2019/5/10海外进口的新鲜（22:15左右）样本14个,来测测你的杀软怎么样？

小Q机器人

2019/5/10海外进口的新鲜（22:15左右）样本14个
还差16分升级，希望大佬给加分，让我升级，谢谢



蓝奏：https://www.lanzous.com/i43z5pc
解压密码：infected

欢迎各位双击和扫描,可以自行改名后双击玩玩！


发帖前测试的智量1.33，扫描发现11个，miss3个

StarlitFuture

1. 360木马查杀扫描日志
   
2. 
   
3. 开始时间: 2019-5-10 22:33:41
   
4. 扫描用时: 00:00:03
   
5. 扫描类型: 自定义扫描
   
6. 扫描引擎:360云查杀引擎（本地木马库）  360启发式引擎  QEX脚本查杀引擎
   
7. 扫描文件数: 14
   
8. 系统关键位置文件: 0
   
9. 系统内存运行模块: 0
   
10. 压缩包文件: 0
    
11. 安全的文件数: 5
    
12. 发现安全威胁: 9
    
13. 已处理安全威胁: 9
    
14. 
    
15. 扫描选项
    
16. ----------------------
    
17. 扫描后自动关机: 否
    
18. 扫描模式: 速度最快
    
19. 管理员：是
    
20. 
    
21. 扫描内容
    
22. ----------------------
    
23. D:\SLF\Downloads\病毒样本14个\
    
24. 
    
25. 白名单设置
    
26. ----------------------
    
27. 
    
28. 扫描结果
    
29. ======================
    
30. 
    
31. 危险文件：9个
    
32. ----------------------------------------------------------------
    
33. D:\SLF\Downloads\病毒样本14个\01.bin 69287fe5e8284a1e3cd605c93dfa2f7a 70,2,70,2000,256,1,100 [云安全引擎][木马-Win32/Trojan.bc6][隔离文件][处理成功]
    
34. D:\SLF\Downloads\病毒样本14个\03.bin e61c0e180c2616fa81e6c4d581a9520e 70,32,70,2000,256,1,100 [云安全引擎][木马-HEUR/QVM19.1.FF03.Malware.Gen][隔离文件][处理成功]
    
35. D:\SLF\Downloads\病毒样本14个\Arcane Stealer.bin acf174857eae1f2d4f9ded12fd75e921 70,0,70,2000,256,1,100 [云安全引擎][木马-Win32/Trojan.Spy.c0f][隔离文件][处理成功]
    
36. D:\SLF\Downloads\病毒样本14个\getformsfree.88c850d89bb0422691b9ae82a6d69a77.bin 26f00c257d99c9b8d690cdb2a494ae17 70,3,70,2000,256,1,100 [云安全引擎][木马-Win32/Virus.WebToolbar.5bb][隔离文件][处理成功]
    
37. D:\SLF\Downloads\病毒样本14个\iesdl.cgi b860cf8c4cb5dc676ef4893a704c9f8d 70,3,70,2000,256,1,100 [云安全引擎][木马-Win32/Virus.Adware.f5d][隔离文件][处理成功]
    
38. D:\SLF\Downloads\病毒样本14个\PAYMENT COPY.bin baa429563ee135cd40b2da1bed405825 70,0,30,2044,256,1,100 [云特征引擎][木马-HEUR/QVM03.0.1779.Malware.Gen][隔离文件][处理成功]
    
39. D:\SLF\Downloads\病毒样本14个\pcchecker 4dc30e02b2ee11311ec6c90a5b5d0034 70,1,70,2000,256,1,100 [云安全引擎][木马-Win32/Trojan.a91][隔离文件][处理成功]
    
40. D:\SLF\Downloads\病毒样本14个\set_update.bin c263fa46bfe2c704b0ce2b8634324ef0 70,1,70,2000,256,1,100 [云安全引擎][木马-Win32/Trojan.PSW.af1][隔离文件][处理成功]
    
41. D:\SLF\Downloads\病毒样本14个\unk_sample2.bin 88af41c5997c0feb4fde99716b2f0bfe 70,0,40,2044,256,1,100 [云特征引擎][木马-HEUR/QVM20.1.1779.Malware.Gen][隔离文件][处理成功]
    

复制代码

小Q机器人

卡巴斯基扫描杀 8个+1个黄色的都清理后， 剩下5个，

a233

Avast Kill 10x(实杀)剩4个

温馨小屋

BD6个

a233

火绒Kill 5X。。剩9个

小Q机器人

多引擎扫描器（BD+卡巴+自带）  9杀

Jerry.Lin

1. Malwarebytes
   
2. www.malwarebytes.com
   
3. 
   
4. -Log Details-
   
5. Scan Date: 5/10/19
   
6. Scan Time: 10:49 PM
   
7. Log File: d5a93772-7332-11e9-9242-985fd3d3c7d2.json
   
8. 
   
9. -Software Information-
   
10. Version: 3.7.1.2839
    
11. Components Version: 1.0.586
    
12. Update Package Version: 1.0.10546
    
13. License: Premium
    
14. 
    
15. -System Information-
    
16. OS: Windows 10 (Build 17763.475)
    
17. CPU: x64
    
18. File System: NTFS
    
19. User: DESKTOP-VPBE70N\zhong
    
20. 
    
21. -Scan Summary-
    
22. Scan Type: Custom Scan
    
23. Scan Initiated By: Manual
    
24. Result: Completed
    
25. Objects Scanned: 14
    
26. Threats Detected: 8
    
27. Threats Quarantined: 0
    
28. Time Elapsed: 1 min, 41 sec
    
29. 
    
30. -Scan Options-
    
31. Memory: Disabled
    
32. Startup: Disabled
    
33. Filesystem: Enabled
    
34. Archives: Enabled
    
35. Rootkits: Disabled
    
36. Heuristics: Enabled
    
37. PUP: Detect
    
38. PUM: Detect
    
39. 
    
40. -Scan Details-
    
41. Process: 0
    
42. (No malicious items detected)
    
43. 
    
44. Module: 0
    
45. (No malicious items detected)
    
46. 
    
47. Registry Key: 0
    
48. (No malicious items detected)
    
49. 
    
50. Registry Value: 0
    
51. (No malicious items detected)
    
52. 
    
53. Registry Data: 0
    
54. (No malicious items detected)
    
55. 
    
56. Data Stream: 0
    
57. (No malicious items detected)
    
58. 
    
59. Folder: 0
    
60. (No malicious items detected)
    
61. 
    
62. File: 8
    
63. PUP.Optional.MindSpark, C:\USERS\ZHONG\DOWNLOADS\COMPRESSED\卡饭\病毒样本14个\病毒样本14个\GETFORMSFREE.88C850D89BB0422691B9AE82A6D69A77.BIN, No Action By User, [632], [365288],1.0.10546
    
64. RiskWare.FlyStudio, C:\USERS\ZHONG\DOWNLOADS\COMPRESSED\卡饭\病毒样本14个\病毒样本14个\03.BIN, No Action By User, [7658], [678812],1.0.10546
    
65. Trojan.BitCoinMiner, C:\USERS\ZHONG\DOWNLOADS\COMPRESSED\卡饭\病毒样本14个\病毒样本14个\01.BIN, No Action By User, [624], [680526],1.0.10546
    
66. Adware.BrowserIO, C:\USERS\ZHONG\DOWNLOADS\COMPRESSED\卡饭\病毒样本14个\病毒样本14个\IESDL.CGI, No Action By User, [700], [672137],1.0.10546
    
67. MachineLearning/Anomalous.100%, C:\USERS\ZHONG\DOWNLOADS\COMPRESSED\卡饭\病毒样本14个\病毒样本14个\ARCANE STEALER.BIN, No Action By User, [0], [392687],1.0.10546
    
68. Generic.Malware/Suspicious, C:\USERS\ZHONG\DOWNLOADS\COMPRESSED\卡饭\病毒样本14个\病毒样本14个\PCCHECKER, No Action By User, [0], [392686],1.0.10546
    
69. Generic.Malware/Suspicious, C:\USERS\ZHONG\DOWNLOADS\COMPRESSED\卡饭\病毒样本14个\病毒样本14个\PAYMENT COPY.BIN, No Action By User, [0], [392686],1.0.10546
    
70. MachineLearning/Anomalous.95%, C:\USERS\ZHONG\DOWNLOADS\COMPRESSED\卡饭\病毒样本14个\病毒样本14个\SET_UPDATE.BIN, No Action By User, [0], [392687],1.0.10546
    
71. 
    
72. Physical Sector: 0
    
73. (No malicious items detected)
    
74. 
    
75. WMI: 0
    
76. (No malicious items detected)
    
77. 
    
78. 
    
79. (end)

复制代码

a233

a233 发表于 2019-5-10 22:39
Avast Kill 10x(实杀)剩4个

双击
SandboxieInstall 是一个沙盘软件的安装程序
unk_sample2 双击被DeepScreen拦截
Phish Alert  FW  Logging into the NEW Chrome River Help Desk 需要安装NTVDM，我就不安装了
CTG Version 13.0 一个登录程序，不知道用来干啥的

飞碟1234