收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 【开放测试】卡饭病毒样本包 第四期 20180914-17
1 ...234567891011下一页
返回列表 发新帖
楼主: Jerry.Lin
 收起左侧

[病毒样本] 【开放测试】卡饭病毒样本包 第四期 20180914-17

  [复制链接]
www-tekeze
发表于 2018-9-18 00:14:11 | 显示全部楼层
YU2711 发表于 2018-9-17 23:44
趋势报的双击:Kafan_Sample_4412850eee18a9ceda3769def307769afedde90b8d2a6dd9cc01afbb802e668c.exe报勒 ...

刚注意还有一个。。。但4412850eee.......这个运行出错。

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

Picca
发表于 2018-9-18 00:26:07 | 显示全部楼层
本帖最后由 Karna 于 2018-9-18 00:30 编辑
静影沉璧 发表于 2018-9-17 22:18
可能有人上报了样本,然后UDS拉黑?

卡巴只要你双击了可疑程序并开启了KSN,就会对该程序全程记录其执行信息上传至云端遥测,并快速拉黑(UDS报法)。卡巴将其称为Astraea技术,这是卡巴重要的检测手段之一,这也是我觉得修改md5测试对卡巴不够客观的一点。
回复

举报

小飞侠.net
发表于 2018-9-18 01:27:12 | 显示全部楼层

火绒安全---( Windows 7 Ultimate with SP1 简体中文旗舰版....):

病毒库:2018-09-17 16:14
开始时间:2018-09-18 01:23
总计用时:00:01:10
扫描对象:2526个
扫描文件:125个
发现风险:27个
已处理风险:0个
发现系统修复项:0个
处理系统修复项:0个

病毒详情

风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\175418360\145802370\479704092\AVTest100\卡饭病毒样本包 20180914-17\Kafan_Sample_0aa37176927beea7f6065b7aebc92e44f2039fa00b0297b2998217fea07c23be.exe, 病毒名:Trojan/Obfuscated.bg, 病毒ID:[68e6634437b823ef], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\175418360\145802370\479704092\AVTest100\卡饭病毒样本包 20180914-17\Kafan_Sample_060d37a4e48703f5d88b0e530856600639c44f5948eda074e183856a460b8f5c.exe, 病毒名:HEUR:VirTool/Obfuscator.gen!C, 病毒ID:[9f7c74f7afee22c], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\175418360\145802370\479704092\AVTest100\卡饭病毒样本包 20180914-17\Kafan_Sample_101f191cfff38c2daa47b65f651783c9c206f2493eaeecf187aacc4af767ecdd.exe, 病毒名:HEUR:VirTool/VB.Obfuscator.gen!A, 病毒ID:[636e99dfed83873b], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\175418360\145802370\479704092\AVTest100\卡饭病毒样本包 20180914-17\Kafan_Sample_0aaacae7ea064efd5964ac7833ebffa6d024f47b2c6ea98ea35a1cf91c8e6ebc.exe, 病毒名:HVM:Trojan/Injector.gen!A, 病毒ID:[cc4a875f53a5d678], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\175418360\145802370\479704092\AVTest100\卡饭病毒样本包 20180914-17\Kafan_Sample_1bb7b6944e631e16253a5e0521463967d0ad5a5f2c6cf63bb75ce04f66b26f3b.exe, 病毒名:Trojan/VBInject.b, 病毒ID:[e4beee39ea2e9885], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\175418360\145802370\479704092\AVTest100\卡饭病毒样本包 20180914-17\Kafan_Sample_28d0b7a1ca09f7b154f38190f0ef13b72f10e4b69a0b344775b1f3e99580caa2.exe, 病毒名:HVM:VirTool/Obfuscator.gen!A, 病毒ID:[b27d4294cde6a1ec], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\175418360\145802370\479704092\AVTest100\卡饭病毒样本包 20180914-17\Kafan_Sample_32d5bc735bc611e114f866cea5d330741823858c649fb9affa801d66a32b8ed9.exe, 病毒名:HEUR:Trojan/MSIL.Injector.c, 病毒ID:[84623aa13f22497], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\175418360\145802370\479704092\AVTest100\卡饭病毒样本包 20180914-17\Kafan_Sample_3d7a1e3150941381653f0c44d3d660e85019c00afc18a6622bea5aeb84a2b1ca.exe, 病毒名:Trojan/Agent.ar, 病毒ID:[aff0395094a7b67], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\175418360\145802370\479704092\AVTest100\卡饭病毒样本包 20180914-17\Kafan_Sample_42b4b060a0631c8176c536418d0c15bc0f680ce0f44a4ad07ef52ceac0928587.exe, 病毒名:HEUR:Trojan/Distool.a, 病毒ID:[ce6b3c61e2c3b07c], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\175418360\145802370\479704092\AVTest100\卡饭病毒样本包 20180914-17\Kafan_Sample_49954179a28b28c7da92b24d9dd2574a0cedee817fa0d5e62c12a9a6630cc442.exe, 病毒名:Trojan/VBInject.b, 病毒ID:[e4beee39ea2e9885], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\175418360\145802370\479704092\AVTest100\卡饭病毒样本包 20180914-17\Kafan_Sample_35315693b5ee826e6c6478435f537d98feb02d41f63e73af31d8f2a3b1e6419d.exe, 病毒名:HVM:VirTool/Obfuscator.gen!A, 病毒ID:[b27d4294cde6a1ec], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\175418360\145802370\479704092\AVTest100\卡饭病毒样本包 20180914-17\Kafan_Sample_53a243092da3c1be52d918020ecfe96d4d2f6c46a78228b633c06704e2f9cc28.exe, 病毒名:Trojan/VBInject.b, 病毒ID:[e4beee39ea2e9885], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\175418360\145802370\479704092\AVTest100\卡饭病毒样本包 20180914-17\Kafan_Sample_5970ac031e067f683e93efc1a99e578adc2da85fd822b4b4f31f390f9c31d2bc.exe, 病毒名:Virus/Neshta.c, 病毒ID:[daf899df4da4a800], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\175418360\145802370\479704092\AVTest100\卡饭病毒样本包 20180914-17\Kafan_Sample_68406017b7d7c9caec15b61338e63572e36ec60159cc5b33da77a0776350bd12.exe, 病毒名:HEUR:Trojan/MSIL.Injector.a, 病毒ID:[b8e5a5ec3767301b], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\175418360\145802370\479704092\AVTest100\卡饭病毒样本包 20180914-17\Kafan_Sample_6788c4a2c0bc6d5f80dc8b5ecb7b37100f6c37d231a389ec906aae784cff529e.exe, 病毒名:TrojanDropper/Evotob.a, 病毒ID:[3eb5c55767ec09ca], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\175418360\145802370\479704092\AVTest100\卡饭病毒样本包 20180914-17\Kafan_Sample_7f92318e193909c503148aca8011174b2c1d1c9aa948ae197c550e39bf343af6.exe, 病毒名:HVM:VirTool/Obfuscator.gen!A, 病毒ID:[b27d4294cde6a1ec], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\175418360\145802370\479704092\AVTest100\卡饭病毒样本包 20180914-17\Kafan_Sample_a073ad4db07f2a711bf4e697e60a49c6f442a3a0d2de674421da9734b5e31f1f.exe, 病毒名:Trojan/VBInject.b, 病毒ID:[e4beee39ea2e9885], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\175418360\145802370\479704092\AVTest100\卡饭病毒样本包 20180914-17\Kafan_Sample_a08675306b1d26aa2e7f9bc246f4e5a400a6fe5166066803d113f62f026b35eb.dll, 病毒名:Rootkit/Hdfw, 病毒ID:[2b1c26e9e6fce3e], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\175418360\145802370\479704092\AVTest100\卡饭病毒样本包 20180914-17\Kafan_Sample_b635b825c59ef2604faef4ff8d6f1b97ed7af8af134a5aa7eb518210ffbcd2f3.exe, 病毒名:HEUR:VirTool/VB.Obfuscator.gen!A, 病毒ID:[636e99dfed83873b], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\175418360\145802370\479704092\AVTest100\卡饭病毒样本包 20180914-17\Kafan_Sample_bc453c85ef3aa196b8590ac732da12df9f7eae08efaa705bc63a28b391e88dc4.exe, 病毒名:Trojan/VBInject.b, 病毒ID:[e4beee39ea2e9885], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\175418360\145802370\479704092\AVTest100\卡饭病毒样本包 20180914-17\Kafan_Sample_bfe5db31981d26ba0ccf2af57e9dbaa2f6ac1d0ae250d119738a575bfbd45940.exe, 病毒名:Trojan/VBInject.b, 病毒ID:[e4beee39ea2e9885], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\175418360\145802370\479704092\AVTest100\卡饭病毒样本包 20180914-17\Kafan_Sample_c765cec38c79b052050a79ae59b19196d3a5b3fa09466c3361ddaca6b889ffcf.exe, 病毒名:Trojan/VBInject.b, 病毒ID:[e4beee39ea2e9885], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\175418360\145802370\479704092\AVTest100\卡饭病毒样本包 20180914-17\Kafan_Sample_bffc868a3db890f5fc46deac98a12a1f45f7191ea240b42348fc0c7af448f17f.exe, 病毒名:HEUR:VirTool/Obfuscator.gen!C, 病毒ID:[9f7c74f7afee22c], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\175418360\145802370\479704092\AVTest100\卡饭病毒样本包 20180914-17\Kafan_Sample_d9c294c9229c4223f85b8ded7e2c5f10f97b1615ef2a0f4442a03864ff831b36.exe, 病毒名:HEUR:VirTool/Obfuscator.gen!C, 病毒ID:[9f7c74f7afee22c], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\175418360\145802370\479704092\AVTest100\卡饭病毒样本包 20180914-17\Kafan_Sample_b62de25f758b7dec33134cae309fe422058dcbad8e468a50bba66f2724a0bd80.exe, 病毒名:Backdoor/Bladabindi.l, 病毒ID:[7debbd141a975060], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\175418360\145802370\479704092\AVTest100\卡饭病毒样本包 20180914-17\Kafan_Sample_e17dba77ac5af5b171f1e4e7bc4b06d2b3480f4ddce05c37fb63c996eb688ed4.exe, 病毒名:Trojan/VBInject.b, 病毒ID:[e4beee39ea2e9885], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\175418360\145802370\479704092\AVTest100\卡饭病毒样本包 20180914-17\Kafan_Sample_e3789fe380f37f8bc547621a06c9f1e797cdddb69d4be65128aad34d096f7961.exe, 病毒名:Trojan/VBInject.b, 病毒ID:[e4beee39ea2e9885], 处理结果:已忽略

文件名称: C:\Users\xfxnet2000\Desktop\MX Player Pro\175418360\145802370\479704092\AVTest100\卡饭病毒样本包 20180914-17.rar
文件大小: 105 MB (110,757,149 字节)
修改时间: 2018年09月18日,01:14:45
MD5: FE733A314D68379055D6943955E461DA
SHA1: 2042963F2D2142DF4A617C50E81967AC4D8CDD59
SHA256: 832F57C3F11D98215D4FEED5343781058FA2646D67CE45C7FF157F2FC7CBC925
SHA512: 9019934F389062155760681E904D1DDA54E4954664412E997C0F3DB0353F008649C7D35818D128B011A50CB28DDB5CEA82473EC8D5DAD30056CBD3B1B1CCC24D
CRC32: B1AD97C1
计算时间: 11.58s (9.57 MB/s)

回复

举报

761773275
发表于 2018-9-18 05:02:20 | 显示全部楼层
测试环境:Windows10 1803
测试产品:  Tencet PC Manager
病毒库版本:20180917
测试项目:扫描
测试配置:标准


结果:扫描(107/125)


日志

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

Miostartos
发表于 2018-9-18 09:10:34 | 显示全部楼层
www-tekeze 发表于 2018-9-17 23:40
老铁,我没看错吧,8000多积分哈,比SD还简单的软件可能找不到了。。

回家太晚,基本上play game去了。
扫描都是顺手做。前台还在玩游戏呢
回复

举报

Miostartos
发表于 2018-9-18 09:23:58 | 显示全部楼层
本帖最后由 STCn1000 于 2018-9-18 09:31 编辑

@191196846 昨天剩下的5个样本上报给Symantec全部判黑入库
自动反馈的分析报告
  1. Kafan_Sample_5561479192b73919880359d44b5488554dd6703d77d9bc11a7d6feb5f10c0e3d.exe        90a7a3ad9fc1bcefcf72fd5fe89ea47b        Trojan Horse
  2. Kafan_Sample_5970ac031e067f683e93efc1a99e578adc2da85fd822b4b4f31f390f9c31d2bc.exe        7cd417972986c07f5a78001668388fcc        W32.Neshuta
  3. Kafan_Sample_b635b825c59ef2604faef4ff8d6f1b97ed7af8af134a5aa7eb518210ffbcd2f3.exe        2512400a57cc5bcea15c91e25815ab7a        Trojan Horse
  4. Kafan_Sample_c27de8b0a556ed5395b04f086d642014e6ce8d1858a0e21cd033af3eb4d696b9.exe        0efe4d080610fc0d42e99bcc0de53bc8        Trojan Horse
  5. Kafan_Sample_f4a85094f5a5492a9b5b6926891aaea37cf9d5080c55113b2702138ffe6d8ec6.exe        fd016dacaeb2a336b57b8aea80dc2590        Trojan Horse
复制代码


本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

dongwenqi
发表于 2018-9-18 10:49:18 | 显示全部楼层
dreams521 发表于 2018-9-17 20:23
测试环境:WIN7 SP1  64X +影子8.5.5
测试产品:卡巴斯基 Kaspersky 2019
病毒库版本:20180917

尊敬的用户您好!

New malicious software was found in the attached files. Its detection will be included in the next update.
Kafan_Sample_165440588a47bafb29a79c2f7b771599b9f7c74246d861e1b9e7ebcdaed1073f.exe - Backdoor.Win32.Agent.mytigh
Kafan_Sample_5970ac031e067f683e93efc1a99e578adc2da85fd822b4b4f31f390f9c31d2bc.exe - Trojan.Win64.Agent.lgd
Kafan_Sample_90551a2aa2dcf4f1b38183850209ac06375f527339fb915d63efce4d31c1da7a.exe - Trojan.Win32.Agentb.jesa
Kafan_Sample_a08675306b1d26aa2e7f9bc246f4e5a400a6fe5166066803d113f62f026b35eb.dll - Backdoor.Win32.Agent.mytigj
Kafan_Sample_a636b168b1c8c083682c3dcb5e88a9863a91bfbd257bd540dc6295a5631bee32.dll - Trojan-Spy.Win32.Agent.jqvz

These files are already detected. Please update your bases.
Kafan_Sample_130f8c07b19c20327b4fde05047697e36ccaf3525ac39ead60f826d0b03ae9ab.exe - Trojan-PSW.Win32.Coins.kwb
Kafan_Sample_53a243092da3c1be52d918020ecfe96d4d2f6c46a78228b633c06704e2f9cc28.exe - Trojan.Win32.VBKryjetor.aysn

Object's detection will be included in the next update:
Kafan_Sample_daa460af18ef433bcdb7b4f619e6da0f94b92e804400ec5542808可能是电话号码,是否拨号?e2bd5693535.exe - not-a-virus:NetTool.Win32.Scan.qg
Kaspersky Lab applications classify the specified object as legitimate software and do not identify them as malicious. The notifications displayed to the user are informative and correct.
You can learn more about enabling / disabling display of notifications by clicking the following link:
https://support.kaspersky.com/viruses/general_articles/664#block3

No malicious software was found in the other files.
回复

举报

hez2010
发表于 2018-9-18 11:46:09 | 显示全部楼层
本帖最后由 hez2010 于 2018-9-18 11:52 编辑

Windows 10 1803 Windows Defender:
关闭监控时扫描:102/125 = 81.6%
开启监控时扫描:117/125 = 93.6%

查杀率居然和扫描的时候开不开监控有这么大的关系?????
回复

举报

驭龙
发表于 2018-9-18 12:19:11 | 显示全部楼层
本帖最后由 驭龙 于 2018-9-18 12:37 编辑

测试环境:WIN 10 17134.285
测试产品:ESET 12.0.14
病毒库版本:20180917
测试项目:扫描
测试配置:标准
结果:扫描118/125=94.40%(ESET显示119清除,可剩余样本7个,剩余样本名没有在列表出现,所以算118查杀)

  1. Scan Log
  2. Version of detection engine: 18068P (20180917)
  3. Date: 2018.9.18  Time: 12:04:35
  4. Scanned disks, folders and files: D:\12345\卡饭病毒样本包 20180914-17
  5. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_038d106bbd015c63d37735798aa49365d4aadfb7067b3a48b9064bd864fd4bf7.exe - a variant of Win32/Injector.EAKQ trojan - cleaned by deleting [1]
  6. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_0423ca90eeae83b27c3b5ca0500d1b68d825b234d957a0de824c6ceb18dfb2fe.exe - a variant of Win32/Injector.EALA trojan - cleaned by deleting [1]
  7. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_060d37a4e48703f5d88b0e530856600639c44f5948eda074e183856a460b8f5c.exe - Win32/Filecoder.GandCrab.D trojan - cleaned by deleting [1]
  8. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_0aa37176927beea7f6065b7aebc92e44f2039fa00b0297b2998217fea07c23be.exe - a variant of Win32/Farfli.CML trojan - cleaned by deleting [1]
  9. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_0aaacae7ea064efd5964ac7833ebffa6d024f47b2c6ea98ea35a1cf91c8e6ebc.exe - Win32/Filecoder.ED trojan - cleaned by deleting [1]
  10. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_0ba9ea5f14ba0137f54ae3db3cf430e4a3feabefa23a094c36532365484ebbda.exe » WINRARSFX » CMT - RAR/Agent.CQ trojan - cleaned by deleting [1]
  11. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_0ba9ea5f14ba0137f54ae3db3cf430e4a3feabefa23a094c36532365484ebbda.exe » WINRARSFX » kfg.exe » AUTOIT - archive damaged
  12. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_0c69bf5e3b9b030a5484458dfd843c7f45d3ffa15a1080fe3cee0e4110525fa9.exe - Win32/Emotet.BR trojan - cleaned by deleting [1]
  13. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_101f191cfff38c2daa47b65f651783c9c206f2493eaeecf187aacc4af767ecdd.exe - a variant of Win32/Injector.EAJR trojan - cleaned by deleting [1]
  14. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_10da46f073467c0effb523781421768e0970a78d6bfc72e8a818208dc278c7eb.exe - a variant of Win32/GenKryptik.CLIS trojan - cleaned by deleting [1]
  15. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_123534560a7d792ee8670929fd023f165c3acef0319fde67c513ab403b7c2622.exe - a variant of Win32/Injector.EAKZ trojan - cleaned by deleting [1]
  16. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_12a8b87dbf5a5962859c50539aa1552d3059a1627621a8ce3b6b78593ba1908f.exe » NSIS » bucklers.dll - a variant of Win32/Injector.EAKH trojan - cleaned by deleting [1]
  17. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_130f8c07b19c20327b4fde05047697e36ccaf3525ac39ead60f826d0b03ae9ab.exe - a variant of Win32/Injector.EALV trojan - cleaned by deleting [1]
  18. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_134e71b5450138180c1b36bfa3e78f2b1e483372a474beff325ff9eaff8c32e5.exe - a variant of Win32/Kryptik.GKUW trojan - cleaned by deleting [1]
  19. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_1580378b11a759eacd96a89fae58b3332991e84223a465f21f3c8f04ef371d9a.exe - a variant of Win32/Injector.EAKZ trojan - cleaned by deleting [1]
  20. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_1602a02abb7cd281af42e765e0c53ccfeb28a3c6cc7d467401118416c51e9bc5.exe - a variant of Win32/Injector.EALY trojan - cleaned by deleting [1]
  21. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_16adf37262f86f735d64736a65a5fc3d4d6bc8b59761308d9d7d158e31142d23.exe - a variant of MSIL/Kryptik.ODA trojan - cleaned by deleting [1]
  22. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_17d457d5249fa2c4edf2090e0e5d3ebc84c925f9beba1a1c08ba7023c41afd2c.exe - a variant of Win32/Injector.EAKJ trojan - cleaned by deleting [1]
  23. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_17e1b40ce04ae4f1df200fbae947df6c33fa60bebb757a336b8826c4c62f5151.exe - a variant of Win32/Kryptik.GHMG trojan - cleaned by deleting [1]
  24. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_191f9774a0f4bcd0f6880b7855e7f30d48eb1518f409995fe4e9b8612b7fba81.exe - Win32/Agent.XRR trojan - cleaned by deleting [1]
  25. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_19ac635a18d367940015d777433293f3eee9c80ab9b184f4cdc377c0b01053f4.exe - a variant of Win32/Injector.EALL trojan - cleaned by deleting [1]
  26. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_1bb7b6944e631e16253a5e0521463967d0ad5a5f2c6cf63bb75ce04f66b26f3b.exe - a variant of Win32/Injector.EAKK trojan - cleaned by deleting [1]
  27. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_208fb08cec0a622418edb80daae367b8bd4c15ccc4dff0555924b6e3260355c4.exe » WINRARSFX » CMT - RAR/Agent.CQ trojan - cleaned by deleting [1]
  28. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_20b0156178ce69ec71e8d17c370ec0b759c66e7a03af404bd69fde71f4ff3353.exe » EZIRIZ » protected.exe - a variant of MSIL/Kryptik.LEG trojan - cleaned by deleting [1]
  29. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_28d0b7a1ca09f7b154f38190f0ef13b72f10e4b69a0b344775b1f3e99580caa2.exe - a variant of Win32/Kryptik.GKQR trojan - cleaned by deleting [1]
  30. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_29244c511eab5b1d97c1e910232b2c03a3fd488fa58b350d818103301788f39e.exe - a variant of MSIL/Kryptik.CXU trojan - cleaned by deleting [1]
  31. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_2d325563fc2ba18c9d4f30b5620c39f896895618fca7565aec90cf1d6994eb96.exe - a variant of Win32/GenKryptik.CLEC trojan - cleaned by deleting [1]
  32. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_2e4e7b142fc68ea7ae8291a8c8ebe86bf3411b7be0c999aebd93dcac3b47f4f9.exe - a variant of Win32/Kryptik.GKUF trojan - cleaned by deleting [1]
  33. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_32a84c3bf14c42a5ef166d1c7663abe01cd349eb12174ba420f2349a0c83eacc.exe - MSIL/Spy.Agent.AES trojan - cleaned by deleting [1]
  34. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_32d5bc735bc611e114f866cea5d330741823858c649fb9affa801d66a32b8ed9.exe - a variant of MSIL/Autorun.Spy.Agent.BT worm - cleaned by deleting [1]
  35. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_34b0c76c7544ea86fef8618e78aadd2b576f24c5ffaa90d3d89db2ca0e5a1a5a.exe - a variant of Win32/Injector.EAKZ trojan - cleaned by deleting [1]
  36. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_35315693b5ee826e6c6478435f537d98feb02d41f63e73af31d8f2a3b1e6419d.exe - a variant of Win32/GenKryptik.CLCR trojan - cleaned by deleting [1]
  37. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_37f6ccf41a6f66008651c0d272090da64b3b28f6970a9404cb5ecf886ea776b1.exe - Win32/Filecoder.EQ trojan - cleaned by deleting [1]
  38. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_3908bfd056ef656e963f85ae88687456614af5df3174785fc12864ed0bd5b5fe.exe - a variant of MSIL/Kryptik.PLT trojan - cleaned by deleting [1]
  39. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_3d7a1e3150941381653f0c44d3d660e85019c00afc18a6622bea5aeb84a2b1ca.exe - a variant of Win32/PSW.Delf.OSF trojan - cleaned by deleting [1]
  40. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_42b4b060a0631c8176c536418d0c15bc0f680ce0f44a4ad07ef52ceac0928587.exe - a variant of Generik.LDVJTCB trojan - cleaned by deleting [1]
  41. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_43b4149df0fbd5eaada7e22dbb2cc46c9bbd36c50cb51172cbfb223e28fdf32b.exe - a variant of Win32/Injector.EALA trojan - cleaned by deleting [1]
  42. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_4412850eee18a9ceda3769def307769afedde90b8d2a6dd9cc01afbb802e668c.exe » AUTOIT » script.au3 - Win32/Filecoder.Autoit.N trojan - cleaned by deleting [1]
  43. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_4412850eee18a9ceda3769def307769afedde90b8d2a6dd9cc01afbb802e668c.exe » AUTOIT » script.bin - a variant of Win32/Filecoder.Autoit.O trojan - cleaned by deleting [1]
  44. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_46bfc55b16509a3355384f560e04174a7d25ef9a7c210c1f3ccfe7686765e920.exe - a variant of MSIL/Packed.SmartAssembly.AA trojan - cleaned by deleting [1]
  45. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_475ced6f86299bb8b14445fe2ccb414afe209ebfe98e9303d010db4709f8f310.exe » WINRARSFX » Isass.exe - a variant of Win32/GenKryptik.CGES trojan - cleaned by deleting [1]
  46. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_49954179a28b28c7da92b24d9dd2574a0cedee817fa0d5e62c12a9a6630cc442.exe - a variant of Win32/Injector.EALB trojan - cleaned by deleting [1]
  47. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_49a4853c16cd4fa3080d03c996ad94ffd6f1d8962a67d7869977b962e3322c79.exe - a variant of Win32/Injector.EAMA trojan - cleaned by deleting [1]
  48. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_4ad06313825236679f73c011e20251508ee00ed12726b481bbcf56b31b5772e5.exe » WINRARSFX » clean.exe - a variant of MSIL/Kryptik.AMJ trojan - cleaned by deleting [1]
  49. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_4b11a8b1bc04f430aa97888b2ba4ea253b89c121188e394231551e2c10532ae0.exe - a variant of Win32/Injector.EALY trojan - cleaned by deleting [1]
  50. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_4eadf3b0be9f8f147c76d83968cbda8f670037a8b965696d21adff2206c0b96e.exe - a variant of Win32/PSW.Fareit.E trojan - cleaned by deleting [1]
  51. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_522048f8db710b3304eb3e33b53be313034148437f2d12d6791373288543bf59.exe - a variant of Win32/Injector.EAMG trojan - cleaned by deleting [1]
  52. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_53a243092da3c1be52d918020ecfe96d4d2f6c46a78228b633c06704e2f9cc28.exe - a variant of Win32/Injector.EAMB trojan - cleaned by deleting [1]
  53. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_5561479192b73919880359d44b5488554dd6703d77d9bc11a7d6feb5f10c0e3d.exe - a variant of MSIL/Kryptik.PMV trojan - cleaned by deleting [1]
  54. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_5733963a553bc4d0afd490d5299a517b041d7b96e4796ab301abcd3f6c33f08f.exe - a variant of MSIL/Kryptik.PNH trojan - cleaned by deleting [1]
  55. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_58ad6831fe6bff7013a26c56312cbbf57ec14fe65dc73644c40b26b2f1a437b1.exe - a variant of Win32/Injector.EALA trojan - cleaned by deleting [1]
  56. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_5c6e53ba9334ad63812f56600dc3059bcc3f5a5a4abf6e3a65a3505096119686.exe » EZIRIZ » protected.exe - a variant of MSIL/CoinMiner.ATA trojan - cleaned by deleting [1]
  57. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_5f183c27fca5c9ddcc4fcfb6ddce64d1a6b20e1c0374b71e13d3e7aad9aaa9a6.exe - a variant of Win32/Kryptik.FKDY trojan - cleaned by deleting [1]
  58. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_6767b6974e104025cac4ace55ca70580b8d838415900be85b6c193efc79921a4.exe - a variant of MSIL/Kryptik.PMX trojan - cleaned by deleting [1]
  59. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_6788c4a2c0bc6d5f80dc8b5ecb7b37100f6c37d231a389ec906aae784cff529e.exe - a variant of Win32/GenKryptik.CLEZ trojan - cleaned by deleting [1]
  60. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_68406017b7d7c9caec15b61338e63572e36ec60159cc5b33da77a0776350bd12.exe - a variant of MSIL/Autorun.Spy.Agent.AU worm - cleaned by deleting [1]
  61. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_6ba4eddafee76932590a6f5f3eb2187260f7da820fe2325fe7c7adb0013fe9e3.exe - a variant of MSIL/Kryptik.PLT trojan - cleaned by deleting [1]
  62. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_6eac5fb40c7602ab2d601a8abd5f729d5fdc65b6025c29ecba6a88f25a2c42b9.exe - a variant of MSIL/Kryptik.CAN trojan - cleaned by deleting [1]
  63. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_7073292a241134fa9a4e7edee05a45cb4eedb16e0f242c04fddb94f08e22e85b.exe - a variant of Win32/Injector.EAKQ trojan - cleaned by deleting [1]
  64. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_73efcee3a031623a81ecf958bc7c84e4974bbda928dcea08e2dbdcafe1e2aa2e.exe - a variant of Win32/Injector.EAKP trojan - cleaned by deleting [1]
  65. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_788d0c9215895ce50a9e9e29adb666893e1fee2630695186d6b727d8325024fd.exe - a variant of Win32/Kryptik.GKVP trojan - cleaned by deleting [1]
  66. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_7a032f5e92bd2be8d04700e32346a63da47dcb10a1dc4abbb8f184db046303da.exe - a variant of MSIL/Kryptik.PMV trojan - cleaned by deleting [1]
  67. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_7b9ba3e3abf845a67ab2ba138e96da47db1d875253bce8a1de84e5fe081fddf3.exe - a variant of MSIL/Kryptik.PMV trojan - cleaned by deleting [1]
  68. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_7f08198946f1ef98d226f46538978aed56079f80adb059689ea194dd911f09f9.msi » MSI » Binary._D7D112F049BA1A655B5D9A1D0702DEE5 - a variant of Win32/Injector.EALR trojan - action selection postponed until scan completion
  69. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_7f89729bc88d41b594711e3b347e08121f5a964b165460e5d504ab63b8898b3c.exe - a variant of Win32/Injector.EALA trojan - cleaned by deleting [1]
  70. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_7f92318e193909c503148aca8011174b2c1d1c9aa948ae197c550e39bf343af6.exe - a variant of Win32/Kryptik.GKVE trojan - cleaned by deleting [1]
  71. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_855267f35ece86a187e98e19cd2ad2f3ebffba6d3b2e0e7d2a230154e4480765.exe - a variant of MSIL/Kryptik.PMX trojan - cleaned by deleting [1]
  72. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_88c20a89425761fdef8d5fea232dbe7f601cedc102f1b8d029f702e9ce8e6d8f.exe - a variant of MSIL/GenKryptik.CLHY trojan - cleaned by deleting [1]
  73. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_899f4a1ab2a6f532d91c04eac44811e3b8fcd56891157ea18544a9cc978b417a.exe - a variant of MSIL/Kryptik.PLT trojan - cleaned by deleting [1]
  74. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_8b1142f3fa4569fed203b9e46a49e59f89ddbb638fb9bc8453776701fd66eef2.exe - a variant of Win32/Injector.EAMI trojan - cleaned by deleting [1]
  75. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_91036fd4dfdfb12cf0d1454d3290532f925a60853253691e0e2c734a9b31ced9.exe - a variant of Win32/Kryptik.GKTJ trojan - cleaned by deleting [1]
  76. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_91a19793c485862aa320fa03b3afb3ce4d206bdf4f91144d9c0620fc0da6b34d.exe » XENOCODE » @DESKTOP@\2222.exe - a variant of Win32/Kryptik.GKRK trojan - cleaned by deleting [1]
  77. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_98fc9fb71c1b9f705123aa35ba55ddf9f7d761d057f07e3c37cd203f02c150f4.exe - Win32/Agent.SYM trojan - cleaned by deleting [1]
  78. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_998f3da8fabc3aa88811725ba048dd19f7a96900d14a7191b8e9a093f9a9f235.exe - a variant of MSIL/Kryptik.PLT trojan - cleaned by deleting [1]
  79. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_9b0fec9181c05f901f66d6af3da981f545dde43c3412847c5ebf4539c2fe66d6.exe » WINRARSFX » CMT - RAR/Agent.CQ trojan - cleaned by deleting [1]
  80. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_9e19ada6f0d7ef8591582a555f35785ab9d8e38855d39ac854dc45e53503f033.exe - a variant of Win32/Injector.EALY trojan - cleaned by deleting [1]
  81. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_a028d83e58b4956041bd630a7aaeb052b311a67519df99d6a5c7d696135764ab.exe - a variant of MSIL/Kryptik.MRD trojan - cleaned by deleting [1]
  82. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_a073ad4db07f2a711bf4e697e60a49c6f442a3a0d2de674421da9734b5e31f1f.exe - a variant of Win32/Injector.EAMB trojan - cleaned by deleting [1]
  83. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_a08675306b1d26aa2e7f9bc246f4e5a400a6fe5166066803d113f62f026b35eb.dll - a variant of Win32/Agent.QNS trojan - cleaned by deleting [1]
  84. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_a5dc9b6f6c373286373abc1d9ebb23e6c89d9681a5813b5eadcdd2abf431ad63.exe » NSIS » haematoceles.dll - a variant of Win32/Injector.EAKW trojan - cleaned by deleting [1]
  85. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_a636b168b1c8c083682c3dcb5e88a9863a91bfbd257bd540dc6295a5631bee32.dll - a variant of Win32/Packed.FlyStudio.AA potentially unwanted application - action selection postponed until scan completion
  86. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_a6bb78f2f48c964902b134ff247233e9f47574275092be1ccbbea7be4bbfdf84.exe - a variant of MSIL/Kryptik.PNH trojan - cleaned by deleting [1]
  87. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_a720b970dff9cc977613af5c3c6311e6cad60d1e6352834a90659911fcc9fa6c.exe - a variant of MSIL/TrojanDropper.Agent.DXF trojan - cleaned by deleting [1]
  88. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_a7df78e98ae90ce6c0832874c30cd061a0cdb962787f6c930199da80fed1946d.exe - a variant of MSIL/Kryptik.PMX trojan - cleaned by deleting [1]
  89. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_a97706456b13c42f2a248a94588f297d0e27f74ba586049ecc5c956f66b5854e.exe - a variant of Win32/GenKryptik.CLEU trojan - cleaned by deleting [1]
  90. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_ac2453faea61d9ddf20dab04a54e3d8373271e9fca314bb190e896a5726dc620.exe - a variant of MSIL/Kryptik.PNJ trojan - cleaned by deleting [1]
  91. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_adfd19b7c329b64ee08f9a7db49088a6680e835bdbfdbcc51f6de2c0abd59b1f.exe - a variant of Win32/Injector.EALA trojan - cleaned by deleting [1]
  92. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_ae18d8d704b3f02c0c9b0bf8934a554ca845633a4856746f88e6b5f868306f7b.exe - a variant of Win32/Kryptik.GKUW trojan - cleaned by deleting [1]
  93. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_aff8ba7d7e206a5b87e1699dd6d5f8d9dd219e45493a6d6cba3320c3809ec301.exe - Win32/TrojanDownloader.Delf.CMY trojan - cleaned by deleting [1]
  94. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_b452a0b49cbfc73ce99ae7e7ad086420bf8c7899837858329ca1a49d011465db.exe - a variant of MSIL/Spy.Agent.AES trojan - cleaned by deleting [1]
  95. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_b62de25f758b7dec33134cae309fe422058dcbad8e468a50bba66f2724a0bd80.exe » AUTOIT » script.bin - a variant of Win32/Injector.Autoit.DKC trojan - cleaned by deleting [1]
  96. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_b635b825c59ef2604faef4ff8d6f1b97ed7af8af134a5aa7eb518210ffbcd2f3.exe - a variant of Win32/Injector.EAMF trojan - cleaned by deleting [1]
  97. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_b7a2018bc81f3d6a9c8aa97748642b8bc827e6b3ea43d7aabb818a57b77b001a.exe - a variant of Win32/Injector.EAKZ trojan - cleaned by deleting [1]
  98. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_bc453c85ef3aa196b8590ac732da12df9f7eae08efaa705bc63a28b391e88dc4.exe - a variant of Win32/Injector.EAKK trojan - cleaned by deleting [1]
  99. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_bddbd9d2f50f767309a3e0c1032f58c47e28015dbd6f6c66ffa6c5ed68f3b66e.exe - a variant of MSIL/Kryptik.PMX trojan - cleaned by deleting [1]
  100. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_bfe5db31981d26ba0ccf2af57e9dbaa2f6ac1d0ae250d119738a575bfbd45940.exe - a variant of Win32/Injector.EALB trojan - cleaned by deleting [1]
  101. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_bffc868a3db890f5fc46deac98a12a1f45f7191ea240b42348fc0c7af448f17f.exe - a variant of Win32/Kryptik.GKUN trojan - cleaned by deleting [1]
  102. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_c27de8b0a556ed5395b04f086d642014e6ce8d1858a0e21cd033af3eb4d696b9.exe - a variant of MSIL/Kryptik.PMV trojan - cleaned by deleting [1]
  103. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_c5cb005790517e9000fd9b72194fa91891a3356da530c17600d4361ccf9cd7a2.exe - a variant of MSIL/Kryptik.PMV trojan - cleaned by deleting [1]
  104. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_c765cec38c79b052050a79ae59b19196d3a5b3fa09466c3361ddaca6b889ffcf.exe - a variant of Win32/Injector.EALB trojan - cleaned by deleting [1]
  105. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_c9182f9b652aab165d1ffb46c24813db73760645093073698c0887d09b2b219d.exe - a variant of MSIL/Kryptik.PMX trojan - cleaned by deleting [1]
  106. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_d18b89c63037ccdc050379e4512834b5dfe7c4eb5f77c58eae013fa081edaf53.exe » NSIS » estoppel.dll - a variant of Win32/Injector.EAKW trojan - cleaned by deleting [1]
  107. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_d1ea0b5a174ddfee757cf37a4414e38fd5a01719b77d1fc853ad330ef0717ed5.exe - a variant of Win32/Injector.EAKQ trojan - cleaned by deleting [1]
  108. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_d24b3888c7ede612266d66eded3e796590430c6828eedcb8da2ede5e66e365eb.exe - a variant of Win32/Injector.EAKZ trojan - cleaned by deleting [1]
  109. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_d68a541797b099d8e53501e0dfc7307887d03f9654c02658e8a3b6c5b896ba8d.exe » AUTOIT » script.bin - a variant of Win32/Injector.Autoit.DKT trojan - cleaned by deleting [1]
  110. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_d9c294c9229c4223f85b8ded7e2c5f10f97b1615ef2a0f4442a03864ff831b36.exe - a variant of Win32/Kryptik.GKOI trojan - cleaned by deleting [1]
  111. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_da8eeb2df6857ac505b4657163101eac08a3aebbc06d5345df874c635b223dfe.exe - a variant of Win32/GenKryptik.CLEC trojan - cleaned by deleting [1]
  112. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_dc8885ba09236284925a126b17ab943d7d0d576c3a1754d8c326fada182d2c1a.exe - Win32/Filecoder.GandCrab.D trojan - cleaned by deleting [1]
  113. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_de3bfcaf0256e9884b91b51e303b961e887871aebb87972e4e8c659b0bdbd52e.exe - a variant of MSIL/TrojanDownloader.Agent.EYV trojan - cleaned by deleting [1]
  114. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_e17dba77ac5af5b171f1e4e7bc4b06d2b3480f4ddce05c37fb63c996eb688ed4.exe - a variant of Win32/Injector.EAMB trojan - cleaned by deleting [1]
  115. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_e3789fe380f37f8bc547621a06c9f1e797cdddb69d4be65128aad34d096f7961.exe - a variant of Win32/Injector.EAKK trojan - cleaned by deleting [1]
  116. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_ebaf392304336255288fd700ec381db37006e339a914f0729bd70c5e41c876f9.exe - a variant of Win32/Injector.EALY trojan - cleaned by deleting [1]
  117. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_f03f072ff0c8d6c00581aa43ae3d9c1e4a088b18546356871eef25bc85cbaf62.exe - a variant of Win32/Kryptik.GKUW trojan - cleaned by deleting [1]
  118. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_f298da145036488c147c2c72af8c3d3c756c133f5dbce8058243817eabcbcd77.exe » NSIS » hillock.dll - a variant of Win32/Injector.EALT trojan - cleaned by deleting [1]
  119. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_f4a85094f5a5492a9b5b6926891aaea37cf9d5080c55113b2702138ffe6d8ec6.exe » NSIS » wage.dll - a variant of Win32/Injector.EALT trojan - cleaned by deleting [1]
  120. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_f5c2d60d3622ee498b2e60ecca51afab9ac1cdd57d6ef37bf1283aea88ee6adc.exe - a variant of MSIL/Kryptik.PNT trojan - cleaned by deleting [1]
  121. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_f6ab03de8315b0bfa6d29862856a39747c280f9ec18409c58e8a42c1be7d72ba.exe - a variant of Win32/Injector.EALA trojan - cleaned by deleting [1]
  122. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_fa1da8290502d278578742e4a6a9e58049694b4f51936509e7d088f818ed19d2.exe - MSIL/Spy.Agent.AES trojan - cleaned by deleting [1]
  123. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_fb5e99a74385512a0d9758ca29cfd5556f879c3c15a104a5c95b1a3de354c596.exe » NSIS » clubhouse.dll - a variant of Win32/Injector.EALT trojan - cleaned by deleting [1]
  124. D:\12345\卡饭病毒样本包 20180914-17\Kafan_Sample_fc987b71dcc479bc86a86237c4ea766c7850dae1803a3f58e25d85f53048e499.exe - a variant of MSIL/Kryptik.PLT trojan - cleaned by deleting [1]
  125. Number of scanned objects: 380
  126. Number of threats found: 119
  127. Number of cleaned objects: 119
  128. Time of completion: 12:08:58  Total scanning time: 263 sec (00:04:23)

  130. Notes:
  131. [1] Object has been deleted as it only contained the virus body.
复制代码

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

a7656133
发表于 2018-9-18 12:20:27 | 显示全部楼层
Karna 发表于 2018-9-18 00:26
卡巴只要你双击了可疑程序并开启了KSN,就会对该程序全程记录其执行信息上传至云端遥测,并快速拉黑(UDS ...

我是26樓的

我後來抓卡巴19的日誌看,沒錯,是有殺到封裝裡的物件了,
所以重新計算後,正確是 112/125 (90%) 才對


另外
卡巴我這邊看來,是因為要提升速度和降低誤殺,所以大量使用Hash單一特徵庫,
可能只有對於家族型、變種型..等病毒才會使用多點式或基因式特徵去殺
把這種架構做得最徹底的是趨勢,是為了精簡本地和優化效能。




附註:(昨天17號 卡巴19 漏掉的)
Kafan_Sample_32a84c3bf14c42a5ef166d1c7663abe01cd349eb12174ba420f2349a0c83eacc
Kafan_Sample_53a243092da3c1be52d918020ecfe96d4d2f6c46a78228b633c06704e2f9cc28
Kafan_Sample_130f8c07b19c20327b4fde05047697e36ccaf3525ac39ead60f826d0b03ae9ab
Kafan_Sample_5970ac031e067f683e93efc1a99e578adc2da85fd822b4b4f31f390f9c31d2bc
Kafan_Sample_6767b6974e104025cac4ace55ca70580b8d838415900be85b6c193efc79921a4
Kafan_Sample_6788c4a2c0bc6d5f80dc8b5ecb7b37100f6c37d231a389ec906aae784cff529e
Kafan_Sample_90551a2aa2dcf4f1b38183850209ac06375f527339fb915d63efce4d31c1da7a
Kafan_Sample_165440588a47bafb29a79c2f7b771599b9f7c74246d861e1b9e7ebcdaed1073f
Kafan_Sample_a8f9a548986fc799a2cc6cac55d484c8d018ab990041d79ed76575556b9b5ca1
Kafan_Sample_a636b168b1c8c083682c3dcb5e88a9863a91bfbd257bd540dc6295a5631bee32
Kafan_Sample_a08675306b1d26aa2e7f9bc246f4e5a400a6fe5166066803d113f62f026b35eb
Kafan_Sample_daa460af18ef433bcdb7b4f619e6da0f94b92e804400ec5542808e2bd5693535
Kafan_Sample_e52f4dfcceb91589002a77a910369a949dcdcf0d608ad770e72c343bebe71c9d
回复

举报

下一页 »
1 ...234567891011下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-4-28 05:40 , Processed in 0.106380 second(s), 14 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表