2018-7-9 16:28:45 | 显示全部楼层
本帖最后由 dreams521 于 2018-7-9 17:51 编辑

Avira   20/30



07/09/2018,16-26-42        [INFO]        c:\users\administrator\desktop\123\Samp (10).vir
07/09/2018,16-26-42        [INFO]        [ACTION] Clean
07/09/2018,16-26-42        [INFO]        Repair of TR/Rogue.7551282 started.
07/09/2018,16-26-49        [INFO]        Repair of TR/Rogue.7551282 finished successfully.
07/09/2018,16-26-49        [INFO]        c:\users\administrator\desktop\123\Samp (12).vir
07/09/2018,16-26-49        [INFO]        [ACTION] Clean
07/09/2018,16-26-49        [INFO]        Repair of TR/Dldr.Delphi.glfld started.
07/09/2018,16-26-55        [INFO]        Repair of TR/Dldr.Delphi.glfld finished successfully.
07/09/2018,16-26-55        [INFO]        c:\users\administrator\desktop\123\Samp (14).vir
07/09/2018,16-26-55        [INFO]        [ACTION] Clean
07/09/2018,16-26-55        [INFO]        Repair of PUA/InstallCore started.
07/09/2018,16-28-27        [INFO]        Repair of PUA/InstallCore finished successfully.
07/09/2018,16-28-27        [INFO]        c:\users\administrator\desktop\123\Samp (15).vir
07/09/2018,16-28-27        [INFO]        [ACTION] Clean
07/09/2018,16-28-27        [INFO]        Repair of TR/Dldr.Delphi.pjrlk started.
07/09/2018,16-28-34        [INFO]        Repair of TR/Dldr.Delphi.pjrlk finished successfully.
07/09/2018,16-28-34        [INFO]        c:\users\administrator\desktop\123\Samp (17).vir
07/09/2018,16-28-34        [INFO]        [ACTION] Clean
07/09/2018,16-28-34        [INFO]        Repair of TR/Dropper.MSIL.Gen started.
07/09/2018,16-28-40        [INFO]        Repair of TR/Dropper.MSIL.Gen finished successfully.
07/09/2018,16-28-40        [INFO]        c:\users\administrator\desktop\123\Samp (18).vir
07/09/2018,16-28-40        [INFO]        [ACTION] Clean
07/09/2018,16-28-40        [INFO]        Repair of TR/Dropper.VB.613d8b started.
07/09/2018,16-28-47        [INFO]        Repair of TR/Dropper.VB.613d8b finished successfully.
07/09/2018,16-28-47        [INFO]        c:\users\administrator\desktop\123\Samp (19).vir
07/09/2018,16-28-47        [INFO]        [ACTION] Clean
07/09/2018,16-28-47        [INFO]        Repair of TR/AD.NsisPureInject.crkcq started.
07/09/2018,16-28-53        [INFO]        Repair of TR/AD.NsisPureInject.crkcq finished successfully.
07/09/2018,16-28-53        [INFO]        c:\users\administrator\desktop\123\Samp (20).vir
07/09/2018,16-28-53        [INFO]        [ACTION] Clean
07/09/2018,16-28-53        [INFO]        Repair of PUA/InstallCore started.
07/09/2018,16-29-00        [INFO]        Repair of PUA/InstallCore finished successfully.
07/09/2018,16-29-00        [INFO]        c:\users\administrator\desktop\123\Samp (21).vir
07/09/2018,16-29-00        [INFO]        [ACTION] Clean
07/09/2018,16-29-00        [INFO]        Repair of BDS/Gbot.eevy started.
07/09/2018,16-29-06        [INFO]        Repair of BDS/Gbot.eevy finished successfully.
07/09/2018,16-29-06        [INFO]        c:\users\administrator\desktop\123\Samp (22).vir
07/09/2018,16-29-06        [INFO]        [ACTION] Clean
07/09/2018,16-29-06        [INFO]        Repair of Adware/Agent.mcdzs started.
07/09/2018,16-29-13        [INFO]        Repair of Adware/Agent.mcdzs finished successfully.
07/09/2018,16-29-13        [INFO]        c:\users\administrator\desktop\123\Samp (24).vir
07/09/2018,16-29-13        [INFO]        [ACTION] Clean
07/09/2018,16-29-13        [INFO]        Repair of TR/Black.Gen2 started.
07/09/2018,16-29-19        [INFO]        Repair of TR/Black.Gen2 finished successfully.
07/09/2018,16-29-19        [INFO]        c:\users\administrator\desktop\123\Samp (25).vir
07/09/2018,16-29-19        [INFO]        [ACTION] Clean
07/09/2018,16-29-19        [INFO]        Repair of TR/Dropper.Gen started.
07/09/2018,16-29-25        [INFO]        Repair of TR/Dropper.Gen finished successfully.
07/09/2018,16-29-25        [INFO]        c:\users\administrator\desktop\123\Samp (26).vir
07/09/2018,16-29-25        [INFO]        [ACTION] Clean
07/09/2018,16-29-25        [INFO]        Repair of HEUR/AGEN.1015906 started.
07/09/2018,16-29-32        [INFO]        Repair of HEUR/AGEN.1015906 finished successfully.
07/09/2018,16-29-32        [INFO]        c:\users\administrator\desktop\123\Samp (27).vir
07/09/2018,16-29-32        [INFO]        [ACTION] Clean
07/09/2018,16-29-32        [INFO]        Repair of HEUR/AGEN.1024824 started.
07/09/2018,16-29-38        [INFO]        Repair of HEUR/AGEN.1024824 finished successfully.
07/09/2018,16-29-38        [INFO]        c:\users\administrator\desktop\123\Samp (3).vir
07/09/2018,16-29-38        [INFO]        [ACTION] Clean
07/09/2018,16-29-38        [INFO]        Repair of PUA/InstallCore started.
07/09/2018,16-29-44        [INFO]        Repair of PUA/InstallCore finished successfully.
07/09/2018,16-29-44        [INFO]        c:\users\administrator\desktop\123\Samp (30).vir
07/09/2018,16-29-44        [INFO]        [ACTION] Clean
07/09/2018,16-29-44        [INFO]        Repair of HEUR/AGEN.1015906 started.
07/09/2018,16-29-51        [INFO]        Repair of HEUR/AGEN.1015906 finished successfully.
07/09/2018,16-29-51        [INFO]        c:\users\administrator\desktop\123\Samp (6).vir
07/09/2018,16-29-51        [INFO]        [ACTION] Clean
07/09/2018,16-29-51        [INFO]        Repair of Adware/Kipidow.AE started.
07/09/2018,16-29-57        [INFO]        Repair of Adware/Kipidow.AE finished successfully.
07/09/2018,16-29-57        [INFO]        c:\users\administrator\desktop\123\Samp (7).vir
07/09/2018,16-29-57        [INFO]        [ACTION] Clean
07/09/2018,16-29-57        [INFO]        Repair of ADWARE/ICLoader.Gen7 started.
07/09/2018,16-30-03        [INFO]        Repair of ADWARE/ICLoader.Gen7 finished successfully.
07/09/2018,16-30-03        [INFO]        c:\users\administrator\desktop\123\Samp (8).vir
07/09/2018,16-30-03        [INFO]        [ACTION] Clean
07/09/2018,16-30-03        [INFO]        Repair of TR/Agent.ullmt started.
07/09/2018,16-30-10        [INFO]        Repair of TR/Agent.ullmt finished successfully.
07/09/2018,16-30-10        [INFO]        c:\users\administrator\desktop\123\Samp (9).vir
07/09/2018,16-30-10        [INFO]        [ACTION] Clean


---------------------------------------------------------


End of scan : 2018-07-09 16:30:10
Duration : 04m:03s:540ms


The scan has been done completely.


      1 Scanned directories
      8 Scanned archives
     30 Scanned files
      0 Skipped files
      0 Ignored files
     20 Detected files
     20 Infected files cleaned
      


剩余样本  



1,2,4,5,13,28号样本看3楼

11样本:CS自动瞄准挂
16样本:无效的Win 32程序
23样本:无效的Win 32程序
29样本:已查杀

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
Dolby123
发表于 2018-7-9 16:35:20 | 显示全部楼层
CIS Premium 11 Beta  23/30
log file






本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
桑德尔
发表于 2018-7-9 16:42:59 | 显示全部楼层
pal家族
发表于 2018-7-9 16:44:01 | 显示全部楼层

这种包没看出双击的必要啊
dreams521
发表于 2018-7-9 16:44:53 | 显示全部楼层

23和29呢?
嶝鄇
发表于 2018-7-9 16:46:43 | 显示全部楼层
360 total security 15/30

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛|优惠券| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 苏ICP备07004770号 ) GMT+8, 2018-7-18 10:35 , Processed in 0.115671 second(s), 21 queries .

快速回复 返回顶部 返回列表