——————————————样本71x————————————

显示全部楼层 · 发表于 2019-4-14 17:04:30

https://kingpro123.tk/index.php?share/file&user=1&sid=Ic6iWakq

显示全部楼层 · 发表于 2019-4-14 17:04:54

显示全部楼层 · 发表于 2019-4-14 17:09:49

本帖最后由 humanlwj52 于 2019-4-14 17:19 编辑

ESET killed 69x.

显示全部楼层 · 发表于 2019-4-14 17:14:04

本帖最后由 a233 于 2019-4-14 17:26 编辑

Avast扫描Kill 70X
*Avast 扫描报告
* 该文件是自动生成的
*
* 扫描名称: 从 Windows 资源管理器进行扫描
* 开始于: 2019年4月14日 17:20:36
* VPS: 190414-0, 2019/04/14
*
C:\Users\Administrastor\Desktop\Untitled\VinaCF.exe.exe [L] Win32:Rootkit-gen [Rtk] (0)
C:\Users\Administrastor\Desktop\Untitled\frn7.exe.exe [L] Win32:TrojanX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\sv.exe.exe [L] MSIL:Agent-DRD [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\nguyentroi.exe.exe [L] Win32:Rootkit-gen [Rtk] (0)
C:\Users\Administrastor\Desktop\Untitled\3.exe.exe [L] Win32:Dh-A [Heur] (0)
C:\Users\Administrastor\Desktop\Untitled\ale7.exe.exe [L] Win32:TrojanX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\nokill.exe.exe [L] Win32:RATX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\i.exe.exe [L] MSIL:Agent-DRD [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\gabwoo-guest.exe.exe [L] Win32:Malware-gen (0)
C:\Users\Administrastor\Desktop\Untitled\2.exe.exe [L] Win32:Malware-gen (0)
C:\Users\Administrastor\Desktop\Untitled\code lol .exe.exe [L] MSIL:Agent-TE [Drp] (0)
C:\Users\Administrastor\Desktop\Untitled\server.exe.exe [L] Win32:Agent-BBBO [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\slim.exe.exe [L] Win32:Malware-gen (0)
C:\Users\Administrastor\Desktop\Untitled\CGl_m.exe.exe [L] Win32:BankerX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\sureboy.exe.exe [L] Win32:Malware-gen (0)
C:\Users\Administrastor\Desktop\Untitled\1.exe.exe [L] Win32:Malware-gen (0)
C:\Users\Administrastor\Desktop\Untitled\joefil.exe.exe [L] Win32:Malware-gen (0)
C:\Users\Administrastor\Desktop\Untitled\NXy5i0ZtI65.exe.exe [L] Win32:BankerX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\taskmgr.exe.exe [L] Win32:Malware-gen (0)
C:\Users\Administrastor\Desktop\Untitled\BnDEtRoItFaQ.exe.exe [L] Win32:Trojan-gen (0)
C:\Users\Administrastor\Desktop\Untitled\win22.exe.exe [L] FileRepMalware (0)
C:\Users\Administrastor\Desktop\Untitled\frnn.exe.exe [L] Win32:TrojanX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\Or_kn.exe.exe [L] Win32:BankerX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\cl.exe.exe [L] Win32:CrypterX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\lav.exe.exe [L] Win32:TrojanX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\ScanCopy03-25.exe.exe [L] Win32:RATX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\chinap.exe.exe [L] Win32:Malware-gen (0)
C:\Users\Administrastor\Desktop\Untitled\ati7.exe.exe [L] Win32:TrojanX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\Runhost.exe.exe [L] FileRepMalware (0)
C:\Users\Administrastor\Desktop\Untitled\RedirC.exe.exe [L] Win32:Trojan-gen (0)
C:\Users\Administrastor\Desktop\Untitled\buy.exe.exe [L] Win32:TrojanX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\kg.exe.exe [L] Win32:RATX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\TMepuZfTW.exe.exe [L] Win32:BankerX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\WG9JniLJ.exe.exe [L] Win32:BankerX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\po.msi|>Binary._D7D112F049BA1A655B5D9A1D0702DEE5 [L] Win32:Malware-gen (0)
C:\Users\Administrastor\Desktop\Untitled\elb7.exe.exe [L] Win32:TrojanX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\Exo.exe.exe [L] MSIL:Rat-B [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\fnb.exe.exe [L] Win32:TrojanX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\obil.exe.exe [L] Win32:TrojanX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\obed8.exe.exe [L] Win32:TrojanX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\bpagTYAf.exe.exe [L] Win32:BankerX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\eaid.exe.exe [L] Win32:DangerousSig [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\calc.exe.exe [L] Win32:BankerX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\ari7.exe.exe [L] Win32:TrojanX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\searcindexer.exe.exe|>>>>AUTOIT SCRIPT<<< [E] 该文件是一个解压缩炸弹。 (42110)
C:\Users\Administrastor\Desktop\Untitled\searcindexer.exe.exe|>AutoIt.script [E] 该文件是一个解压缩炸弹。 (42110)
C:\Users\Administrastor\Desktop\Untitled\searcindexer.exe.exe [L] FileRepMalware (0)
C:\Users\Administrastor\Desktop\Untitled\code cf.exe.exe|>$INSTDIR\chanchan.exe [L] Win32:Dropper-LUK [Drp] (0)
C:\Users\Administrastor\Desktop\Untitled\code cf.exe.exe [L] FileRepMalware (0)
C:\Users\Administrastor\Desktop\Untitled\eme7.exe.exe [L] Win32:TrojanX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\22.exe.exe|>>>>AUTOIT SCRIPT<<< [E] 该文件是一个解压缩炸弹。 (42110)
C:\Users\Administrastor\Desktop\Untitled\22.exe.exe|>AutoIt.script [E] 该文件是一个解压缩炸弹。 (42110)
C:\Users\Administrastor\Desktop\Untitled\22.exe.exe [L] FileRepMalware (0)
C:\Users\Administrastor\Desktop\Untitled\winlogon.exe.exe [L] FileRepMalware (0)
C:\Users\Administrastor\Desktop\Untitled\hp (5).gf.exe [L] Win32:Trojan-gen (0)
C:\Users\Administrastor\Desktop\Untitled\obig.exe.exe [L] Win32:TrojanX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\xJnMoTGON.exe.exe [L] Win32:BankerX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\mol6.exe.exe [L] Win32:TrojanX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\p1.exe.exe [L] Win32:TrojanX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\ttr.exe.exe [L] Win32:Malware-gen (0)
C:\Users\Administrastor\Desktop\Untitled\obo.exe.exe [L] Win32:TrojanX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\4.exe.exe [L] Win32:Malware-gen (0)
C:\Users\Administrastor\Desktop\Untitled\ochi.exe.exe [L] Win32:TrojanX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\lav7.exe.exe [L] Win32:TrojanX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\noo7.exe.exe [L] Win32:TrojanX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\oo.exe.exe [L] Win32:TrojanX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\whe7.exe.exe [L] Win32:TrojanX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\so.exe.exe [L] Win32:TrojanX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\Win3.exe.exe [L] FileRepMalware (0)
C:\Users\Administrastor\Desktop\Untitled\winboxls-0225-2.exe.exe [L] Win32:Malware-gen (0)
C:\Users\Administrastor\Desktop\Untitled\m.html.exe [L] Win32:Malware-gen (0)
C:\Users\Administrastor\Desktop\Untitled\hp.gf.exe [L] Win32:Malware-gen (0)
C:\Users\Administrastor\Desktop\Untitled\bi7.exe.exe [L] Win32:TrojanX-gen [Trj] (0)
C:\Users\Administrastor\Desktop\Untitled\obed.exe.exe [L] Win32:TrojanX-gen [Trj] (0)
感染文件: 70
文件总计: 88
文件夹总计: 1
大小总计: 50.3 MB

显示全部楼层 · 发表于 2019-4-14 17:19:39

20次下载，2人回复，莫非楼上每人下了10次？？？

显示全部楼层 · 发表于 2019-4-14 17:21:39

本帖最后由 huang1111 于 2019-4-14 18:05 编辑

卡巴斯基kill x70miss 1个
稍后测试双击（刚刚云抽风了，现在好了，该文件是受信任文件）
双击，链接因特网，但是我限速了，他没连成功，卡巴全程Miss，智量扫描miss

显示全部楼层 · 发表于 2019-4-14 17:23:17

本帖最后由 YU2711 于 2019-4-14 19:12 编辑

Trend Micro 16 Beta

41/71

显示全部楼层 · 发表于 2019-4-14 17:30:32

a233 发表于 2019-4-14 17:14

双击剩下的a.exe.exe和mindll.exe.exe
a.exe.exe防御成功
mindll.exe.exe防御成功

显示全部楼层 · 发表于 2019-4-14 17:36:25

本帖最后由 kaba666 于 2019-4-14 18:10 编辑

卡巴杀了还剩一个！受信任！！！双击，释放了不少垃圾文件，还是网络上的文件，还可以打开！也！我有邪恶的想法！这里面有好看的没有~！

我晕哦！这些文件像是韩国或日本的某个人的电脑上文件吧，既然还可以对文件读写操作！我都给他删了一个文件夹了！出于人道精神，还是算了，给他留着~！

显示全部楼层 · 发表于 2019-4-14 17:37:40

本帖最后由 petr0vic 于 2019-4-14 17:43 编辑

火绒 5.0.1.4
33/71 46,47%

Path: C:\Users\User\Desktop\Untitled\1.exe.exe, Detection: HEUR:VirTool/VCObfuscator.gen!C, Detection ID: 124c5c16e1ea6e5f, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\2.exe.exe, Detection: HEUR:TrojanDownloader/Mult.b, Detection ID: 197c48520d2ca2d5, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\bpagTYAf.exe.exe, Detection: HEUR:VirTool/Obfuscator.gen!B, Detection ID: 2d18551aef762f90, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\chinap.exe.exe, Detection: HEUR:VirTool/DelfInjector.gen!G, Detection ID: b144744fed23be5, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\cl.exe.exe, Detection: HEUR:VirTool/Obfuscator.gen!A, Detection ID: a5a7938d38833819, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\code cf.exe.exe >> 46ee�ﾀcaca.x, Detection: Trojan/VBCode.fr, Detection ID: e87cd5521712cf97, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\code lol .exe.exe, Detection: Trojan/MSIL.Injector.h, Detection ID: 21864d2c9dff8480, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\eaid.exe.exe, Detection: Trojan/VBInject.b, Detection ID: 12a2d025eff89018, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\CGl_m.exe.exe, Detection: HEUR:VirTool/Obfuscator.gen!B, Detection ID: 2d18551aef762f90, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\Exo.exe.exe, Detection: Backdoor/Quasar.a, Detection ID: 90a1718ce39c00e5, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\gabwoo-guest.exe.exe, Detection: HVM:Trojan/MalBehav.gen!B, Detection ID: e2b81393a5341b9b, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\hp (5).gf.exe, Detection: HEUR:Ransom/ShadowDel.a, Detection ID: ade98c2d0fefa0bf, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\hp.gf.exe, Detection: HEUR:VirTool/Obfuscator.gen!B, Detection ID: 2d18551aef762f90, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\i.exe.exe, Detection: Backdoor/Bladabindi.n, Detection ID: ca3f13864c424cf2, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\joefil.exe.exe, Detection: HEUR:VirTool/DelfInjector.gen!H, Detection ID: 35e579187ab3030a, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\kg.exe.exe, Detection: HEUR:Trojan/Distool.a, Detection ID: ecdcf96c26b68301, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\m.html.exe, Detection: Trojan/Generic!46B4B77E5C97204E, Detection ID: 46b4b77e5c97204e, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\nguyentroi.exe.exe, Detection: TrojanDownloader/Agent.nj, Detection ID: ea5e9c0fe319373d, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\nokill.exe.exe, Detection: HEUR:Trojan/Distool.a, Detection ID: ecdcf96c26b68301, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\mindll.exe.exe, Detection: HEUR:VirTool/VCObfuscator.gen!C, Detection ID: 124c5c16e1ea6e5f, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\NXy5i0ZtI65.exe.exe, Detection: HEUR:VirTool/Obfuscator.gen!B, Detection ID: 2d18551aef762f90, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\po.msi, Detection: HEUR:VirTool/DelfInjector.gen!H, Detection ID: 35e579187ab3030a, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\ScanCopy03-25.exe.exe, Detection: Trojan/Generic!ED4287939065B819, Detection ID: ed4287939065b819, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\Or_kn.exe.exe, Detection: HEUR:VirTool/Obfuscator.gen!B, Detection ID: 2d18551aef762f90, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\server.exe.exe, Detection: Backdoor/Zegost.h, Detection ID: 9c70eae24430a390, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\slim.exe.exe, Detection: TrojanSpy/Formbook.a, Detection ID: 960d9d9750c15977, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\sureboy.exe.exe, Detection: TrojanSpy/Formbook.a, Detection ID: 960d9d9750c15977, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\sv.exe.exe, Detection: Backdoor/Bladabindi.n, Detection ID: ca3f13864c424cf2, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\TMepuZfTW.exe.exe, Detection: HEUR:VirTool/Obfuscator.gen!B, Detection ID: 2d18551aef762f90, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\VinaCF.exe.exe, Detection: Trojan/VBCode.aj, Detection ID: 9c2cc517334b37ae, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\WG9JniLJ.exe.exe, Detection: HEUR:VirTool/Obfuscator.gen!B, Detection ID: 2d18551aef762f90, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\winboxls-0225-2.exe.exe, Detection: Trojan/Generic!96F5B99AB17474E1, Detection ID: 96f5b99ab17474e1, Result: Cleaned
Path: C:\Users\User\Desktop\Untitled\xJnMoTGON.exe.exe, Detection: HEUR:VirTool/Obfuscator.gen!B, Detection ID: 2d18551aef762f90, Result: Cleaned

复制代码

[病毒样本] ——————————————样本71x————————————

评分

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源