本帖最后由 YU2711 于 2019-1-27 20:05 编辑
Avira 5X
- 2019/1/27,19:45:03 [INFO] FP reports status 'NO False Positive' for file 'C:\IDM\idm\Downloads\Compressed\EXE样本_10\Samp(4).vir'
- 2019/1/27,19:45:03 [DETECTION] Is the TR/Crypt.ASPM.Gen Trojan!
- C:\IDM\idm\Downloads\Compressed\EXE样本_10\Samp(4).vir
- [INFO] The file will be copied to quarantine!
- 01/27/2019,19-45-03 [INFO] FP reports status 'NO False Positive' for file 'c:\idm\idm\downloads\compressed\exe样本_10\Samp(1).vir'
- 01/27/2019,19-45-03 [INFO] c:\idm\idm\downloads\compressed\exe样本_10\Samp(1).vir
- 01/27/2019,19-45-03 [INFO] [DETECTION] file contains 'TR/Encoder.xrytt'
- 01/27/2019,19-45-06 [INFO] FP reports status 'NO False Positive' for file 'c:\idm\idm\downloads\compressed\exe样本_10\Samp(2).vir'
- 01/27/2019,19-45-06 [INFO] The file 'c:\idm\idm\downloads\compressed\exe样本_10\Samp(2).vir' was scanned with the Protection Cloud. SHA256 = EEAE4955354E07E0DF2C5CA3BDC830F6758C11BA185511EF4B3D82A9C1253E63
- 01/27/2019,19-45-06 [INFO] c:\idm\idm\downloads\compressed\exe样本_10\Samp(2).vir
- 01/27/2019,19-45-06 [INFO] [DETECTION] file contains 'TR/Crypt.ZPACK.eeae49'
- 01/27/2019,19-45-07 [INFO] FP reports status 'NO False Positive' for file 'c:\idm\idm\downloads\compressed\exe样本_10\Samp(3).vir'
- 01/27/2019,19-45-07 [INFO] The file 'c:\idm\idm\downloads\compressed\exe样本_10\Samp(3).vir' was scanned with the Protection Cloud. SHA256 = E4FB4EFB542BAF5ACA69F1D482D0CF22EE28928F82AA7E444718A33ACEBE987A
- 01/27/2019,19-45-07 [INFO] c:\idm\idm\downloads\compressed\exe样本_10\Samp(3).vir
- 01/27/2019,19-45-07 [INFO] [DETECTION] file contains 'TR/AD.Emotet.B'
- 01/27/2019,19-45-22 [INFO] FP reports status 'NO False Positive' for file 'c:\idm\idm\downloads\compressed\exe样本_10\Samp(5).vir'
- 01/27/2019,19-45-22 [INFO] The file 'c:\idm\idm\downloads\compressed\exe样本_10\Samp(5).vir' has been uploaded to the Protection Cloud and analyzed. SHA256 = F06CC419FF27ABA9CE7B9D5BC7468E982B89C9875502D97B2BA081CA44A91B77
- 01/27/2019,19-45-22 [INFO] c:\idm\idm\downloads\compressed\exe样本_10\Samp(5).vir
- 01/27/2019,19-45-22 [INFO] [DETECTION] file contains 'TR/Crypt.XPACK.f06cc4'
复制代码 McAfee SCAN 3X- 2019/01/27 19:45:17 C:\Users\TEST2\Downloads\Compressed\EXE样本_10\Samp(3).vir 1 4 Suspect!ccb033cf51d5 CCB033CF51D5FE32C02EDB84D1AB66CF
- 2019/01/27 19:45:17 C:\Users\TEST2\Downloads\Compressed\EXE样本_10\Samp(2).vir 1 4 Suspect!bacd1120ad09 BACD1120AD0918B81D98DE9B9ACB69CE
- 2019/01/27 19:45:17 C:\Users\TEST2\Downloads\Compressed\EXE样本_10\Samp(1).vir 1 4 Suspect!96f48973c173 96F48973C173639CE9B5F28B006C92A1
复制代码 Run Samp(5)
- 2019/01/27 19:53:28 C:\USERS\TEST2\APPDATA\LOCAL\UUIDGENSAT\UUIDGENSAT.EXE 1 4 Suspect
复制代码 Samp(4)Miss
|