样本集奉上_77 (10.13)

神算子

j2016 发表于 2018-10-13 21:51
avast   39/50
双击其中一个exe文件被杀

小a这次还挺厉害

静影沉璧

www-tekeze 发表于 2018-10-14 14:12
看这个帖，29楼。。     https://bbs.kafan.cn/thread-2133890-3-1.html

腾管的托，鉴定完毕。。

静影沉璧

歌德塔大蜘蛛 发表于 2018-10-14 14:14
看看这里，净是瞎吹 https://bbs.kafan.cn/forum.php?mod=redirect&goto=findpost&ptid=2134367&pid=4277 ...

懒得跟他解释。。

www-tekeze

歌德塔大蜘蛛 发表于 2018-10-14 14:14
看看这里，净是瞎吹 https://bbs.kafan.cn/forum.php?mod=redirect&goto=findpost&ptid=2134367&pid=4277 ...

又一位大婶诞生了。。

bluepw

jsytdyxx 发表于 2018-10-14 12:23
发一下查杀日志，我就不相信TAV 100%查杀

【扫描信息】

开始时间:2018-10-14 00:28:56
扫描用时:00:00:06
扫描类型:指定位置杀毒
扫描引擎:管家云查杀引擎 管家反病毒引擎 管家系统修复引擎
扫描状态:扫描完成


【扫描结果】

扫描文件数:50
发现风险数:50
已处理风险数:50


---------------------
2018-10-14 00:29:07 MD5:57bf914a5eb5b2492a2a2402afc455a7 D:\ssa\Samp(5).vir [Gen:Variant.Ursu.21417]  [删除成功]
2018-10-14 00:29:09 MD5:771653e47cb04fc3ba0cb526da4e5379 D:\ssa\Samp(31).vir [Trojan.Agent.BSTC]  [删除成功]
2018-10-14 00:29:09 MD5:ab32c692722f8d88f747a73b983a59a6 D:\ssa\Samp(19).vir [Gen:Variant.Zusy.193365]  [删除成功]
2018-10-14 00:29:09 MD5:e304cd42151e0a83ff9b6a59b1222460 D:\ssa\Samp(27).vir --> cVfMc/MmiwFWO.class [Java.Exploit.CVE-2013-0422.P]  [删除成功]
2018-10-14 00:29:09 MD5:c8ae133bd009e3fdd5287b02b25377f6 D:\ssa\Samp(47).vir [Gen:Trojan.Heur2.JP.kmKfaGQfWypi]  [删除成功]
2018-10-14 00:29:09 MD5:42e41272bc7ead2b90e12d80bc04f0f9 D:\ssa\Samp(17).vir [Gen:Heur.PonyStealer.3]  [删除成功]
2018-10-14 00:29:10 MD5:42a6d7357c99d626a37480d4a6664eff D:\ssa\Samp(4).vir --> PDF-STREAM-5\word\vbaProject.bin [OLE.Win32.Macro.703852]  [删除成功]
2018-10-14 00:29:10 MD5:0622a02669cffd432c55089e16eac512 D:\ssa\Samp(18).vir [Trojan.Agent.CASM]  [删除成功]
2018-10-14 00:29:10 MD5:0de40116d63482821b555a874f44c823 D:\ssa\Samp(36).vir [Gen:Variant.Razy.356035]  [删除成功]
2018-10-14 00:29:10 MD5:0d4ecfaf9b82c5b72e3c2789f779b47d D:\ssa\Samp(13).vir [Trojan.GenericKD.40432430]  [删除成功]
2018-10-14 00:29:10 MD5:f07b87cbe0268a6d0064e07642b8bebf D:\ssa\Samp(48).vir --> ORCAMEN00017ODB23102017414478005410000048705.exe [Gen:Variant.Zusy.260251]  [删除成功]
2018-10-14 00:29:10 MD5:0fe39eed10fd98e36138a5ec2823d796 D:\ssa\Samp(2).vir [Win32.Parite.F]  [删除成功]
2018-10-14 00:29:10 MD5:fd87ebee4969e0bf34e5994b278ef710 D:\ssa\Samp(34).vir [Generic.Nymaim.E.E1D06594]  [删除成功]
2018-10-14 00:29:10 MD5:6ea77b149d3b825966c87023a5251ffb D:\ssa\Samp(45).vir [Trojan.GenericKD.6078903]  [删除成功]
2018-10-14 00:29:10 MD5:90c3515a0be08d44355484f28bbfd1ae D:\ssa\Samp(15).vir [Trojan.GenericKD.31041837]  [删除成功]
2018-10-14 00:29:10 MD5:a95eb731d87b90dadf18aa90ceac5a38 D:\ssa\Samp(30).vir --> PDF-STREAM-0\word\vbaProject.bin [OLE.Win32.Macro.703738]  [删除成功]
2018-10-14 00:29:11 MD5:0a12e1f03ec08549e8c68e0e9d1db007 D:\ssa\Samp(6).vir [Trojan.GenericKD.5559012]  [删除成功]
2018-10-14 00:29:11 MD5:ae1d9d2958f5c0acd2c141db8155555e D:\ssa\Samp(25).vir [Gen:Variant.Ransom.Cerber.607]  [删除成功]
2018-10-14 00:29:11 MD5:e304cd42151e0a83ff9b6a59b1222460 D:\ssa\Samp(27).vir --> cVfMc/WweRAZ.class [Java.Exploit.CVE-2013-0422.H]  [删除成功]
2018-10-14 00:29:11 MD5:f5beb1d5d86af5a067591b4bcaf3cd01 D:\ssa\Samp(16).vir [Trojan.GenericKD.4308179]  [删除成功]
2018-10-14 00:29:11 MD5:af83e3ca69f180aed9196bb9cdde19f7 D:\ssa\Samp(39).vir [Trojan.GenericKD.5287340]  [删除成功]
2018-10-14 00:29:11 MD5:06e520eb9b9c23abaa49a4a3a296a226 D:\ssa\Samp(22).vir [Trojan.Agent.BYNS]  [删除成功]
2018-10-14 00:29:11 MD5:bcf17527d955c20fe56a6b5e28c9dbe8 D:\ssa\Samp(29).vir [Gen:Variant.Ursu.29684]  [删除成功]
2018-10-14 00:29:11 MD5:e701845408b627b1b25d3076a3dbf58a D:\ssa\Samp(41).vir [Trojan.GenericKD.31039161]  [删除成功]
2018-10-14 00:29:11 MD5:e98b66cebdf3723eb2312fa379bc5bf1 D:\ssa\Samp(44).vir [Trojan.Agent.CDGB]  [删除成功]
2018-10-14 00:29:11 MD5:c946f3bceb69fdf0878bc725b7644f58 D:\ssa\Samp(11).vir [Gen:Variant.Ransom.Scarab.43]  [删除成功]
2018-10-14 00:29:12 MD5:4182a840d033bb3dfdbf1b0a1a3735a2 D:\ssa\Samp(50).vir [VB:Trojan.Valyria.2158]  [删除成功]
2018-10-14 00:29:12 MD5:374a7a78d7c9a87c1f551a9ef30001b9 D:\ssa\Samp(7).vir [Trojan.GenericKD.40446299]  [删除成功]
2018-10-14 00:29:12 MD5:959726609fa07082f2afe4e17cf04ad5 D:\ssa\Samp(33).vir [Trojan.GenericKD.2495336]  [删除成功]
2018-10-14 00:29:12 MD5:946d794afc8cb0e8d597180bcf3ae720 D:\ssa\Samp(20).vir [Script.SWF.C222]  [删除成功]
2018-10-14 00:29:12 MD5:3d2ebade2840d1f7b0a08e26b0b46104 D:\ssa\Samp(35).vir [Trojan.GenericKD.40506782]  [删除成功]
2018-10-14 00:29:12 MD5:f0bb506337373e33321eb5ffa1bf4f7f D:\ssa\Samp(46).vir [Trojan.GenericKD.40304537]  [删除成功]
2018-10-14 00:29:12 MD5:8cc1f9aa63057494f1f52ef6990cc203 D:\ssa\Samp(26).vir [Trojan.VIZ.Gen.1]  [删除成功]
2018-10-14 00:29:12 MD5:df0a3ef7810c20642b0acaf11d471db1 D:\ssa\Samp(10).vir [Html.Win32.Script.501472]  [删除成功]
2018-10-14 00:29:12 MD5:7d0c2f75918c5df68fd1edd71e5e8bdf D:\ssa\Samp(21).vir [Trojan.Dropper.YYR]  [删除成功]
2018-10-14 00:29:12 MD5:fbdeda3f9eeeae7c33a47106ca1265e7 D:\bdu\Samp(20).vir [Win32.Trojan.Filelocker.Ehic]  [删除成功]
2018-10-14 00:29:12 MD5:7f4c32db198dcb1d46a44f8455eb95ce D:\bdu\Samp(34).vir --> sup.class [Java.Trojan.GenericGB.328]  [删除成功]
2018-10-14 00:29:12 MD5:92e814b1bbfe148da5ccc8f6e78707c7 D:\bdu\VirusSamples_72M\Samp(32)M.vir [Win32.Trojan.Crypt.Hupk]  [删除成功]
2018-10-14 00:29:12 MD5:55a0cde67a4958c6c821bffcd9f2cde7 D:\bdu\Samp.vir [Win32.Trojan-downloader.Quant.Swku]  [删除成功]
2018-10-14 00:29:12 MD5:e304cd42151e0a83ff9b6a59b1222460 D:\ssa\Samp(45).vir --> cVfMc/TUqUvI.class [Java.Exploit.CVE-2013-0422.AA]  [删除成功]
2018-10-14 00:29:13 MD5:dc10a673136fd0c7534935933bfa78a6 D:\ssa\Samp(49).vir [Trojan.GenericKD.40527412]  [删除成功]
2018-10-14 00:29:13 MD5:af22123c0485dd1a474939825bafd039 D:\ssa\Samp(43).vir [Trojan.GenericKD.2729057]  [删除成功]
2018-10-14 00:29:13 MD5:7385dc1cd8a67a6a3c65acf5290f71d8 D:\ssa\Samp(24).vir [Backdoor.Bot.39531]  [删除成功]
2018-10-14 00:29:13 MD5:932f26a196411511b8dc01293361981a D:\ssa\Samp(32).vir [Trojan.GenericKD.40420607]  [删除成功]
2018-10-14 00:29:13 MD5:132d56f533f3a074b441cebff98e7742 D:\ssa\Samp(42).vir [Trojan.GenericKD.5133842]  [删除成功]
2018-10-14 00:29:13 MD5:9526e80ac3e3cbb0a359281eeaa2c255 D:\ssa\Samp(12).vir [Trojan.GenericKDS.31240219]  [删除成功]
2018-10-14 00:29:13 MD5:f045e840d1391538e816c55545031c53 D:\ssa\Samp(40).vir [Gen:Variant.Ransom.Locky.1]  [删除成功]
2018-10-14 00:29:13 MD5:9c09a1e5578e65b65d79f745a1e6cef2 D:\ssa\Samp(3).vir [Backdoor.Win32.Gh0st.g]  [删除成功]
2018-10-14 00:29:13 MD5:0cf1c55f0d6e4cf4c6ea46a5cc7d366a D:\ssa\Samp(1).vir [Trojan.GenericKD.5559038]  [删除成功]
2018-10-14 00:29:13 MD5:4182a840d033bb3dfdbf1b0a1a3735a2 D:\ssa\Samp(50).vir [VB:Trojan.Valyria.2158]  [删除成功]
---------------------

bluepw

jsytdyxx 发表于 2018-10-14 12:23
发一下查杀日志，我就不相信TAV 100%查杀

看看看看，腾讯的确是目前国内第一。

bluepw

神算子 发表于 2018-10-14 10:36
那为什么楼主用管家检测的比你低的多

有些东西你懂的，一切尽在不言中。

a8855942

我很好奇，这些样本集，你们都是那里搞来的？

www-tekeze

bluepw 发表于 2018-10-14 16:13
【扫描信息】

开始时间:2018-10-14 00:28:56

你炮制出来的日志？如何证明是我这个样本包？？ 怎么目录有两个，ssa和bdu，居然还出现个“VirusSamples_72M\Samp(32)M.vir ”，这个包是77期，怎么72期的都出现了。。

找50个腾管都报毒的样本，然后上个日志？是不是想让我举报你？？