样本集奉上_98 (12.19)

taroyoo

BD
S: 42/50，M: 18/25，T: 60/75  80%

www-tekeze

www-tekeze 发表于 2018-12-19 21:26
管家无BD，S：34/50，M：0/25，T：34/75，45.3%，其中修复2个人。

加BD后的管家强多了！ S：43/50，M：18/25，T：61/75，81.3%，其中修复2个。。。@QQ137

c/mm

avast 扫描 KILL 55X  IDP击杀9X      剩余11X






Dr.Web 大蜘蛛12
扫描 41X+文件监控14X=65 X      剩余10X  

bbs2811125

S45/50+M21/25=66/75=88%

Version of detection engine: 18570P (20181219)
Date: 2018/12/19  Time: 22:58:46
Scanned disks, folders and files: D:\搜狗高速下载\VirusSamples_98
D:\搜狗高速下载\VirusSamples_98\1S68Y0mNmo6r2qURZRu2.vir - Win32/Emotet.BQ trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\2l8aV3kcr36n4fUrF8P7.vir » UPX v13_m14 - a variant of Win32/Filecoder.ED trojan - deleted
D:\搜狗高速下载\VirusSamples_98\35sQVuR7QjYnzwRk2RY2.vir - Win32/Filecoder.Cerber.F trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\36PT689b5h5G3Yrc1wEM.vir - JS/TrojanDownloader.Nemucod.EBQ trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\3E1buj96fRr5Y19Ff56d.vir - JS/TrojanDownloader.Nemucod.EBN trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\3H98L4mgI28oDt4S7RoQ.vir - Win32/Neurevt.I trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\41QDY82iGGR40TNIdy7G.vir - a variant of Win32/Kryptik.BHCN trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\464oSrh1N52XnBonNw94.vir - a variant of Win32/Kryptik.FPTE trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\4Pk69v5VhpT0N70j77Dl.vir - a variant of Win32/Kryptik.GNGV trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\4TyVn0ff1hh7SU623C96.vir - a variant of Win32/Injector.DYSD trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\5Qo9Axg6OjDby1U6SH5d.vir - MSIL/Spy.Keylogger.CVG trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\8uDN58jz4vIeMT48E1wW.vir - a variant of Java/Kryptik.FL trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\A0cERA05Q9osAn771vV8.vir - Win32/Dridex.BC trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\A302vV0FT328djQ1QMP5.vir - a variant of Win32/Injector.EBPD trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\A8SmXciJ9CvYh65HrzLH.vir - VBA/TrojanDownloader.Agent.JYE trojan - cleaned
D:\搜狗高速下载\VirusSamples_98\AdP29dghLvs5I5CByHcA.vir - a variant of Win32/Kryptik.BGMB trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\C5a96ok0d0HCfU7lqJ7W.vir - Win32/TrojanDownloader.Wauchos.BD trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\IzXl4R19b9s9Kl6wd808.vir - a variant of Win32/Kryptik.CBNO trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\T5qahE4q677weuF85itg.vir - a variant of Win32/Kryptik.EWNV trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\T8CF3APK033oX1fSQ5bd.vir - a variant of Win64/Kryptik.XF trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\UICk5eE52Ox6Vpt2YQTM.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.FRK trojan - deleted
D:\搜狗高速下载\VirusSamples_98\URs6z2aC2Yt3luv5b7h9.vir - Win32/Filecoder.ED trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\VK5PAlpGYTk53WFl5OZW.vir » ZIP » word/vbaProject.bin - VBA/TrojanDownloader.Agent.FRK trojan - deleted
D:\搜狗高速下载\VirusSamples_98\VirusSamples_98M\1S68Y0mNmo6r2qURZRu2.vir.vir - Win32/Emotet.BQ trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\VirusSamples_98M\35sQVuR7QjYnzwRk2RY2.vir.vir » NSIS » Script.nsi - NSIS/Injector.TC trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\VirusSamples_98M\35sQVuR7QjYnzwRk2RY2.vir.vir » NSIS » File.bin - archive damaged - the file could not be extracted.
D:\搜狗高速下载\VirusSamples_98\VirusSamples_98M\35sQVuR7QjYnzwRk2RY2.vir.vir » NSIS » stances.dll - a variant of Win32/Injector.DKTR trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\VirusSamples_98M\41QDY82iGGR40TNIdy7G.vir.vir - a variant of Win32/Kryptik.BHCN trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\VirusSamples_98M\4Pk69v5VhpT0N70j77Dl.vir.vir - a variant of Win32/Kryptik.GNGV trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\VirusSamples_98M\A0cERA05Q9osAn771vV8.vir.vir - Win32/Dridex.BC trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\VirusSamples_98M\A302vV0FT328djQ1QMP5.vir.vir - a variant of Win32/Injector.EBPD trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\VirusSamples_98M\C5a96ok0d0HCfU7lqJ7W.vir.vir - Win32/TrojanDownloader.Wauchos.BD trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\VirusSamples_98M\T5qahE4q677weuF85itg.vir.vir - a variant of Win32/Kryptik.EWNV trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\VirusSamples_98M\URs6z2aC2Yt3luv5b7h9.vir.vir - Win32/Filecoder.ED trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\VirusSamples_98M\aa43qtZ752cn2D84vtoO.vir.vir - a variant of Win32/Kryptik.ENJD trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\VirusSamples_98M\er81V9fn6N5d54U07STv.vir.vir - Win32/Filecoder.Jaff.B trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\VirusSamples_98M\gK0rK0eyFqii5qA1iH1m.vir.vir - a variant of Win32/Injector.DNHQ trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\VirusSamples_98M\gccB6E9r9rSsl18fF4uv.vir.vir - Win32/Filecoder.CryptProjectXXX.H trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\VirusSamples_98M\gg71k36Ui4s89WZ3fkHQ.vir.vir - a variant of Win32/GenKryptik.CJWB trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\VirusSamples_98M\h99Qfct621zpMG7pP00a.vir.vir - Win32/Spy.Ursnif.AO trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\VirusSamples_98M\ljbHZ276wlbeSw74GF6v.vir.vir » UPX v13_m8 - a variant of Win32/Kryptik.GNIO trojan - deleted
D:\搜狗高速下载\VirusSamples_98\VirusSamples_98M\uFnY5X5bD77c5N4dW02v.vir.vir - a variant of Win32/Kryptik.FPAR trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\VirusSamples_98M\ummtV12m6PlZQV81lA7R.vir.vir - Win32/Reveton.AL trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\VirusSamples_98M\vLB4mNw96EZ8hNx3yTkk.vir.vir - a variant of Win32/Injector.DYSE trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\VirusSamples_98M\wUIq4j07Ju5vw5HEHRRl.vir.vir - a variant of Win32/Kryptik.GNDQ trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\VirusSamples_98M\ziEvTHC4d7S9fsWJQ1H0.vir.vir » UPX v13_m2 - a variant of Win32/GenKryptik.CMGV trojan - deleted
D:\搜狗高速下载\VirusSamples_98\Yz7NQlGwKxNcp4D7025i.vir - a variant of MSIL/Ribaj.D virus - deleted
D:\搜狗高速下载\VirusSamples_98\aENzm9rmKw7m4hmrt81y.vir » OLEDATA » 5C.pif - a variant of Win32/Kryptik.GKCM trojan - deleted
D:\搜狗高速下载\VirusSamples_98\aa43qtZ752cn2D84vtoO.vir - a variant of Win32/Kryptik.ENJD trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\e7o2h6dnA18J503CQVni.vir - VBA/TrojanDownloader.Agent.LIG trojan - cleaned
D:\搜狗高速下载\VirusSamples_98\er81V9fn6N5d54U07STv.vir - Win32/Filecoder.Jaff.B trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\gK0rK0eyFqii5qA1iH1m.vir - a variant of Win32/Injector.DNHQ trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\gccB6E9r9rSsl18fF4uv.vir - Win32/Filecoder.CryptProjectXXX.H trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\gg71k36Ui4s89WZ3fkHQ.vir - a variant of Win32/Kryptik.FBHX trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\h99Qfct621zpMG7pP00a.vir - Win32/Spy.Ursnif.AO trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\i3I85de8z8dPczBT1fJ2.vir - JS/TrojanDownloader.Nemucod.EBZ trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\kBPew48iB8By3YAqVvU0.vir - Win32/Parite.B virus - cleaned
D:\搜狗高速下载\VirusSamples_98\lWQ876I13vni8vj77582.vir - VBA/TrojanDownloader.Agent.JZV trojan - cleaned
D:\搜狗高速下载\VirusSamples_98\ljbHZ276wlbeSw74GF6v.vir - a variant of Win32/Kryptik.GNIO trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\oQL27a8IlZO46tlsWRDm.vir - a variant of Win32/Kryptik.GKVH trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\py8YqDO00Npf7tg52oZ8.vir » ZIP » 9714.zip » ZIP » 9714.doc - Win32/Exploit.CVE-2017-0199.AK trojan - deleted
D:\搜狗高速下载\VirusSamples_98\rkS0cNnsXgI0n76DZsD9.vir - a variant of Win32/Parite.gen virus - deleted
D:\搜狗高速下载\VirusSamples_98\tBJ68Pe0rVi0493550xa.vir - Win32/PowerLoader.A trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\uFnY5X5bD77c5N4dW02v.vir - a variant of Win32/Kryptik.FPAR trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\ummtV12m6PlZQV81lA7R.vir - Win32/Reveton.AL trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\vLB4mNw96EZ8hNx3yTkk.vir - a variant of Win32/Injector.DYSE trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\wUIq4j07Ju5vw5HEHRRl.vir - a variant of Win32/Kryptik.GNDQ trojan - cleaned by deleting [1]
D:\搜狗高速下载\VirusSamples_98\ziEvTHC4d7S9fsWJQ1H0.vir - a variant of Win32/GenKryptik.CMGV trojan - cleaned by deleting [1]
Number of scanned objects: 133
Number of threats found: 68
Number of cleaned objects: 68
Time of completion: 23:00:32  Total scanning time: 106 sec (00:01:46)

ziyerain2015

Malwarebytes
S: 31/50，M: 21/25，T: 52/75  69.3%

ziyerain2015

DOME  S：33/50，M：16/25，T：49/75，65.3%

ziyerain2015

360-素质三连
S: 39/50，M: 23/25，T: 62/75  82.66%

YU2711

Trend Micro扫描
S :41(2修复)/50 M: 17/25 T:58/75
双击KILL4X Blocked 2X




剩余样本(有一样本执行后自删除或移到别的文件夹)

aassdfs01

测试环境：win10 ltsc 2019 x64 虚拟机
测试产品：symantec endpoint protection 14.2.1023.0100
纯扫描 不双击
S: 45/50，M: 17/25，T:62/75   其中修复三个

generalbasic008

191196846 发表于 2018-12-19 20:47
VTSS
71/75

你这是什么杀软？