收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 样本集奉上_51
123456789下一页
返回列表 发新帖
楼主: www-tekeze
 收起左侧

[病毒样本] 样本集奉上_51

  [复制链接]
www-tekeze
 楼主| 发表于 2018-8-22 20:39:27 | 显示全部楼层
本帖最后由 www-tekeze 于 2018-8-22 20:41 编辑
WHALE-FALL 发表于 2018-8-22 20:28
ESET 余 256 个 等大神来正式测试吧 先看看

ESET昨天49/300,今天44/300,有点想不通,为何会这样?      @B100D1E55  @Karna
回复

举报

WHALE-FALL
发表于 2018-8-22 20:41:10 来自手机 | 显示全部楼层
www-tekeze 发表于 2018-8-22 20:39
ESET昨天49/300,今天44/300,有点想不通,为何会这样?

我也不太相信,
所以等大神来看看。是不是我扫描方法有问题
回复

举报

静影沉璧
发表于 2018-8-22 20:43:03 | 显示全部楼层
本帖最后由 静影沉璧 于 2018-8-22 20:51 编辑

BD2019扫描:删除107+修复125=232/300 77.3%
  1. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(89).vir VB:Trojan.Agent.CZVU Deleted
  2. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(270).vir VB:Trojan.Agent.CZVU Deleted
  3. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(99).vir=>[Subject: 55957 [recipient]][Date: Thu, 27 Apr 2017 00:24:56 -0000]=>5658650569.zip=>(dummy) Trojan.Oroles.Gen.8 Deleted
  4. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(74).vir=>[Subject: Unpaid Fine - Case No.387099][Date: Thu, 28 Apr 2016 18:51:44 +0530]=>craig_invoices_387099.zip=>details.jse Exploit.SpamMalware-ZIP.Gen Deleted
  5. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(153).vir Trojan.GenericKD.4005548 Deleted
  6. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(197).vir Trojan.Downloader.JS.SA Deleted
  7. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(264).vir=>xl/vbaProject.bin W97M.Downloader.EVY Deleted
  8. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(9).vir=>[Subject: CCE28122017_004407][Date: Thu, 28 Dec 2017 18:47:56 +0700]=>CCE28122017_004407.7z=>CCE28122017_007021.vbs Trojan.VBS.Downloader.AFR Moved to Quarantine
  9. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(76).vir W97m.Downloader.FYW Deleted
  10. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(94).vir Trojan.GenericKD.3929858 Deleted
  11. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(88).vir VB:Trojan.Valyria.157 Deleted
  12. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(121).vir=>[Subject: Re:][Date: Tue, 24 May 2016 18:37:11 +0530]=>to_sign_inv_DEA1074F.zip=>customers 4693.wsf Gen:Heur.JS.Downloader.1 Deleted
  13. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(35).vir W97M.Downloader.ES Deleted
  14. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(38).vir=>word/vbaProject.bin W97M.Downloader.CUL Deleted
  15. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(93).vir=>[Subject: 090646 =?iso-2022-jp?B?GyRCIVo4eDYmTkE2YkBBNWE9cSVHITwlP0F]=>=?iso-2022-jp?b?gyrco1lkj0vbstwhshsoqjiwmtcumdkumduplnhscw= VB:Trojan.VBA.Agent.LW Deleted
  16. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(256).vir=>[Subject: We Have Received Your Payment - Thank You (#4D8B459)][Date: Tue, 24 May 2016 19:26:07 +0530]=>copy_559478.zip=>scan_VOOLp.js Exploit.JS.Agent.JM Deleted
  17. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(125).vir=>[Subject: We Have Received Your Payment - Thank You (#5E1B61F)][Date: Tue, 24 May 2016 19:13:15 +0530]=>security_081095.zip=>doc_scan_XsVnUl.js Trojan.JS.Agent.LKS Deleted
  18. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(282).vir=>[Subject: Zoe Coleman your manager FedEx][Date: Thu, 29 Mar 2018 19:53:15 +0100]=>OF.495093846.zip=>OF.495093846/OF.495093846.bat Generic.Bat.Downloader.1.623BFB03 Deleted
  19. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(80).vir=>[Subject: uk_confirmation_ph767911166.pdf][Date: Thu, 30 Mar 2017 20:03:47 +0800]=>uk_confirmation_ph767911166.zip=>uk_confirmation_ph954869378.zip=>uk_confirmation_ph954869378.exe Trojan.GenericKD.4715278 Deleted
  20. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(92).vir Trojan.GenericKD.4812553 Deleted
  21. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(250).vir=>[Subject: Supplement payment 6001836602][Date: Wed, 11 Oct 2017 19:47:41 +0700]=>F6001836602_11102017.7z=>F6884593454.vbs VB:Trojan.VBS.Agent.AOM Moved to Quarantine
  22. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(281).vir=>[Subject: ][Date: Tue, 03 Oct 2017 10:35:18 -0000]=>68564727288.zip=>4945.zip=>4945.js=>(INFECTED_JS) JS:Trojan.Cryxos.1289 Deleted
  23. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(56).vir W97m.Downloader.GMA Deleted
  24. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(249).vir=>[Subject: uk_confirmation_ph949262948.pdf][Date: Thu, 30 Mar 2017 19:33:06 +0530]=>uk_confirmation_ph949262948.zip=>uk_confirmation_ph954869378.zip=>uk_confirmation_ph954869378.exe Trojan.GenericKD.4716377 Deleted
  25. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(11).vir=>[Subject: Incoming BACs ][Date: Wed, 9 Aug 2017 13:07:17 -0400]=>IncomingBACs.xlsm Trojan.GenericKD.5806167 Deleted
  26. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(71).vir=>[Subject: We Have Received Your Payment - Thank You (#60E1107)][Date: Tue, 24 May 2016 18:48:35 +0500]=>security_709930.zip=>document_fWdwLI.js Exploit.JS.Agent.JM Deleted
  27. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(90).vir VB:Trojan.Agent.CZVU Deleted
  28. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(253).vir=>[Subject: Budget report][Date: Mon, 12 Sep 2016 19:34:52 +0530]=>3911fcc1e51.zip=>FA6F211A Budget_report_xls.js Generic.JS.NemucodA.AD350CF4 Deleted
  29. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(67).vir=>[Subject: pagamento 21.11.2017][Date: Tue, 21 Nov 2017 14:29:16 +0200]=>[removed]-3499.xls VB:Trojan.VBA.Downloader.HT Deleted
  30. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(85).vir=>[Subject: Invoice RE-2017-12-12-00630][Date: Tue, 12 Dec 2017 16:46:55 +0530]=>RE-2017-12-12-00630.doc VB:Trojan.VBA.Agent.QV Deleted
  31. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(91).vir=>[Subject: Re:][Date: Tue, 24 May 2016 14:40:48 +0200]=>to_sign_inv_C7CC28E1.zip=>customers 517.wsf Trojan.JS.Agent.LMA Deleted
  32. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(160).vir Trojan.GenericKD.6204836 Deleted
  33. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(241).vir W97M.Downloader.X Deleted
  34. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(79).vir=>[Subject: uk_confirmation_ph366666307.pdf][Date: Thu, 30 Mar 2017 05:19:35 -0500]=>uk_confirmation_ph366666307.zip=>uk_confirmation_ph954869378.zip=>uk_confirmation_ph954869378.exe Trojan.GenericKD.4715170 Deleted
  35. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(95).vir=>[Subject: Scanned image from MX-2600N][Date: Fri, 21 Apr 2017 20:42:35 +0600]=>noreply@[recipeint's email domain]_20170411_700317.pdf=>836578.docm=>word/vbaProject.bin W97m.Downloader.FRO Deleted
  36. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(289).vir=>[Subject: 3227 [recipient's name]][Date: Wed, 28 Jun 2017 13:20:23 -0000]=>6641.zip=>30085.zip=>(dummy) Trojan.Oroles.Gen.8 Deleted
  37. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(77).vir X97M.Downloader.CD Deleted
  38. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(42).vir=>[Subject: ][Date: Fri, 13 Jan 2017 00:07:35 -0000]=>$MONEY-86635301206-[recipient].zip=>21457.doc VB:Trojan.VBA.Downloader.CQ Deleted
  39. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(25).vir W97m.Downloader.GMA Deleted
  40. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(73).vir=>word/vbaProject.bin W97M.Downloader.EAB Deleted
  41. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(87).vir=>[Subject: Please find attached a XLS Invoice 90207][Date: Tue, 29 Nov 2016 02:00:40 -0800]=>INVOICE.TAM_90207_20161129_910A929DF.xls Trojan.GenericKD.3790207 Deleted
  42. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(127).vir=>[Subject: Scanned image from MX-2600N][Date: Fri, 21 Apr 2017 22:31:46 +0800]=>noreply@[recipeint's email domain]_20170411_726287.pdf=>281956.docm=>word/vbaProject.bin W97m.Downloader.FRP Deleted
  43. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(236).vir=>[Subject: Status of invoice][Date: Mon, 18 Sep 2017 13:49:02 +0200]=>a2175814-42.7z=>26596685195.vbs Trojan.VBS.Downloader.ADV Moved to Quarantine
  44. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(66).vir Trojan.GenericKD.30628117 Deleted
  45. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(98).vir=>[Subject: Scanned image from MX-2600N][Date: Fri, 21 Apr 2017 19:58:40 +0530]=>noreply@[recipeint's email domain]_20170411_844594.pdf=>770714.docm=>word/vbaProject.bin W97m.Downloader.FRP Deleted
  46. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(7).vir=>[From: <ying.wang@saic.com>][Date: Sat, 29 Jul 2017 05:50:13 -0000]=>EMAIL_29947_[recipient].zip=>8270663088.zip=>sowga.js=>(INFECTED_JS) JS:Trojan.Cryxos.1145 Deleted
  47. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(97).vir=>[Subject: Website Job Application][Date: Thu, 16 Nov 2017 14:18:40 +0100]=>Vanessa's Resume.doc W97m.Downloader.GMA Deleted
  48. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(228).vir=>(objdata)=>(Embedded DocFile g) Exploit.MathType.Gen Moved to Quarantine
  49. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(232).vir=>[Subject: Invoice RE-2017-12-12-00166][Date: Tue, 12 Dec 2017 19:11:55 +0800]=>RE-2017-12-12-00166.doc VB:Trojan.VBA.Agent.QV Deleted
  50. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(86).vir VB:Trojan.Valyria.1477 Deleted
  51. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(82).vir=>[Subject: A76CBE09259B5E0F][Date: Tue, 26 Jul 2016 20:33:48 +0530]=>A76CBE09259B5E0F.docm=>word/vbaProject.bin W97M.Downloader.EAB Deleted
  52. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(99).vir=>[Subject: 55957 [recipient]][Date: Thu, 27 Apr 2017 00:24:56 -0000]=>5658650569.zip=>8313.js=>(INFECTED_JS) JS.Remucod.2.Gen Deleted
  53. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(258).vir=>[Subject: Invoice RE-2017-12-12-00091][Date: Tue, 12 Dec 2017 16:43:53 +0530]=>RE-2017-12-12-00091.doc VB:Trojan.VBA.Agent.QV Deleted
  54. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(75).vir=>[Subject: Doc259][Date: Thu, 28 Apr 2016 20:23:27 +0600]=>Doc259.zip=>007382608.js=>(INFECTED_JS) JS:Trojan.JS.Downloader.HZ Deleted
  55. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(65).vir VB:Trojan.Valyria.58 Deleted
  56. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(83).vir Trojan.GenericKD.4002616 Deleted
  57. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(4).vir=>[Subject: 38638 [recipient]][Date: Wed, 26 Apr 2017 21:45:29 -0000]=>8010246017929.zip=>21107.js=>(INFECTED_JS) JS.Remucod.2.Gen Deleted
  58. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(63).vir W97M.Downloader.CUZ Deleted
  59. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(39).vir=>word/vbaProject.bin VB:Trojan.Valyria.405 Deleted
  60. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(81).vir VB:Trojan.Agent.CZVU Deleted
  61. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(237).vir VB:Trojan.Agent.CZVU Deleted
  62. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(84).vir=>[Subject: Please find attached a XLS Invoice 135486][Date: Tue, 29 Nov 2016 03:35:02 -0700]=>INVOICE.TAM_135486_20161129_F54C387E0.xls Trojan.GenericKD.3790082 Deleted
  63. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(229).vir=>[Subject: Re: Payment Processed.][Date: Thu, 6 Aug 2015 02:23:01 -0400]=>PI-Invoice-0972-DUC.jar=>CBRaYGoSqAslV5N2LMjnAIfijUjaJw7cErINltFlUD2VbarFqfRtVTJ0jQ1ZQw2ZXMvqCZgaMwILaBVbxFi6Y7TJPbEji4uI2v6UxnZQwf9tWlUTQzWCr4RcxwTV8UVadJ5IqdhlgRwS6HjzmTpm3fHEHl4Rzipdgrgr0qn7htqJtcFndtcioul6fejHJ0JNDkFuCjnjDalba4Jb1dRaA75JCpu0wu1rhydnX5595ikAB6sw2tfnQoC6Dr1mtlYLEYNBGK6E9ZKjSYJgksNnQEYHJ7ygVPAKzf.class Trojan.Java.Adwind.P Deleted
  64. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(245).vir=>[From: Clemente <Clemente@papeterie-fricker.ch>][Date: Mon, 24 Jul 2017 17:13:50 +0530]=>IMG_9215.ZIP=>01258861149_20170411_248144.wsf Trojan.JS.Agent.QSM Deleted
  65. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(78).vir=>[Subject: Message from KM_C224e][Date: Fri, 02 Jun 2017 15:43:34 +0530]=>skm_c224e24647053158.pdf=>307AKH56YVU512.docm Trojan.GenericKD.5249552 Deleted
  66. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(207).vir=>[Subject: Find the swift copy for the balance payment !!][Date: Sat, 1 Aug 2015 00:40:01 +0100]=>payment.invoice.1.jar=>Main.class Java.Trojan.Adwind.BM Deleted
  67. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(70).vir W97M.Downloader.ANS Deleted
  68. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(257).vir=>[Subject: uk_confirmation_ph123366329.pdf][Date: Thu, 30 Mar 2017 16:58:02 +0530]=>uk_confirmation_ph123366329.zip=>uk_confirmation_ph954869378.zip=>uk_confirmation_ph954869378.exe Trojan.GenericKD.4715170 Deleted
  69. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(69).vir=>[Subject: Financial statement][Date: Thu, 21 Jul 2016 17:17:31 -0500]=>jake_676517D.zip=>INV000 c79a.js Trojan.JS.Agent.MLF Deleted
  70. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(274).vir=>[Subject: Your Amazon.com order has dispatched (#210-2356200-4106706][Date: Mon, 21 Nov 2016 02:20:16 -0700]=>ORDER-210-2356200-4106706.zip=>BYDICK290731.js=>(INFECTED_JS) JS:Trojan.JS.Downloader.HAZ Deleted
  71. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(8).vir=>[Subject: Message from KM_C224e][Date: Mon, 18 Sep 2017 11:43:03 -0500]=>20171809_80523513381.7z=>20170918_24250165030.vbs VB:Trojan.VBS.Downloader.ADW Moved to Quarantine
  72. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(64).vir=>[Subject: Your Amazon.com order has dispatched (#269-4312087-7600497][Date: Mon, 21 Nov 2016 11:35:31 +0200]=>ORDER-269-4312087-7600497.zip=>NNVVB261314.js=>(INFECTED_JS) JS:Trojan.JS.Downloader.HAZ Deleted
  73. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(224).vir=>[Subject: scan][Date: Tue, 10 May 2016 11:49:03 +0200]=>scan.zip=>(dummy) Trojan.Oroles.Gen.8 Deleted
  74. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(253).vir=>[Subject: Budget report][Date: Mon, 12 Sep 2016 19:34:52 +0530]=>3911fcc1e51.zip=>FA6F211A Budget_report_xls - 1.js Generic.JS.NemucodA.AD350CF4 Deleted
  75. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(75).vir=>[Subject: Doc259][Date: Thu, 28 Apr 2016 20:23:27 +0600]=>Doc259.zip=>(dummy) Trojan.Oroles.Gen.8 Deleted
  76. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(61).vir=>[Subject: Updated][Date: Tue, 28 Jun 2016 02:15:05 +0300]=>tim_updated_doc_551787.zip=>swift ea2.js Generic.JS.DownloaderAG.98AAD9DE Deleted
  77. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(62).vir=>[Subject: file5][Date: Thu, 28 Apr 2016 21:30:45 +0700]=>file5.zip=>EPS00624215.js=>(INFECTED_JS) JS:Trojan.JS.Downloader.HZ Deleted
  78. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(68).vir=>[Subject: ][Date: Tue, 27 Jun 2017 17:59:07 -0000]=>email_9966126031214_[recipient's name].zip=>6935.zip=>6935.js=>(INFECTED_JS) JS.Remucod.2.Gen Deleted
  79. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(156).vir=>[Subject: Invoice INV-0578][Date: Fri, 02 Jun 2017 15:10:28 +0530]=>invoice inv-0578.pdf=>381DKNVX6TT814.docm Trojan.GenericKD.5249609 Deleted
  80. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(186).vir=>[Subject: uk_confirmation_ph738917099.pdf][Date: Thu, 30 Mar 2017 20:06:20 +0800]=>uk_confirmation_ph738917099.zip=>uk_confirmation_ph954869378.zip=>uk_confirmation_ph954869378.exe Trojan.GenericKD.4715278 Deleted
  81. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(273).vir=>[Subject: ACH Payment info][Date: Thu, 3 May 2018 23:37:53 +0800]=>Outstanding Invoices.doc VB:Trojan.Valyria.1734 Deleted
  82. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(6).vir VB:Trojan.VBA.Agent.QV Deleted
  83. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(58).vir=>word/vbaProject.bin VB:Trojan.Valyria.543 Deleted
  84. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(55).vir VB:Trojan.Agent.CZVU Deleted
  85. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(21).vir W97M.Downloader.GNO Deleted
  86. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(53).vir W97M.Downloader.ES Deleted
  87. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(54).vir Exploit.MSOffice.Gen Deleted
  88. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(52).vir=>[Subject: Unpaid Fine - Case No.878114][Date: Thu, 28 Apr 2016 16:57:30 +0300]=>linda_invoices_878114.zip=>details.jse Exploit.SpamMalware-ZIP.Gen Deleted
  89. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(50).vir X97m.Downloader.DL Deleted
  90. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(51).vir Trojan.GenericKD.3930581 Deleted
  91. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(5).vir=>word/vbaProject.bin VB:Trojan.Valyria.405 Deleted
  92. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(287).vir=>xl/vbaProject.bin Trojan.MSWord.Downloader.AS Deleted
  93. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(47).vir=>[Subject: You Are Fired 40B61B1][Date: Tue, 03 May 2016 17:10:57 +0530]=>linda_detail_28545.zip=>detail1627.js Trojan.JS.Agent.KZA Deleted
  94. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(154).vir=>[Subject: avviso di pagamento 21/11/2017][Date: Tue, 21 Nov 2017 10:02:29 +0100]=>46812_[removed].xls VB:Trojan.VBA.Downloader.HT Deleted
  95. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(134).vir VB:Trojan.Valyria.11 Deleted
  96. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(218).vir=>word/vbaProject.bin W97M.Downloader.CUL Deleted
  97. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(68).vir=>[Subject: ][Date: Tue, 27 Jun 2017 17:59:07 -0000]=>email_9966126031214_[recipient's name].zip=>6935.zip=>(dummy) Trojan.Oroles.Gen.8 Deleted
  98. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(48).vir=>[Subject: eVoice Voicemail (Callback: 168-481-6218)][Date: Thu, 26 Apr 2018 20:01:18 +0300]=>wav2A41.20180426475.zip=>wav213F.2018042678040.url Trojan.Downloader.URI.Gen Deleted
  99. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(170).vir=>[Subject: Receipt 017-13644][Date: Mon, 24 Oct 2016 15:21:23 +0100]=>Receipt=>Receipt 53744-762732.wsf Trojan.JS.Downloader.FXY Deleted
  100. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(60).vir=>[Subject:Account Compromised][Date: Tue, 24 May 2016 08:08:19 -0600]=>Security Notification.zip=>Security Report ID(14597593).doc W97M.Downloader.CUZ Deleted
  101. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(44).vir=>[Subject: CCE26122017_007495][Date: Tue, 26 Dec 2017 20:21:44 +0530]=>CCE26122017_007495.7z=>CCE26122017_20422.js Trojan.JS.Downloader.IGK Moved to Quarantine
  102. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(43).vir W97m.Downloader.FZC Deleted
  103. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(41).vir VB:Trojan.VBA.Agent.UT Deleted
  104. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(34).vir=>[Subject: CC Confirmation]=>skm_c554e85980937823.7z=>SKM_C554e16011767433.vbs VB:Trojan.VBS.Agent.AQD Moved to Quarantine
  105. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(31).vir W97m.Downloader.GMA Deleted
  106. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(3).vir=>[Subject: File_01059868][Date: Thu, 28 Dec 2017 23:59:58 +0600]=>File_01059868.7z=>Copy_76949395.vbs Trojan.VBS.Downloader.AFR Moved to Quarantine
  107. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(30).vir=>[Subject: Message from KM_C224e][Date: Mon, 18 Sep 2017 21:21:10 +0200]=>20171809_16127286024.7z=>20170918_17608770693.vbs VB:Trojan.VBS.Downloader.ADW Moved to Quarantine
  108. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(224).vir=>[Subject: scan][Date: Tue, 10 May 2016 11:49:03 +0200]=>scan.zip=>00004304662954.js=>(INFECTED_JS) JS:Trojan.JS.Agent.NI Deleted
  109. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(299).vir Trojan.Downloader.JS.SA Deleted
  110. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(296).vir=>[Subject: Invoice INV0000965][Date: Tue, 31 Oct 2017 09:52:29 -0200]=>Invoice INV0000965.doc Trojan.GenericKD.12554298 Deleted
  111. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(293).vir W97m.Downloader.GNQ Deleted
  112. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(283).vir=>[Subject: Scanned document from HP ePrint user][Date: Mon, 30 Oct 2017 16:30:34 +0300]=>untitled-24.doc=>word/document.xml Trojan.Downloader.DDE.Gen.1 Deleted
  113. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(292).vir W97M.Downloader.GNO Deleted
  114. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(36).vir=>[Subject: Re: PURCHASE ORDER 457211][Date: un, 11 Jun 2017 20:37:10 -0500]=>PO12062017.ace=>PO12062017.exe Gen:Heur.PonyStealer.2 Moved to Quarantine
  115. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(291).vir W97m.Downloader.FYV Deleted
  116. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(96).vir=>[Subject: 1 Unread Message of High Priority][Date: Tue, 03 May 2016 07:49:33 -0500]=>fininfo_098341.zip=>caution8974.js=>(INFECTED_JS) JS:Trojan.JS.Agent.NC Deleted
  117. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(200).vir=>word/vbaProject.bin VB:Trojan.Valyria.543 Deleted
  118. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(169).vir=>[Subject: Order 71659761 (Acknowledgement)][Date: Thu, 03 Nov 2016 08:15:46 -0500]=>gUfWy71659761.zip=>MChhG3267-3359.vbs Trojan.VBS.Downloader.ZC Deleted
  119. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(108).vir=>[Subject: Updated][Date: Tue, 28 Jun 2016 03:57:28 +0530]=>linda_updated_435835.zip=>swift 352c.js Generic.JS.DownloaderAG.A58F2B5C Deleted
  120. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(294).vir=>word/vbaProject.bin W97M.Downloader.CUL Deleted
  121. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(229).vir=>[Subject: Re: Payment Processed.][Date: Thu, 6 Aug 2015 02:23:01 -0400]=>PI-Invoice-0972-DUC.jar=>c/CBRaYGoSqAslV5N2LMjnAIfijUjaJw7cErINltFlUD2VbarFqfRtVTJ0jQ1ZQw2ZXMvqCZgaMwILaBVbxFi6Y7TJPbEji4uI2v6UxnZQwf9tWlUTQzWCr4RcxwTV8UVadJ5IqdhlgRwS6HjzmTpm3fHEHl4Rzipdgrgr0qn7htqJtcFndtcioul6fejHJ0JNDkFuCjnjDalba4Jb1dRaA75JCpu0wu1rhydnX5595ikAB6sw2tfnQoC6Dr1mtlYLEYNBGK6E9ZKjSYJgksNnQEYHJ7ygVPAKzl.class Trojan.Java.Adwind.P Deleted
  122. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(290).vir=>xl/vbaProject.bin X97M.Downloader.CL Deleted
  123. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(29).vir VB:Trojan.Valyria.1753 Deleted
  124. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(289).vir=>[Subject: 3227 [recipient's name]][Date: Wed, 28 Jun 2017 13:20:23 -0000]=>6641.zip=>30085.zip=>30085.js=>(INFECTED_JS) JS:Trojan.Cryxos.960 Deleted
  125. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(252).vir=>[Subject: Updated][Date: Mon, 27 Jun 2016 22:53:56 +0100]=>update_simon_936862.zip=>swift 899f.js Generic.JS.DownloaderAG.F2E06CD2 Deleted
  126. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(286).vir=>[Subject: Website Job Application][Date: Thu, 16 Nov 2017 07:26:33 +0100]=>Dorrence's Resume.doc W97m.Downloader.GMA Deleted
  127. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(288).vir=>[Subject: Emailed Invoice - 695977][Date: Sat, 09 Dec 2017 00:11:56 +0800]=>201712_695977.doc W97M.Downloader.GNO Deleted
  128. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(284).vir=>[Subject: Payment_508][Date: Fri, 21 Apr 2017 19:25:34 +0700]=>P508.pdf=>481164.docm Trojan.GenericKD.4910258 Deleted
  129. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(281).vir=>[Subject: ][Date: Tue, 03 Oct 2017 10:35:18 -0000]=>68564727288.zip=>4945.zip=>(dummy) Trojan.Oroles.Gen.8 Deleted
  130. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(159).vir Trojan.GenericKD.4001988 Deleted
  131. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(280).vir=>xl/vbaProject.bin X97M.Downloader.CL Deleted
  132. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(28).vir VB:Trojan.Valyria.195 Deleted
  133. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(135).vir=>[Subject: Scan #804DC34CE8_E436A8A92B][Date: Tue, 24 May 2016 21:16:21 +0700]=>MSG000218878373.zip=>ONOQ-0201334.js Trojan.JS.Agent.LKO Deleted
  134. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(279).vir VB:Trojan.Valyria.1789 Deleted
  135. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(276).vir=>[Subject: upcoming meeting][Date: Tue, 26 Jul 2016 15:48:08 -0500]=>f5bf47a509db.zip=>meeting -60EE-..wsf Generic.JS.DownloaderAN.A2CF8E36 Deleted
  136. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(261).vir=>[Subject: file2][Date: Thu, 28 Apr 2016 21:11:24 +0530]=>file2.zip=>(dummy) Trojan.Oroles.Gen.8 Deleted
  137. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(275).vir=>xl/vbaProject.bin W97M.Downloader.EVY Deleted
  138. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(271).vir Trojan.GenericKD.40220733 Deleted
  139. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(267).vir=>[Subject: Emailing: 4026219][Date: Mon, 04 Dec 2017 17:42:59 +0530]=>4026219.7z=>JPG_9717.vbs VB:Trojan.VBS.Agent.AQD Moved to Quarantine
  140. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(187).vir=>[Subject: Request For Quotation][Date: Thu, 16 Nov 2017 05:49:54 +0000]=>SKMBT_C20171116424367.doc=>(objdata)=>(Embedded DocFile g) Exploit.CVE-2017-0199.Gen Moved to Quarantine
  141. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(242).vir=>[Subject: 17894 [recipient]][Date: Wed, 26 Apr 2017 23:23:52 -0000]=>972472.zip=>9281.js=>(INFECTED_JS) JS.Remucod.2.Gen Deleted
  142. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(261).vir=>[Subject: file2][Date: Thu, 28 Apr 2016 21:11:24 +0530]=>file2.zip=>005410319.js=>(INFECTED_JS) JS:Trojan.JS.Downloader.HZ Deleted
  143. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(180).vir VB:Trojan.Agent.CZVU Deleted
  144. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(262).vir=>[Subject: Document #06658][Date: Tue, 3 Apr 2018 13:02:21 +0530]=>DOC2864416069.zip=>DOC2864416069.js=>(INFECTED_JS) JS:Trojan.JS.Agent.SGP Deleted
  145. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(263).vir=>[Subject: Please find attached a XLS Invoice 19014][Date: Tue, 29 Nov 2016 15:31:15 +0500]=>INVOICE.TAM_19014_20161129_1155219AD.xls Trojan.GenericKD.3790305 Deleted
  146. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(132).vir=>[Subject: Scan][Date: Fri, 29 Dec 2017 13:59:23 +0300]=>Scan_0045.7z=>Scan_009738.js Trojan.JS.Downloader.IGK Moved to Quarantine
  147. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(182).vir W97M.Downloader.FBP Deleted
  148. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(260).vir VB:Trojan.Valyria.1708 Deleted
  149. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(229).vir=>[Subject: Re: Payment Processed.][Date: Thu, 6 Aug 2015 02:23:01 -0400]=>PI-Invoice-0972-DUC.jar=>Main.class Trojan.Java.Adwind.P Deleted
  150. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(26).vir=>[Subject: Scanned image][Date: Wed, 06 Dec 2017 18:58:46 +0530]=>20171206977993.7z=>20171206171706.vbs Trojan.Agent.CRPR Moved to Quarantine
  151. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(268).vir=>[Subject: ][Date: Tue, 27 Jun 2017 15:20:25 -0000]=>email_816830817998661_[recipient's name].zip=>23288.zip=>23288.js=>(INFECTED_JS) JS.Remucod.2.Gen Deleted
  152. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(106).vir=>[Subject: Third Reminder - Outstanding Account][Date: Tue, 03 May 2016 07:06:53 -0500]=>Document_924.zip=>60565336_60565336 - copy (4).js=>(INFECTED_JS) JS:Trojan.JS.Downloader.IK Deleted
  153. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(256).vir=>[Subject: We Have Received Your Payment - Thank You (#4D8B459)][Date: Tue, 24 May 2016 19:26:07 +0530]=>copy_559478.zip=>(dummy) JS.TeslaCrypt.1.Gen Deleted
  154. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(265).vir=>[Subject: Financial statement][Date: Thu, 21 Jul 2016 17:26:23 -0500]=>35B1E9_linda.zip=>INV000 701.js Trojan.JS.Agent.MKC Deleted
  155. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(207).vir=>[Subject: Find the swift copy for the balance payment !!][Date: Sat, 1 Aug 2015 00:40:01 +0100]=>payment.invoice.1.jar=>RRMq0vPQRIVr1iT5haMPpP5PlmbY9P2HfYq79oZI7t3pSKMVD5D8qfj62zhy69viayX69sTPQQmGSgoFFogRapKA6cdakTIhXhcRSnz7dyuGP4cdMSA5BzLITIe7f2vnKLEVSTx9cE81y0fCLoODxAWQkbMjMtPKDz8VLSXQB06Fps2DeW85T185wOt2CfCJLnYObkRJ1KSpI03b552BrHP1h0bbwBfYHObdEH35X0H1dvoPAXUfALz7PbKSugChcZuaVYMCNU7DDCJHngb6cOALIiIiIiIIii.class Java.Trojan.Adwind.AM Deleted
  156. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(259).vir VB:Trojan.VBA.Downloader.CQ Deleted
  157. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(177).vir=>[Subject: CCE26122017_000341][Date: Tue, 26 Dec 2017 22:19:49 +0530]=>CCE26122017_000341.7z=>CCE26122017_51796.js Trojan.JS.Downloader.IGK Moved to Quarantine
  158. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(207).vir=>[Subject: Find the swift copy for the balance payment !!][Date: Sat, 1 Aug 2015 00:40:01 +0100]=>payment.invoice.1.jar=>RRMq0vPQRIVr1iT5haMPpP5PlmbY9P2HfYq79oZI7t3pSKMVD5D8qfj62zhy69viayX69sTPQQmGSgoFFogRapKA6cdakTIhXhcRSnz7dyuGP4cdMSA5BzLITIe7f2vnKLEVSTx9cE81y0fCLoODxAWQkbMjMtPKDz8VLSXQB06Fps2DeW85T185wOt2CfCJLnYObkRJ1KSpI03b552BrHP1h0bbwBfYHObdEH35X0H1dvoPAXUfALz7PbKSugChcZuaVYMCNU7DDCJHngb6cOALIiIiiIiIII.class Java.Trojan.GenericGB.19948 Deleted
  159. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(255).vir=>[Subject: Please find attached invoice no: 70983806321][Date: Mon, 12 Sep 2016 16:33:26 +0700]=>pmE93.zip=>03agU52Nk02.wsf Gen:Heur.JS.Downloader.2 Deleted
  160. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(173).vir VB:Trojan.Valyria.1767 Deleted
  161. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(254).vir W97M.Downloader.GLQ Deleted
  162. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(268).vir=>[Subject: ][Date: Tue, 27 Jun 2017 15:20:25 -0000]=>email_816830817998661_[recipient's name].zip=>23288.zip=>(dummy) Trojan.Oroles.Gen.8 Deleted
  163. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(221).vir VB:Trojan.Agent.CZVU Deleted
  164. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(269).vir=>[Subject: uk_confirmation_ph823188214.pdf][Date: Thu, 30 Mar 2017 16:05:27 +0200]=>uk_confirmation_ph823188214.zip=>uk_confirmation_ph954869378.zip=>uk_confirmation_ph954869378.exe Trojan.GenericKD.4716377 Deleted
  165. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(188).vir Trojan.GenericKD.6204910 Deleted
  166. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(226).vir=>[Subject: Website Job Application][Date: Wed, 15 Nov 2017 06:47:13 +0100]=>D'lonna's Resume.doc VB:Trojan.Valyria.983 Deleted
  167. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(168).vir VB:Trojan.Agent.CZVT Deleted
  168. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(247).vir=>[Subject: Receipt 46-2734][Date: Mon, 24 Oct 2016 16:14:53 +0300]=>Receipt=>Receipt 72645-990319.hta Trojan.RanSerKD.3629919 Deleted
  169. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(166).vir VB:Trojan.Valyria.1979 Deleted
  170. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(248).vir VB:Trojan.VBA.Agent.RQ Deleted
  171. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(246).vir=>[Subject: New Doc 179 Page 2][Date: Tue, 03 May 2016 17:29:26 +0430]=>New Doc 164_7.zip=>9708492188_7283403.js=>(INFECTED_JS) JS:Trojan.JS.Downloader.IL Deleted
  172. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(165).vir VB:Trojan.Agent.CZVU Deleted
  173. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(185).vir=>[Subject: Invoice IZR4327938][Date: Mon, 11 Dec 2017 16:46:09 +0300]=>(message body)=>(base64) W97m.Downloader.GNQ Deleted
  174. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(19).vir=>[Subject: Message from "RNP002673C40054"][Date: Tue, 08 Aug 2017 15:53:26 +0430]=>20170808155326.zip=>201708082774.js Trojan.GenericKD.5788503 Deleted
  175. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(244).vir VB:Trojan.VBA.Agent.GY Deleted
  176. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(107).vir=>xl/vbaProject.bin X97M.Downloader.CL Deleted
  177. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(238).vir Trojan.GenericKD.5590846 Deleted
  178. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(240).vir=>[Subject: Receipt-5428][Date: Fri, 21 Apr 2017 15:21:10 +0300]=>P5428.pdf=>565901.docm=>word/vbaProject.bin W97m.Downloader.FRP Deleted
  179. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(243).vir Trojan.GenericKD.3790082 Deleted
  180. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(235).vir=>xl/vbaProject.bin Trojan.MSWord.Downloader.AS Deleted
  181. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(253).vir=>[Subject: Budget report][Date: Mon, 12 Sep 2016 19:34:52 +0530]=>3911fcc1e51.zip=>(dummy) JS.TeslaCrypt.4.Gen Deleted
  182. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(234).vir=>[Subject: Dan Sutherland manager FedEx][Date: Thu, 29 Mar 2018 21:04:05 +0100]=>HT.495-495860491.zip=>HT.495-495860491/HT.495-495860491.bat Generic.Bat.Downloader.1.C9F99DC9 Deleted
  183. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(155).vir=>word/vbaProject.bin W97M.Downloader.EAB Deleted
  184. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(233).vir Trojan.GenericKD.3929843 Deleted
  185. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(23).vir=>[Subject: Please find attached a XLS Invoice 40234][Date: Tue, 29 Nov 2016 15:22:38 +0530]=>INVOICE.TAM_40234_20161129_49ED776BD.xls Trojan.GenericKD.3790053 Deleted
  186. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(231).vir=>[Subject: Emailing: IMG_20171221_093043189, IMG_20171221_414525016, ][Date: Thu, 21 Dec 2017 07:13:27 -0500]=>img_20171221_093043189.7z=>IMG_20171221_698827418.js Trojan.JS.Downloader.IGE Moved to Quarantine
  187. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(4).vir=>[Subject: 38638 [recipient]][Date: Wed, 26 Apr 2017 21:45:29 -0000]=>8010246017929.zip=>(dummy) Trojan.Oroles.Gen.8 Deleted
  188. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(242).vir=>[Subject: 17894 [recipient]][Date: Wed, 26 Apr 2017 23:23:52 -0000]=>972472.zip=>(dummy) Trojan.Oroles.Gen.8 Deleted
  189. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(128).vir=>[Subject: Website Job Application][Date: Thu, 16 Nov 2017 14:00:36 +0100]=>Arlene's Resume.doc W97m.Downloader.GMA Deleted
  190. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(145).vir VB:Trojan.Agent.CZVU Deleted
  191. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(144).vir VB:Trojan.Valyria.1787 Deleted
  192. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(225).vir Trojan.GenericKD.30753730 Deleted
  193. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(147).vir VB:Trojan.Agent.CZER Deleted
  194. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(229).vir=>[Subject: Re: Payment Processed.][Date: Thu, 6 Aug 2015 02:23:01 -0400]=>PI-Invoice-0972-DUC.jar=>CBRaYGoSqAslV5N2LMjnAIfijUjaJw7cErINltFlUD2VbarFqfRtVTJ0jQ1ZQw2ZXMvqCZgaMwILaBVbxFi6Y7TJPbEji4uI2v6UxnZQwf9tWlUTQzWCr4RcxwTV8UVadJ5IqdhlgRwS6HjzmTpm3fHEHl4Rzipdgrgr0qn7htqJtcFndtcioul6fejHJ0JNDkFuCjnjDalba4Jb1dRaA75JCpu0wu1rhydnX5595ikAB6sw2tfnQoC6Dr1mtlYLEYNBGK6E9ZKjSYJgksNnQEYHJ7ygVPAKzl.class Java.Trojan.GenericGB.19948 Deleted
  195. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(100).vir VB:Trojan.Valyria.1490 Deleted
  196. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(223).vir=>[Subject: Payment 0451][Date: Mon, 31 Jul 2017 15:44:26 +0430]=>P0451.zip=>20172.2017-07-31_75.20.68.vbs Trojan.VBS Deleted
  197. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(142).vir VB:Trojan.Agent.CZVT Deleted
  198. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(227).vir=>[Subject: Supplement payment 5759185861][Date: Wed, 11 Oct 2017 19:46:29 +0700]=>F5759185861_11102017.7z=>F8030796365.vbs VB:Trojan.VBS.Agent.AOM Moved to Quarantine
  199. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(146).vir VB:Trojan.Agent.CZVU Deleted
  200. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(150).vir=>xl/vbaProject.bin Trojan.MSWord.Downloader.AS Deleted
  201. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(219).vir=>[Subject: Nationwide Secure Email - Secured Message ][Date: Thu, 3 Aug 2017 13:07:57 -0400]=>Secure.doc Trojan.Msword.NYE Deleted
  202. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(115).vir=>xl/vbaProject.bin X97M.Downloader.CL Deleted
  203. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(137).vir Trojan.AgentWDCR.MPV Deleted
  204. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(217).vir VB:Trojan.Agent.CZVU Deleted
  205. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(212).vir=>[Subject: Scan #33DB73098B_F38AFA18EA][Date: Thu, 19 May 2016 17:45:12 +0530]=>MSG0008077856.docm=>word/vbaProject.bin W97M.Downloader.CUL Deleted
  206. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(57).vir=>[Subject: CCE28122017_002173][Date: Thu, 28 Dec 2017 12:58:57 +0200]=>CCE28122017_002173.7z=>CCE28122017_005591.vbs Trojan.VBS.Downloader.AFR Moved to Quarantine
  207. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(106).vir=>[Subject: Third Reminder - Outstanding Account][Date: Tue, 03 May 2016 07:06:53 -0500]=>Document_924.zip=>60565336_60565336 - copy.js=>(INFECTED_JS) JS:Trojan.JS.Downloader.IK Deleted
  208. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(175).vir=>[Subject: Updated][Date: Mon, 27 Jun 2016 19:36:52 -0300]=>colin_updated_056106.zip=>swift 822.js Generic.JS.DownloaderAG.7AC8DC91 Deleted
  209. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(209).vir VB:Trojan.Agent.CZVT Deleted
  210. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(126).vir W97m.Downloader.GNQ Deleted
  211. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(277).vir=>[Subject: Scan #EB8FFC8A36_641E2BDDBA][Date: Tue, 24 May 2016 19:34:11 +0530]=>MSG000334005946158628.zip=>YXJ-4712391.js Trojan.JS.Agent.LJA Deleted
  212. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(206).vir VB:Trojan.Valyria.1743 Deleted
  213. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(204).vir VB:Trojan.Agent.CZVU Deleted
  214. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(202).vir=>[Subject: Please find attached invoice no: 9766123][Date: Mon, 12 Sep 2016 18:05:42 +0530]=>pm55D27DB7.zip=>22P5R06.wsf Gen:Heur.JS.Downloader.2 Deleted
  215. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(201).vir=>[Subject: Receipt-34714][Date: Fri, 21 Apr 2017 17:49:51 +0530]=>P34714.pdf=>134324.docm=>word/vbaProject.bin W97m.Downloader.FRP Deleted
  216. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(2).vir=>[Subject: File COPY.29112016.705897.XLS Sent 29/11/2016][Date: Tue, 29 Nov 2016 21:44:41 +0530]=>COPY.29112016.705897.XLS X97M.Downloader.CE Deleted
  217. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(220).vir=>[Subject: Order 04211954 (Acknowledgement)][Date: Thu, 03 Nov 2016 20:18:00 +0530]=>MABBkWp04211954.zip=>TYFGYV7920-0998.vbs Trojan.VBS.Downloader.ZC Deleted
  218. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(190).vir=>[Subject: Ticket #07009][Date: Sat, 17 Mar 2018 00:29:06 +0330]=>DOC4313529270-PDF.7z=>DOC4313529270-PDF.js=>(INFECTED_JS) JS:Trojan.JS.Agent.SFA Deleted
  219. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(196).vir=>[Subject: uk_confirmation_ph553826113.pdf][Date: Thu, 30 Mar 2017 19:06:18 +0700]=>uk_confirmation_ph553826113.zip=>uk_confirmation_ph954869378.zip=>uk_confirmation_ph954869378.exe Trojan.GenericKD.4715278 Deleted
  220. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(194).vir=>[From: <dan_calkin@maysoft.com>][Date: Thu, 19 Jan 2017 07:19:35 -0000]=>EMAIL_807388025533838_[recipient].zip=>22044_ZIP.zip=>22044.js Trojan.GenericKD.4190486 Deleted
  221. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(191).vir W97M.Downloader.ANS Deleted
  222. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(192).vir=>[Subject: Order #87884][Date: Sat, 17 Mar 2018 00:00:21 +0400]=>DOC8047038480-PDF.7z=>DOC8047038480-PDF.js=>(INFECTED_JS) JS:Trojan.JS.Agent.SFA Deleted
  223. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(189).vir Trojan.Doc.Downloader.WN Deleted
  224. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(194).vir=>[From: <dan_calkin@maysoft.com>][Date: Thu, 19 Jan 2017 07:19:35 -0000]=>EMAIL_807388025533838_[recipient].zip=>22044_ZIP.zip=>(dummy) Trojan.Oroles.Gen.8 Deleted
  225. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(183).vir=>[Subject: Emailing: IMG_20171221_870284477, IMG_20171221_993512867, ][Date: Thu, 21 Dec 2017 19:29:05 +0300]=>img_20171221_870284477.7z=>IMG_20171221_725213643.js Trojan.JS.Downloader.IGF Moved to Quarantine
  226. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(19).vir=>[Subject: Message from "RNP002673C40054"][Date: Tue, 08 Aug 2017 15:53:26 +0430]=>20170808155326.zip=>(dummy) Trojan.Oroles.Gen.8 Deleted
  227. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(18).vir=>[Subject: Emailed Invoice - 336905]=>i_336905.7z=>I_772198.js=>(INFECTED_JS) JS:Trojan.JS.Agent.QYD Moved to Quarantine
  228. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(194).vir=>[From: <dan_calkin@maysoft.com>][Date: Thu, 19 Jan 2017 07:19:35 -0000]=>EMAIL_807388025533838_[recipient].zip=>(dummy) Trojan.Oroles.Gen.2 Deleted
  229. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(176).vir=>[Subject: Invoice INV-0948][Date: Fri, 02 Jun 2017 16:51:56 +0700]=>invoice inv-0948.pdf=>610ASHHEIXYH688.docm=>word/vbaProject.bin VB:Trojan.VBA.Downloader.FI Deleted
  230. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(181).vir=>[From: Diann <Diann@revistahigh.com.br>][Date: Mon, 24 Jul 2017 16:01:20 +0430]=>IMG_3473.ZIP=>01258861149_20170411_594721.wsf Trojan.JS.Agent.QSM Deleted
  231. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(174).vir=>[Subject: Invoice #99663][Date: Tue, 3 Apr 2018 15:47:50 +0430]=>DOC2954940733.zip=>DOC2954940733.js=>(INFECTED_JS) JS:Trojan.JS.Agent.SGP Deleted
  232. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(172).vir=>[Subject: Your Booking 14401721][Date: Thu, 30 Mar 2017 14:56:15 +0530]=>Direct-Documentation 14401721-1.zip=>Direct-Documentation 1530219.zip=>Direct-Documentation 1530219/Direct-Documentation 1530219.vbs VB:Trojan.Valyria.330 Deleted
  233. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(106).vir=>[Subject: Third Reminder - Outstanding Account][Date: Tue, 03 May 2016 07:06:53 -0500]=>Document_924.zip=>60565336_60565336 - copy (2).js=>(INFECTED_JS) JS:Trojan.JS.Downloader.IK Deleted
  234. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(17).vir=>[Subject: Fw:][Date: Tue, 12 Jul 2016 19:38:02 +0530]=>gregory_forward_937188.zip=>-SWIFT-f48e-.js Trojan.JS.Agent.MGH Deleted
  235. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(16).vir W97M.Downloader.FTJ Deleted
  236. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(157).vir=>[Subject: Your Booking 30337774][Date: Thu, 30 Mar 2017 15:51:58 +0530]=>Direct-Documentation 30337774-1.zip=>Direct-Documentation 1530219.zip=>Direct-Documentation 1530219/Direct-Documentation 1530219.vbs VB:Trojan.Valyria.330 Deleted
  237. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(15).vir VB:Trojan.Agent.CZVU Deleted
  238. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(131).vir=>[Subject: Order 73287697 (Acknowledgement)][Date: Thu, 03 Nov 2016 10:59:43 -0700]=>JZTv73287697.zip=>xMzCU4574-23107.vbs Trojan.VBS.Downloader.ZC Deleted
  239. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(141).vir W97m.Downloader.GMA Deleted
  240. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(14).vir W97m.Downloader.GMA Deleted
  241. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(130).vir=>[Subject: Website Job Application][Date: Thu, 16 Nov 2017 08:39:57 +0100]=>Cynthia's Resume.doc W97m.Downloader.GMA Deleted
  242. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(138).vir=>[Subject: Emailed Invoice - 686900][Date: Fri, 08 Dec 2017 21:08:44 +0530]=>201712_686900.doc W97M.Downloader.GNO Deleted
  243. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(133).vir=>[Subject: Scanned image from MX-2600N][Date: Fri, 21 Apr 2017 19:59:22 +0530]=>noreply@[recipeint's email domain]_20170411_788440.pdf=>770714.docm=>word/vbaProject.bin W97m.Downloader.FRP Deleted
  244. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(129).vir X97M.Downloader.CE Deleted
  245. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(13).vir W97M.Downloader.GSJ Deleted
  246. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(109).vir Trojan.VBA.Downloader.EY Deleted
  247. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(12).vir VB:Trojan.VBA.Agent.LX Deleted
  248. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(119).vir=>word/vbaProject.bin W97M.Downloader.EAB Deleted
  249. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(116).vir=>[Subject: upcoming meeting][Date: Tue, 26 Jul 2016 23:53:10 +0300]=>6045dc0f4542.zip=>meeting -8E1-..wsf Generic.JS.DownloaderAN.50C9FC00 Deleted
  250. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(112).vir W97M.Downloader.GLU Deleted
  251. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(114).vir=>xl/vbaProject.bin X97M.Downloader.CL Deleted
  252. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(101).vir=>[Subject: uk_confirmation_ph004775285.pdf][Date: Thu, 30 Mar 2017 11:09:31 -0200]=>uk_confirmation_ph004775285.zip=>uk_confirmation_ph954869378.zip=>uk_confirmation_ph954869378.exe Trojan.GenericKD.4716377 Deleted
  253. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(105).vir=>[From: <operations@sullivanbuses.com>][Date: Wed, 18 Jan 2017 15:27:49 -0000]=>EMAIL_0217865_[recipient].zip=>6669_ZIP.zip=>6669.js Trojan.GenericKD.4412460 Deleted
  254. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(110).vir VB:Trojan.Agent.CZVU Deleted
  255. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(125).vir=>[Subject: We Have Received Your Payment - Thank You (#5E1B61F)][Date: Tue, 24 May 2016 19:13:15 +0530]=>security_081095.zip=>(dummy) JS.TeslaCrypt.1.Gen Deleted
  256. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(106).vir=>[Subject: Third Reminder - Outstanding Account][Date: Tue, 03 May 2016 07:06:53 -0500]=>Document_924.zip=>60565336_60565336 - copy (3).js=>(INFECTED_JS) JS:Trojan.JS.Downloader.IK Deleted
  257. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(105).vir=>[From: <operations@sullivanbuses.com>][Date: Wed, 18 Jan 2017 15:27:49 -0000]=>EMAIL_0217865_[recipient].zip=>6669_ZIP.zip=>(dummy) Trojan.Oroles.Gen.8 Deleted
  258. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(105).vir=>[From: <operations@sullivanbuses.com>][Date: Wed, 18 Jan 2017 15:27:49 -0000]=>EMAIL_0217865_[recipient].zip=>(dummy) Trojan.Oroles.Gen.2 Deleted
  259. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(106).vir=>[Subject: Third Reminder - Outstanding Account][Date: Tue, 03 May 2016 07:06:53 -0500]=>Document_924.zip=>60565336_60565336.js=>(INFECTED_JS) JS:Trojan.JS.Downloader.IK Deleted
  260. C:\Users\Administrator.SXCSXC-AJKJJUBR\Desktop\VirusSamples_51\Samp(122).vir=>[Subject: SAFARI LPO [MAL] 686236][Date: Tue, 24 May 2016 19:06:06 +0530]=>LPOMAL686236-43712-05226.zip=>XJGN-3701141.js
复制代码

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

www-tekeze
 楼主| 发表于 2018-8-22 20:43:14 | 显示全部楼层
WHALE-FALL 发表于 2018-8-22 20:41
我也不太相信,
所以等大神来看看。是不是我扫描方法有问题

应该不是,昨天是191196846测的。。 https://bbs.kafan.cn/thread-2130442-1-1.html
回复

举报

dreams521
发表于 2018-8-22 20:44:59 | 显示全部楼层
www-tekeze 发表于 2018-8-22 20:36
189/300,其中修复18X,不咋的,试试高启发呢。。

感谢您提交到 Kaspersky Lab。

文件、URL 或两者已在自动模式下扫描。

在防病毒数据库中未找到有关指定文件的信息:
Samp(1).vir
Samp(10).vir
Samp(102).vir
Samp(104).vir
Samp(111).vir
Samp(113).vir
Samp(117).vir
Samp(118).vir
Samp(123).vir
Samp(124).vir
Samp(136).vir
Samp(139).vir
Samp(140).vir
Samp(141).vir
Samp(143).vir
Samp(148).vir
Samp(149).vir
Samp(151).vir
Samp(152).vir
Samp(158).vir
Samp(161).vir
Samp(162).vir
Samp(163).vir
Samp(164).vir
Samp(167).vir
Samp(171).vir
Samp(179).vir
Samp(184).vir
Samp(193).vir
Samp(195).vir
Samp(198).vir
Samp(199).vir
Samp(20).vir
Samp(203).vir
Samp(208).vir
Samp(210).vir
Samp(211).vir
Samp(213).vir
Samp(214).vir
Samp(215).vir
Samp(22).vir
Samp(222).vir
Samp(230).vir
Samp(239).vir
Samp(24).vir
Samp(25).vir
Samp(260).vir
Samp(266).vir
Samp(27).vir
Samp(272).vir
Samp(278).vir
Samp(285).vir
Samp(295).vir
Samp(297).vir
Samp(298).vir
Samp(300).vir
Samp(32).vir
Samp(33).vir
Samp(35).vir
Samp(37).vir
Samp(40).vir
Samp(45).vir
Samp(46).vir
Samp(49).vir
Samp(53).vir
Samp(59).vir
Samp(72).vir
Samp(92).vir

在以下文件中检测到恶意代码:
Samp(11).vir - Trojan-Downloader.MSExcel.Agent.fx
Samp(127).vir - HEUR:Trojan-Dropper.Script.Generic
Samp(132).vir - HEUR:Trojan.Script.Agent.gen
Samp(133).vir - HEUR:Trojan-Dropper.Script.Generic
Samp(156).vir - Trojan.JS.Agent.dyf
Samp(176).vir - Trojan.JS.Agent.dyf
Samp(177).vir - Trojan-Downloader.JS.Cryptoload.azu
Samp(18).vir - Trojan-Downloader.JS.Cryptoload.azt
Samp(183).vir - HEUR:Trojan-Downloader.Script.Generic
Samp(187).vir - HEUR:Exploit.MSOffice.Generic
Samp(2).vir - Trojan-Downloader.VBS.Agent.cee
Samp(201).vir - HEUR:Trojan-Dropper.Script.Generic
Samp(207).vir - Trojan.Java.Adwind.q
Samp(219).vir - HEUR:Trojan.Script.Agent.gen
Samp(227).vir - HEUR:Trojan-Downloader.Script.Generic
Samp(229).vir - Trojan.Java.Adwind.s
Samp(23).vir - Trojan-Downloader.VBS.Agent.cee
Samp(231).vir - HEUR:Trojan-Downloader.Script.Generic
Samp(236).vir - Trojan-Downloader.VBS.Agent.maeo
Samp(240).vir - HEUR:Trojan-Dropper.Script.Generic
Samp(250).vir - HEUR:Trojan-Downloader.Script.Generic
Samp(26).vir - HEUR:Trojan.Script.Agent.gen
Samp(263).vir - Trojan-Downloader.VBS.Agent.cee
Samp(267).vir - HEUR:Trojan.Script.Agent.gen
Samp(283).vir - Exploit.MSWord.DDE.c
Samp(284).vir - HEUR:Trojan-Dropper.Script.Generic
Samp(3).vir - HEUR:Trojan.Script.Agent.gen
Samp(30).vir - Trojan-Downloader.VBS.Agent.maeo
Samp(34).vir - HEUR:Trojan.Script.Agent.gen
Samp(36).vir - Trojan.Win32.Agentb.bvgy
Samp(44).vir - Trojan-Downloader.JS.Cryptoload.azu
Samp(57).vir - HEUR:Trojan.Script.Agent.gen
Samp(78).vir - Trojan.JS.Agent.dyf
Samp(8).vir - Trojan-Downloader.VBS.Agent.maeo
Samp(84).vir - Trojan-Downloader.VBS.Agent.cee
Samp(87).vir - Trojan-Downloader.VBS.Agent.cee
Samp(9).vir - HEUR:Trojan.Script.Agent.gen
Samp(95).vir - HEUR:Trojan-Dropper.Script.Generic
Samp(98).vir - HEUR:Trojan-Dropper.Script.Generic

在以下文件中找到已被使用 KSN 技术的 Kaspersky Lab 产品检测到的恶意代码:
Samp(120).vir - UDS:DangerousObject.Multi.Generic
Samp(205).vir - UDS:DangerousObject.Multi.Generic
Samp(216).vir - UDS:DangerousObject.Multi.Generic

在文件中找到已被 Kaspersky Lab 产品(包含 Mail Anti-Virus 组件)检测到的恶意代码:
Samp(48).vir - HEUR:Trojan-Downloader.Win32.Furl.gen

评分

参与人数 1人气 +1 收起 理由
dongwenqi + 1 版区有你更精彩: )

查看全部评分

回复

举报

www-tekeze
 楼主| 发表于 2018-8-22 20:45:07 | 显示全部楼层
WHALE-FALL 发表于 2018-8-22 20:06
360一扫(不带红伞)miss 101 个   修复 90个 统计 199/300 66.33%


大数字修复能力不错。
回复

举报

温馨小屋
头像被屏蔽
发表于 2018-8-22 20:45:52 | 显示全部楼层
本帖最后由 温馨小屋 于 2018-8-22 20:55 编辑

NS

233/300    77.6%
修复99个

回复

举报

www-tekeze
 楼主| 发表于 2018-8-22 20:45:58 | 显示全部楼层
dreams521 发表于 2018-8-22 20:35
APC扫完了还剩这么些?

全都是非PE文件,APC没多少用。。
回复

举报

chenQK
发表于 2018-8-22 20:50:41 | 显示全部楼层
主动删除了9个 扫描删了22个 清除了1个31~32/300         10.33%
厉害了 进不了不少

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x

评分

参与人数 1人气 +1 收起 理由
www-tekeze + 1 感谢支持,欢迎常来: )

查看全部评分

回复

举报

cloud01
头像被屏蔽
发表于 2018-8-22 20:52:57 | 显示全部楼层
www-tekeze 发表于 2018-8-22 20:39
ESET昨天49/300,今天44/300,有点想不通,为何会这样?      @B100D1E55  @Karna

我用eset杀了74个,只有问官方了。
回复

举报

下一页 »
123456789下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-4-26 11:04 , Processed in 0.096208 second(s), 15 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表