搜索
楼主: www-tekeze
收起左侧

[病毒样本] 样本集奉上_124

  [复制链接]
暗_黑
发表于 2019-8-8 08:15:37 | 显示全部楼层
www-tekeze 发表于 2019-6-17 21:42
安天智甲,32X 。。。管家无BD,144X 。

安天现在杀198x

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x

评分

参与人数 1人气 +1 收起 理由
www-tekeze + 1 快二个月了

查看全部评分

谈谈MEMZ
发表于 2019-8-8 11:13:43 | 显示全部楼层
2108488816 发表于 2019-8-7 22:40
嗯哼?( ̄? ̄)关掉virscan引擎,感觉太占时间了

还好吧
aqingge2012
发表于 2019-8-8 14:48:41 | 显示全部楼层
360  144

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
Time-R
发表于 2019-8-8 16:02:30 | 显示全部楼层
管家国际剩一个
  1. [Scan information]

  2. Start time:2019-8-8 15:52:15
  3. Elapsed time:00:00:17
  4. Scan type:Custom scan
  5. Antivirus engines:Tencent cloud protection engine    Tencent antivirus engine II    Tencent system repair engine    Bitdefender local antivirus engine   
  6. Scan status:Scan complete


  7. [Scan Report]

  8. Files scanned:230
  9. Threats detected:230
  10. Threats processed:230


  11. ---------------------
  12. 2019-8-8 15:52:38 MD5:51f0c565578b73d73ea33711079060ae C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(155).eml --> [Subject: Order 34444 (Acknowledgement)][Date: Thu, 03 Nov 2016 21:06:29 +0530]=>qdRIae34444.zip --> JGhAff4039-0371.vbs [Trojan.VBS.Downloader.ZC]  [Delete success]
  13. 2019-8-8 15:52:40 MD5:6be9481321e89731db45fc15eecdbfc8 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(176).eml --> [Subject: Purchasing order][Date: Tue, 28 Jul 2015 21:10:50 +0700]=>PURCHASING Order.jar --> RRMq0vPQRIVr1iT5haMPpP5PlmbY9P2HfYq79oZI7t3pSKMVD5D8qfj62zhy69viayX69sTPQQmGSgoFFogRapKA6cdakTIhXhcRSnz7dyuGP4cdMSA5BzLITIe7f2vnKLEVSTx9cE81y0fCLoODxAWQkbMjMtPKDz8VLSXQB06Fps2DeW85T185wOt2CfCJLnYObkRJ1KSpI03b552BrHP1h0bbwBfYHObdEH35X0H1dvoPAXUfALz7PbKSugChcZuaVYMCNU7DDCJHngb6cOALIiIiiIiIII.class [Java.Trojan.GenericGB.19948]  [Delete success]
  14. 2019-8-8 15:52:40 MD5:7dcdb7bf1c7cc791576b54c74f68677b C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(29).eml --> [Subject: Third Reminder - Outstanding Account][Date: Tue, 03 May 2016 18:30:11 +0700]=>Document_943.zip --> 17656_17656 - copy (2).js --> (INFECTED_JS) [JS:Trojan.JS.Downloader.IK]  [Delete success]
  15. 2019-8-8 15:52:40 MD5:2b2ad14be9c5cc51e38e79ec7d22acdc C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(64).eml --> [Subject: =?iso-2022-jp?B?OBskQjduRVlAQTVhPXEkTjdvGyhC?=[4737]][Date: Tue, 3 Oct 2017 09:13:20 +0100]=>48_=?iso-2022-jp?b?gyrcmj5kvklkrexdtj1xgyhclnhscw==?= [X97m.Downloader.DL]  [Delete success]
  16. 2019-8-8 15:52:40 MD5:10b04c27dc984c5647a4b9b30f6b5ae5 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(136).eml --> [Subject: Pamyu!][Date: Tue, 26 Feb 2019 08:49:48 +0900]=>PIC024785960-JPG.zip --> PIC024785960-JPG.js --> (INFECTED_JS) [JS:Trojan.Cryxos.2012]  [Delete success]
  17. 2019-8-8 15:52:41 MD5:940a4352c8e062058861289a7d83fb3e C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(183).eml --> [Subject: Please find attached a XLS Invoice 84170][Date: Tue, 29 Nov 2016 14:31:39 +0530]=>INVOICE.TAM_84170_20161129_91A729B75.xls [Trojan.Doc.Downloader.WN]  [Delete success]
  18. 2019-8-8 15:52:41 MD5:8c4e8da773f677cae6623cea8f14392d C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(191).eml --> [Subject: Invoice Due][Date: Tue, 21 Aug 2018 19:15:58 +0200]=>invoice.doc --> (Encrypted Package) --> word/vbaProject.bin [W97m.Downloader.HIP]  [Delete success]
  19. 2019-8-8 15:52:41 MD5:e86ac2d87c2c0da35f1db38c22fbcccd C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(117).eml --> [Subject: Hayashibara!][Date: Mon, 25 Feb 2019 23:25:41 -0800]=>PIC02859240-JPG.zip --> PIC02859240-JPG.js [Trojan.Agent.DQKK]  [Delete success]
  20. 2019-8-8 15:52:42 MD5:1efcb092ad9b1e425116aa76a75e7213 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(47).eml --> [Subject: Miki Imai!][Date: Mon, 25 Feb 2019 12:32:00 +0400]=>PIC025374536-JPG.zip --> PIC025374536-JPG.js [Trojan.Agent.DQGD]  [Delete success]
  21. 2019-8-8 15:52:42 MD5:23bba245cd0eda22ae223d542e4f3e1a C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(158).eml --> [Subject: Re: Re: REQUEST FOR QUOTATION SK BEND ENGINEERING AND CONS][Date: 27 Feb 2018 00:01:31 +0100]=>Specification.doc --> (objdata) --> (REMOVED_NULLS) --> (INFECTED_JS) [JS:Trojan.Cryxos.1958]  [Delete success]
  22. 2019-8-8 15:52:42 MD5:4971dd299d841bdf879aa0799d2c7985 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(21).eml --> [Subject: uk_confirmation_ph509214426.pdf][Date: Thu, 30 Mar 2017 11:02:57 -0200]=>uk_confirmation_ph509214426.zip --> uk_confirmation_ph954869378.zip --> uk_confirmation_ph954869378.exe [Trojan.Agent.CFKS]  [Delete success]
  23. 2019-8-8 15:52:43 MD5:87e4fae23be1e9ca014076cdb5eb765a C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(35).eml --> [Subject: Your Booking 269418][Date: Thu, 30 Mar 2017 16:23:54 +0700]=>Direct-Documentation 269418-1.zip --> Direct-Documentation 1530219.zip --> Direct-Documentation 1530219/Direct-Documentation 1530219.vbs [VB:Trojan.Valyria.330]  [Delete success]
  24. 2019-8-8 15:52:43 MD5:d6f52afd598a212455269e1e34d3e053 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(141).eml --> [Subject: Please find attached invoice no: 876792565859][Date: Mon, 21 Nov 2016 16:06:37 +0700]=>pm09BA8F5.zip --> WXVAQF951210.js [Trojan.RanSerKD.3737508]  [Delete success]
  25. 2019-8-8 15:52:43 MD5:221789c0536f02aed63b4b361c54b1e9 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(97).eml --> [Subject: подробности заказа][Date: Wed, 26 Dec 2018 14:12:45 +0300]=>info.zip --> zakaz.7954.docx.zip --> информация о заказе.js --> (INFECTED_JS) [JS:Trojan.Agent.DMMG]  [Delete success]
  26. 2019-8-8 15:52:43 MD5:12ce206d2b5d29a839bc0d75a766e6ba C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(173).eml --> [Subject: Is this you??][Date: Tue, 26 Feb 2019 19:42:45 +0600]=>PIC04083496-JPG.zip --> PIC04083496-JPG.js [Trojan.Agent.DQJX]  [Delete success]
  27. 2019-8-8 15:52:43 MD5:407faa2c44fc1e6cc6beb2b08d261d24 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(106).eml --> [Subject: Your Booking 2858688][Date: Thu, 30 Mar 2017 12:28:34 +0300]=>Direct-Documentation 2858688-1.zip --> Direct-Documentation 1530219.zip --> Direct-Documentation 1530219/Direct-Documentation 1530219.vbs [VB:Trojan.Valyria.330]  [Delete success]
  28. 2019-8-8 15:52:44 MD5:d743f91713ffcd03298686db80484413 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(42).eml --> [Subject: подробности заказа][Date: Wed, 26 Dec 2018 09:31:52 +0200]=>info.zip --> zakaz.9783.docx.zip --> информация о заказе.js --> (INFECTED_JS) [JS:Trojan.Agent.DMMG]  [Delete success]
  29. 2019-8-8 15:52:44 MD5:f694b2d9690d9109f1e6292617b3e198 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(84).eml --> [Subject: My love letter for you][Date: Tue, 8 Jan 2019 02:09:27 +0100]=>Love_You_8801848-2019-txt.zip --> Love_You_8801848-2019-txt.js [Trojan.Agent.DNBH]  [Delete success]
  30. 2019-8-8 15:52:44 MD5:ce55aba810f687e09c9d4affac4cc029 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(163).eml --> [Subject: Invio Fattura][Date: Wed, 18 Apr 2018 13:28:17 +0100]=>Fatture_582_2018.xls [VB.Chronos.4.Gen]  [Delete success]
  31. 2019-8-8 15:52:44 MD5:5d37ec248deb441c357e9e21aa5ad209 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(26).eml --> [Subject: =Scanned DUC-Invoice][Date: Thu, 30 Jul 2015 20:16:04 -0400]=>Invoice.jar --> Main.class [Java.Trojan.Adwind.BM]  [Delete success]
  32. 2019-8-8 15:52:44 MD5:a8eb015951a230b3c344285a666f3ca8 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(73).eml --> [Subject: Re: Re: Please send us your catalogs and full price-list][Date: Tue, 30 Jan 2018 07:22:12 -0800]=>Full list.doc [Trojan.RTF.Agent.G]  [Delete success]
  33. 2019-8-8 15:52:45 MD5:dd5b05a09f7bb96cb818ad931c397b7d C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(129).eml --> [Subject: Payroll Tax Payment][Date: Tue, 19 Jun 2018 10:21:56 -0600]=>Payroll Tax Payment.doc [W97M.Downloader.GXM]  [Delete success]
  34. 2019-8-8 15:52:45 MD5:77417add6fec34d377f759187bad4bb0 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(92).eml --> [Subject: Rechnung 06521887908 [recipient's name]][Date: Tue, 14 Aug 2018 15:58:17 +0530]=>Rechnung 06521887908.doc [VB:Trojan.Downloader.JUJU]  [Delete success]
  35. 2019-8-8 15:52:45 MD5:14a58e973129d60085c9f29f48dc770c C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(77).eml --> [Subject: Always thinking about you][Date: Tue, 8 Jan 2019 06:20:11 +0500]=>Love_You_36450240-2019-txt.zip --> Love_You_36450240-2019-txt.js --> (INFECTED_JS) [JS:Trojan.Cryxos.1964]  [Delete success]
  36. 2019-8-8 15:52:45 MD5:5409102457efc1daf20d9e99d8e8917f C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(188).eml --> [From: <rbrown@rsu13.org>][Date: Wed, 18 Jan 2017 04:11:37 -0000]=>EMAIL_040615_[recipient].zip --> (dummy) [Trojan.Oroles.Gen.2]  [Delete success]
  37. 2019-8-8 15:52:45 MD5:fa6f7b79fefb66c9c09237f93552e366 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(112).eml --> [Subject: Unpaid Fine - Case No.815829][Date: Thu, 28 Apr 2016 20:33:08 +0700]=>copy_richard_815829.zip --> details.jse [Exploit.SpamMalware-ZIP.Gen]  [Delete success]
  38. 2019-8-8 15:52:45 MD5:1f8e3a62d892edfca0d8ea1815499143 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(55).eml --> [Subject: Updated][Date: Tue, 28 Jun 2016 01:32:41 +0300]=>lyn_updated_doc_240360.zip --> swift 24a2.js [Generic.JS.DownloaderAG.52D7D58C]  [Delete success]
  39. 2019-8-8 15:52:46 MD5:a9c5ae2fcab368e6253c7e93a8a884ca C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(154).eml --> [Subject: 30613 [recipient]][Date: Thu, 20 Apr 2017 14:39:55 -0000]=>4766159.zip --> 25891.js --> (INFECTED_JS) [JS:Trojan.Downloader.JSAgent.L]  [Delete success]
  40. 2019-8-8 15:52:47 MD5:367ad2bf25d7e928408acd2a934b7c1d C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(85).eml --> [Subject: Please find attached a XLS Invoice 875063][Date: Tue, 29 Nov 2016 15:32:25 +0600]=>INVOICE.TAM_875063_20161129_B2D8CF86B.xls [Trojan.GenericKD.3790291]  [Delete success]
  41. 2019-8-8 15:52:48 MD5:7dcdb7bf1c7cc791576b54c74f68677b C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(29).eml --> [Subject: Third Reminder - Outstanding Account][Date: Tue, 03 May 2016 18:30:11 +0700]=>Document_943.zip --> 17656_17656 - copy (3).js --> (INFECTED_JS) [JS:Trojan.JS.Downloader.IK]  [Delete success]
  42. 2019-8-8 15:52:48 MD5:9ae29a88af6f2f267455229a07d40d3d C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(62).eml --> [Subject: подробности заказа][Date: Wed, 26 Dec 2018 17:16:53 +0900 (JST)]=>info.zip --> zakaz.0651.docx.zip --> информация о заказе.js --> (INFECTED_JS) [JS:Trojan.Agent.DMMG]  [Delete success]
  43. 2019-8-8 15:52:48 MD5:58aa804bcb47bb8d28887e1319203fe9 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(134).eml --> [Subject: подробности заказа][Date: Thu, 27 Dec 2018 11:12:00 +0100]=>info.zip --> zakaz.3529.docx.zip --> информация о заказе.js --> (INFECTED_JS) [JS:Trojan.Cryxos.1939]  [Delete success]
  44. 2019-8-8 15:52:49 MD5:36da86df1a2b91778a7bf93a155a1ef8 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(182).eml --> [Subject: Try Windows 11 today trial download now.][Date: Tue, 10 Jul 2018 13:41:41 +0000]=>uzu37hjq.jpg [Gen:Variant.Midie.6815]  [Delete success]
  45. 2019-8-8 15:52:49 MD5:0c4f7b98a152bd313cfa147bfb163b22 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(116).eml --> [Subject: Kyoko Fukada!][Date: Mon, 25 Feb 2019 20:57:50 +0200]=>PIC036013464-JPG.zip --> PIC036013464-JPG.js [Trojan.JS.Agent.TBF]  [Delete success]
  46. 2019-8-8 15:52:49 MD5:347ddbe3e205f072b61e9351dbd003d4 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(45).eml --> [Subject: Kyary Pamyu!][Date: Tue, 26 Feb 2019 17:59:27 +0600]=>PIC06966904-JPG.zip --> PIC06966904-JPG.js [Trojan.Agent.DQJX]  [Delete success]
  47. 2019-8-8 15:52:49 MD5:23bba245cd0eda22ae223d542e4f3e1a C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(158).eml --> [Subject: Re: Re: REQUEST FOR QUOTATION SK BEND ENGINEERING AND CONS][Date: 27 Feb 2018 00:01:31 +0100]=>Specification.doc --> (objdata) --> (Package) --> (INFECTED_JS) [JS:Trojan.Cryxos.1958]  [Delete success]
  48. 2019-8-8 15:52:49 MD5:f3ad0f1539d66a23794a97a5c865fedf C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(200).eml --> [Subject: RE:signed contract and invoice][Date: 09 Mar 2018 21:15:12 -0800]=>contract_2018870028.zip --> contract_2018870028.exe [Trojan.GenericKD.30387513]  [Delete success]
  49. 2019-8-8 15:52:49 MD5:358cf0126b2f8961e46b9cb605095763 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(121).eml --> [Subject: File COPY.29112016.3054.XLS Sent 29/11/2016][Date: Tue, 29 Nov 2016 19:51:29 +0530]=>COPY.29112016.3054.XLS [Trojan.GenericKD.3789563]  [Delete success]
  50. 2019-8-8 15:52:50 MD5:fb9d80a6d9f0e073ed999d49840318fb C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(140).eml --> [Subject: ][Date: Wed, 04 Oct 2017 11:54:48 -0000]=>22370027.zip --> 7642.zip --> 7642.js --> (INFECTED_JS) [JS:Trojan.Cryxos.1289]  [Delete success]
  51. 2019-8-8 15:52:50 MD5:70bb49a53bcf83ca1c2c7c8851f53e9b C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(96).eml --> [Subject: Account secure documents ][Date: Wed, 26 Jul 2017 13:22:47 -0400]=>PaymentAdvice.doc [W97m.Downloader.GBC]  [Delete success]
  52. 2019-8-8 15:52:50 MD5:9a80d616d29d2ff193f436aea3121cee C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(172).eml --> [Subject: ][Date: Tue, 27 Jun 2017 16:29:16 -0000]=>email_4278277780980_[recipient's name].zip --> 26715.zip --> 26715.js --> (INFECTED_JS) [JS.Remucod.2.Gen]  [Delete success]
  53. 2019-8-8 15:52:50 MD5:04e200fe9dac7b94ec429678a59d6d4b C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(105).eml --> [Subject: Invoice NZW0207188][Date: Mon, 11 Dec 2017 06:17:33 -0700]=>(message body) --> (base64) [W97m.Downloader.GNQ]  [Delete success]
  54. 2019-8-8 15:52:50 MD5:f4e78bb5c3c82effbd86a8ea71beaaa8 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(41).eml --> [Subject: Invoice Code Changes][Date: Mon, 14 Jan 2019 10:03:19 -0600]=>COPY_ACH_28693574085774094825.doc [VB:Trojan.VBS.Agent.AZH]  [Delete success]
  55. 2019-8-8 15:52:50 MD5:bc1c4cd247fd6f5e0d8c59478674ad44 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(148).eml --> [From: <andreas.nilsson@norstat.se>][Date: Fri, 13 Jan 2017 18:54:04 -0000]=>62274826.zip --> 23183.doc [VB:Trojan.Valyria.93]  [Delete success]
  56. 2019-8-8 15:52:51 MD5:7b9e6a4eab48f0ee3b0bb84a09ed71d4 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(162).eml --> [Subject: ][Date: Tue, 27 Jun 2017 15:31:44 -0000]=>email_28216420779782_[recipient's name].zip --> 3047.zip --> 3047.js [Trojan.GenericKD.5513547]  [Delete success]
  57. 2019-8-8 15:52:51 MD5:d6fd9bfbad794ac90ae49e048777b332 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(74).eml --> [Subject: Windows 11 free download.][Date: Tue, 10 Jul 2018 08:15:11 +0000]=>o64b355.jpg [Trojan.AgentWDCR.NPU]  [Delete success]
  58. 2019-8-8 15:52:51 MD5:5d37ec248deb441c357e9e21aa5ad209 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(26).eml --> [Subject: =Scanned DUC-Invoice][Date: Thu, 30 Jul 2015 20:16:04 -0400]=>Invoice.jar --> RRMq0vPQRIVr1iT5haMPpP5PlmbY9P2HfYq79oZI7t3pSKMVD5D8qfj62zhy69viayX69sTPQQmGSgoFFogRapKA6cdakTIhXhcRSnz7dyuGP4cdMSA5BzLITIe7f2vnKLEVSTx9cE81y0fCLoODxAWQkbMjMtPKDz8VLSXQB06Fps2DeW85T185wOt2CfCJLnYObkRJ1KSpI03b552BrHP1h0bbwBfYHObdEH35X0H1dvoPAXUfALz7PbKSugChcZuaVYMCNU7DDCJHngb6cOALIiIiIiIIii.class [Java.Trojan.Adwind.AM]  [Delete success]
  59. 2019-8-8 15:52:51 MD5:5fa91215acff8e1ecc24a918e98caec0 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(128).eml --> [Subject: Windows 11 free download.][Date: Tue, 10 Jul 2018 09:49:30 +0000]=>mkhwc.jpg [Trojan.AgentWDCR.NPU]  [Delete success]
  60. 2019-8-8 15:52:51 MD5:0ec87f27aa85feb3bf0db6c0801b9ac2 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(91).eml --> [Subject: Invoice 5635][Date: Thu, 17 Jan 2019 11:08:41 -0600]=>DOC-5635.doc [Trojan.GenericKD.31536951]  [Delete success]
  61. 2019-8-8 15:52:51 MD5:6df87a939069b81c50d93a5ce4e23ce3 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(169).eml --> [Subject: ][Date: Wed, 04 Oct 2017 16:01:46 -0000]=>27456315509787.zip --> 23143.zip --> 23143.js --> (INFECTED_JS) [JS:Trojan.Cryxos.1302]  [Delete success]
  62. 2019-8-8 15:52:52 MD5:ea65731a8dc37ff7c03fdc5659267362 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(76).eml --> [Subject: Document invoice_4416_sign_and_return.pdf is complete][Date: Tue, 10 Oct 2017 18:27:39 +0700]=>invoice_4416_sign_and_return.7z --> invoice_45399_sign_and_return.vbs [VB:Trojan.Agent.COFZ]  [Delete success]
  63. 2019-8-8 15:52:52 MD5:b5f13b524e1ae19dd3b3797c6d07c145 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(186).eml --> [Subject: Emailing: BU1529 - 12.12.2017][Date: Tue, 12 Dec 2017 13:55:24 +0700]=>BU1529 - 12.12.2017.doc [W97m.Downloader.GNQ]  [Delete success]
  64. 2019-8-8 15:52:52 MD5:ba1e8eb11eeb46c6b03974a2e0333772 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(111).eml --> [Subject:  Important secure information about your NatWest account][Date: Wed, 28 Mar 2018 06:26:12 -0400]=>SecureMessage.doc [W97M.Downloader.GRZ]  [Delete success]
  65. 2019-8-8 15:52:53 MD5:fc39359babcdb0c2655e0fa5bb47e5e1 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(54).eml --> [Subject: 52100758447015][Date: Tue, 19 Jun 2018 15:42:59 -0600]=>52100758447015.doc [W97M.Downloader.GXM]  [Delete success]
  66. 2019-8-8 15:52:53 MD5:a9c5ae2fcab368e6253c7e93a8a884ca C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(154).eml --> [Subject: 30613 [recipient]][Date: Thu, 20 Apr 2017 14:39:55 -0000]=>4766159.zip --> (dummy) [Trojan.Oroles.Gen.8]  [Delete success]
  67. 2019-8-8 15:52:53 MD5:4ac470cd7e08c286233e3cdd10075ebd C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(83).eml --> [Subject: Kasumi Arimura!][Date: Tue, 26 Feb 2019 17:20:45 +0500]=>PIC0237704-JPG.zip --> PIC0237704-JPG.js [Trojan.Agent.DQJX]  [Delete success]
  68. 2019-8-8 15:52:54 MD5:3fa4bd198573600aab81d23f96c20429 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(190).eml --> [Subject: Problems with item delivery, n.05395337][Date: Tue, 18 Jul 2017 07:12:17 -0500]=>UPS-Receipt-05395337.zip --> UPS-Receipt-05395337/UPS-Receipt-05395337.doc.js --> (INFECTED_JS) [JS:Trojan.JS.Agent.TO]  [Delete success]
  69. 2019-8-8 15:52:55 MD5:7b41494aa78a91f9d21f986666854890 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(63).eml --> [Subject: 428247 =?iso-2022-jp?B?GyRCIVo4eDYmTkE2YkBBNWE9cSVHITwlP0F][Date: Wed, 6 Sep 2017 16:11:46 +0900]=>=?iso-2022-jp?b?gyrco1lkj0vbstwhshsoqjiwmtcumdkumduplnhscw= [VB:Trojan.VBA.Agent.LW]  [Delete success]
  70. 2019-8-8 15:52:57 MD5:7dcdb7bf1c7cc791576b54c74f68677b C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(29).eml --> [Subject: Third Reminder - Outstanding Account][Date: Tue, 03 May 2016 18:30:11 +0700]=>Document_943.zip --> 17656_17656 - copy (4).js --> (INFECTED_JS) [JS:Trojan.JS.Downloader.IK]  [Delete success]
  71. 2019-8-8 15:52:57 MD5:db4107292d9124b72c58c5af0840d89b C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(135).eml --> [Subject: Try Windows 11 today trial download now.][Date: Tue, 10 Jul 2018 09:01:59 +0000]=>l0dl15fq.jpg [Trojan.AgentWDCR.NPU]  [Delete success]
  72. 2019-8-8 15:52:58 MD5:4b2fa2355dd37d6f93880fb8da4fe4ff C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(181).eml --> [Subject: PDF_575483][Date: Thu, 28 Dec 2017 02:28:16 +0700]=>pdf_575483.7z --> File_21819165.js [Trojan.JS.Downloader.IGK]  [Delete success]
  73. 2019-8-8 15:52:58 MD5:ca6a6381c9011bcb072c303a009fb2a9 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(34).eml --> [Subject: PDF_98306][Date: Wed, 27 Dec 2017 22:53:18 +0700]=>pdf_98306.7z --> File_21819165.js [Trojan.JS.Downloader.IGK]  [Delete success]
  74. 2019-8-8 15:52:59 MD5:d4e7d245232c303fe201382f77198a1b C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(115).eml --> [Subject: ][Date: Wed, 28 Jun 2017 07:32:59 -0000]=>email_354518_[recipient's name].zip --> 27465.zip --> 27465.js --> (INFECTED_JS) [JS:Trojan.Cryxos.960]  [Delete success]
  75. 2019-8-8 15:52:59 MD5:1dac9e1ad69e42a76778143152fad738 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(46).eml --> [Subject: You are my love!][Date: Tue, 26 Feb 2019 16:05:21 +0600]=>PIC0822857784-JPG.zip --> PIC0822857784-JPG.js [Trojan.Agent.DQJX]  [Delete success]
  76. 2019-8-8 15:53:00 MD5:23bba245cd0eda22ae223d542e4f3e1a C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(158).eml --> [Subject: Re: Re: REQUEST FOR QUOTATION SK BEND ENGINEERING AND CONS][Date: 27 Feb 2018 00:01:31 +0100]=>Specification.doc --> (objdata) --> (Embedded DocFile g) [Exploit.CVE-2017-8570.Gen]  [Delete success]
  77. 2019-8-8 15:53:00 MD5:f6bcabead0278e5e59c845cb525664dd C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(20).eml --> [Subject: Website Job Application][Date: Wed, 15 Nov 2017 09:59:39 +0100]=>Nancy's Resume.doc [VB:Trojan.Valyria.983]  [Delete success]
  78. 2019-8-8 15:53:01 MD5:66065b9dbfe8b756e647a6d3d661f2f8 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(120).eml --> [Subject: Regarding Job][Date: Fri, 10 May 2019 01:59:39 +0200]=>Homer resume.doc --> (Encrypted Package) --> word/vbaProject.bin [W97M.Downloader.IAB]  [Delete success]
  79. 2019-8-8 15:53:01 MD5:4f903f4db383d0ee7a7808a512f738aa C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(50).eml --> [Subject: Regarding position][Date: Fri, 26 Apr 2019 21:09:50 +0200]=>Rhiannon resume.doc --> (Encrypted Package) --> word/vbaProject.bin [W97M.Downloader.IAB]  [Delete success]
  80. 2019-8-8 15:53:02 MD5:fb9d80a6d9f0e073ed999d49840318fb C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(140).eml --> [Subject: ][Date: Wed, 04 Oct 2017 11:54:48 -0000]=>22370027.zip --> 7642.zip --> (dummy) [Trojan.Oroles.Gen.8]  [Delete success]
  81. 2019-8-8 15:53:02 MD5:3bb26c855446ac5723f36a1716b7847e C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(95).eml --> [Subject: Try Windows 11 today trial download now.][Date: Tue, 10 Jul 2018 12:32:36 +0000]=>3yo519.jpg [Gen:Variant.Midie.6815]  [Delete success]
  82. 2019-8-8 15:53:02 MD5:9a80d616d29d2ff193f436aea3121cee C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(172).eml --> [Subject: ][Date: Tue, 27 Jun 2017 16:29:16 -0000]=>email_4278277780980_[recipient's name].zip --> 26715.zip --> (dummy) [Trojan.Oroles.Gen.8]  [Delete success]
  83. 2019-8-8 15:53:02 MD5:0f9ce1e7013fd5d02371af0a88395d66 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(104).eml --> [Subject: 35571 [recipient's name from email address]][Date: Fri, 13 Jan 2017 08:37:16 -0000]=>09488786419-[recipient].zip --> 2589.doc [VB:Trojan.VBA.Downloader.CQ]  [Delete success]
  84. 2019-8-8 15:53:02 MD5:515604f11948cc2200dd334a9dd2e50f C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(40).eml --> [Subject: Please find attached a XLS Invoice 139603][Date: Tue, 29 Nov 2016 18:26:21 +0530]=>INVOICE.TAM_139603_20161129_FCC172411.xls [Trojan.GenericKD.3790235]  [Delete success]
  85. 2019-8-8 15:53:02 MD5:747da073c05efcee9a0baf8a6b86f77d C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(147).eml --> [Subject: Case F44-L4-HEU][Date: Wed, 9 May 2018 09:11:14 -0700]=>scan_ LHA-3P-LZI.doc --> (Encrypted Package) --> word/vbaProject.bin [VB:Trojan.VBA.Agent.XL]  [Delete success]
  86. 2019-8-8 15:53:03 MD5:b06ad90ed34c596873cf3777687ae32e C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(196).eml --> [Subject: [recipient's name] Receipt for your invoice][Date: Fri, 08 Mar 2019 10:21:44 -0400]=>eInvoice_receipt_955141.doc --> (binData) --> (Active Mime) [W97M.Downloader.HXU]  [Delete success]
  87. 2019-8-8 15:53:03 MD5:7b9e6a4eab48f0ee3b0bb84a09ed71d4 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(162).eml --> [Subject: ][Date: Tue, 27 Jun 2017 15:31:44 -0000]=>email_28216420779782_[recipient's name].zip --> 3047.zip --> (dummy) [Trojan.Oroles.Gen.8]  [Delete success]
  88. 2019-8-8 15:53:03 MD5:97fe8f05e34272e2400eb17c1348317b C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(25).eml --> [Subject: Please find attached invoice no: 100063684][Date: Mon, 21 Nov 2016 17:28:56 +0800]=>pm85CD0.zip --> OSLELN972414.js --> (INFECTED_JS) [JS:Trojan.JS.Downloader.HAZ]  [Delete success]
  89. 2019-8-8 15:53:03 MD5:cd2e696155340eb4c2c9b073d47da562 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(72).eml --> [Subject: Just for you!][Date: Mon, 7 Jan 2019 19:08:36 -0600]=>Love_You_26943288-2019-txt.zip --> Love_You_26943288-2019-txt.js --> (INFECTED_JS) [JS:Trojan.Cryxos.1964]  [Delete success]
  90. 2019-8-8 15:53:03 MD5:ee46eeacfe4f65e10c1eea6b96fb6f72 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(127).eml --> [Subject:  New Message Received ][Date: Thu, 24 May 2018 07:40:52 -0400]=>SecuredMessage.doc [VB:Trojan.Valyria.1787]  [Delete success]
  91. 2019-8-8 15:53:03 MD5:24ae5d445f32f9b6a3a017568bc71361 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(90).eml [Trojan.GenericKD.5592218]  [Delete success]
  92. 2019-8-8 15:53:27 MD5:6df87a939069b81c50d93a5ce4e23ce3 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(169).eml --> [Subject: ][Date: Wed, 04 Oct 2017 16:01:46 -0000]=>27456315509787.zip --> 23143.zip --> (dummy) [Trojan.Oroles.Gen.8]  [Delete success]
  93. 2019-8-8 15:53:27 MD5:929e44aac547b272208c9452508201b8 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(185).eml --> [Subject: Scan][Date: Fri, 29 Dec 2017 16:12:29 +0530]=>Scan_009876.7z --> Scan_007133.js [Trojan.JS.Downloader.IGK]  [Delete success]
  94. 2019-8-8 15:53:28 MD5:fe88e3acaf75bee47eb8ccb69692ad92 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(11).eml --> [Subject: Rinko Kikuchi!][Date: Tue, 26 Feb 2019 19:01:37 +0300]=>PIC06398144-JPG.zip --> PIC06398144-JPG.js [Trojan.Agent.DQJX]  [Delete success]
  95. 2019-8-8 15:53:29 MD5:d3522c968fbc4709db2fb9b11f434aab C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(53).eml --> [Subject: :D][Date: Tue, 26 Feb 2019 13:02:50 +0500]=>PIC08167576-JPG.zip --> PIC08167576-JPG.js [Trojan.Agent.DQKK]  [Delete success]
  96. 2019-8-8 15:53:29 MD5:1444c0a1f827adfaae26decc0557031f C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(153).eml --> [Subject: Mai Kuraki!][Date: Tue, 26 Feb 2019 08:50:22 -0430]=>PIC012034272-JPG.zip --> PIC012034272-JPG.js [Trojan.Agent.DQJX]  [Delete success]
  97. 2019-8-8 15:53:29 MD5:16e0f6f633f4b66c099c3e33baeb6a89 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(82).eml --> [Subject: FW: Invoice][Date: Thu, 28 Apr 2016 10:36:22 -0500]=>36FF9_scan-invoice_E218B2.zip --> b613c92.js --> (INFECTED_JS) [JS:Trojan.JS.Downloader.HT]  [Delete success]
  98. 2019-8-8 15:53:30 MD5:3fa4bd198573600aab81d23f96c20429 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(190).eml --> [Subject: Problems with item delivery, n.05395337][Date: Tue, 18 Jul 2017 07:12:17 -0500]=>UPS-Receipt-05395337.zip --> (dummy) [JS.TeslaCrypt.4.Gen]  [Delete success]
  99. 2019-8-8 15:53:30 MD5:7dcdb7bf1c7cc791576b54c74f68677b C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(29).eml --> [Subject: Third Reminder - Outstanding Account][Date: Tue, 03 May 2016 18:30:11 +0700]=>Document_943.zip --> 17656_17656 - copy.js --> (INFECTED_JS) [JS:Trojan.JS.Downloader.IK]  [Delete success]
  100. 2019-8-8 15:53:30 MD5:b371bc222660cdb920930d54bd7e6199 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(61).eml --> [Subject:  Invoice # KCN3741124-453][Date: Fri, 18 Jan 2019 16:33:10 +0700]=>Inv_KCN3741124-453.doc [Trojan.GenericKD.40957825]  [Delete success]
  101. 2019-8-8 15:53:30 MD5:2cc46bc994c616a21dabbc9c3b8c4e25 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(133).eml --> [Subject: Scanned image from MX-2600N][Date: Fri, 21 Apr 2017 17:28:28 +0300]=>noreply@[recipeint's email domain]_20170411_093253.pdf --> 770714.docm --> word/vbaProject.bin [W97m.Downloader.FRP]  [Delete success]
  102. 2019-8-8 15:53:30 MD5:981023e3c0fda40f23415f4b095065fa C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(180).eml --> [Subject: Envio de Boleto - URGENTE - GRUPO UNIQUE][Date: Thu,  5 Oct 2017 01:15:13 +0200 (CEST)]=>250920170000006734569912369086500998.pdf [Trojan.PDF.Agent.EH]  [Delete success]
  103. 2019-8-8 15:53:31 MD5:48c4d8e721e770e9069174023a4aa6d1 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(33).eml --> [Subject: подробности заказа][Date: Tue, 25 Dec 2018 07:14:59 +0200 (IST)]=>info.zip --> zakaz.5842.docx.zip --> информация о заказе.js --> (INFECTED_JS) [JS:Trojan.Agent.DMMG]  [Delete success]
  104. 2019-8-8 15:53:31 MD5:652d2b20e3cee14ffa9694f0b0f30553 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(44).eml --> [Subject: Windows 11 free download.][Date: Tue, 10 Jul 2018 07:58:01 +0000]=>3fuvu.jpg [Trojan.AgentWDCR.NPU]  [Delete success]
  105. 2019-8-8 15:53:31 MD5:23bba245cd0eda22ae223d542e4f3e1a C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(158).eml --> [Subject: Re: Re: REQUEST FOR QUOTATION SK BEND ENGINEERING AND CONS][Date: 27 Feb 2018 00:01:31 +0100]=>Specification.doc --> (objdata) --> (OLE2Link) [Exploit.CVE-2017-8570.Gen]  [Delete success]
  106. 2019-8-8 15:53:31 MD5:cf80ffc208e0bde9fc9b5a419a508d20 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(2).eml --> [Subject: Norika Fujiwara!][Date: Tue, 26 Feb 2019 14:23:49 +0500]=>PIC036909536-JPG.zip --> PIC036909536-JPG.js [Trojan.Agent.DQKK]  [Delete success]
  107. 2019-8-8 15:53:31 MD5:c9665fa7a1c9ba9b77f478a873d8823d C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(12).eml --> [Subject: uk_confirmation_ph418893579.pdf][Date: Thu, 30 Mar 2017 14:26:21 +0200]=>uk_confirmation_ph418893579.zip --> uk_confirmation_ph954869378.zip (BAD CRC) --> uk_confirmation_ph954869378.exe (BAD CRC) [Trojan.Agent.CFKN]  [Delete success]
  108. 2019-8-8 15:53:31 MD5:0da31b0e0d40cb24b3fe384701da376b C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(5).eml --> [Subject: Invoice Confirmation IF80406][Date: Tue, 14 Aug 2018 18:42:50 +0900]=>IF80406_2018_08_14.doc [VB:Trojan.Downloader.JUJU]  [Delete success]
  109. 2019-8-8 15:53:32 MD5:065f60597ec47e7c4c62b093ccc50efb C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(94).eml --> [Subject: Re: PO 6785435 30-08-2015][Date: Mon, 3 Aug 2015 16:51:27 -0400]=>PO 6785435 30-08-2015 PDF.jar [Trojan.Java.Adwind.L]  [Delete success]
  110. 2019-8-8 15:53:32 MD5:f30d6374ab58c594a1b64b1a69a759a4 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(171).eml --> [Subject: Your Amazon.com order has dispatched (#660-0384203-6833726][Date: Mon, 21 Nov 2016 03:42:25 -0500]=>ORDER-660-0384203-6833726.zip --> PSBLD450107.js [Trojan.GenericKDS.32042941]  [Delete success]
  111. 2019-8-8 15:53:32 MD5:d65b0315b6132547dd0c6b17c982d904 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(103).eml --> [Subject: Payment Receipt#03836][Date: Mon, 31 Jul 2017 03:47:53 -0800]=>P03836.zip --> 45677.2017-07-31_69.96.50.vbs [Trojan.VBS]  [Delete success]
  112. 2019-8-8 15:53:32 MD5:33c4b2f7ef6512b1cc5f34865289e90c C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(4).eml --> [Subject: Your Booking 8382798][Date: Thu, 30 Mar 2017 04:24:14 -0500]=>Direct-Documentation 8382798-1.zip --> Direct-Documentation 1530219.zip --> Direct-Documentation 1530219/Direct-Documentation 1530219.vbs [VB:Trojan.Valyria.330]  [Delete success]
  113. 2019-8-8 15:53:32 MD5:88cd11ae69e7449959b472360a083e8a C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(146).eml --> [Subject: Rechnungs-Details TOAS - 011-AT0212  ][Date: Wed, 15 Aug 2018 07:23:28 +0200]=>Rechnungs-Details TOAS - 011-AT0212.doc [VB:Trojan.VBA.Downloader.MP]  [Delete success]
  114. 2019-8-8 15:53:32 MD5:d4eae40a9d71fab5d589fe39285d0df9 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(195).eml --> [Subject: Your Booking 74810081][Date: Thu, 30 Mar 2017 07:23:31 -0300]=>Direct-Documentation 74810081-1.zip --> Direct-Documentation 1530219.zip --> Direct-Documentation 1530219/Direct-Documentation 1530219.vbs [VB:Trojan.Valyria.330]  [Delete success]
  115. 2019-8-8 15:53:32 MD5:c04872ea7ceddd9cd1e68fcce8b9c652 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(24).eml --> [Subject: uk_confirmation_ph601060458.pdf][Date: Thu, 30 Mar 2017 17:05:46 +0300]=>uk_confirmation_ph601060458.zip --> uk_confirmation_ph954869378.zip --> uk_confirmation_ph954869378.exe [Trojan.Agent.CFKS]  [Delete success]
  116. 2019-8-8 15:53:33 MD5:9837c68cef2c786edc140cc5acc12872 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(7).eml [Trojan.GenericKD.31595038]  [Delete success]
  117. 2019-8-8 15:53:34 MD5:486c77a80519c641cdb3c18ff42bb191 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(126).eml --> [Subject: Financial statement][Date: Thu, 21 Jul 2016 16:59:54 -0500]=>jane_63263.zip --> INV000 28ba.js [Trojan.JS.Agent.MKR]  [Delete success]
  118. 2019-8-8 15:53:34 MD5:ba6c65ab664e3f79309b6d643ece7d57 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(9).eml --> [Subject: Receipt 4845-83761][Date: Mon, 24 Oct 2016 18:04:00 +0430]=>Receipt --> Receipt 15110-632446.wsf [Trojan.JS.Downloader.FXY]  [Delete success]
  119. 2019-8-8 15:53:34 MD5:e1d651a397302888932cb74d17ada068 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(168).eml --> [Subject: Re: AW: Invoice number 79700 Notification][Date: Tue, 22 Jan 2019 13:29:09 +0100]=>FILE-79700.doc --> (binData) --> (Active Mime) [VB:Trojan.Valyria.1657]  [Delete success]
  120. 2019-8-8 15:53:34 MD5:aab7c83be6823c9920f937c8733694e1 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(110).eml --> [Subject: Ticket #85367][Date: Tue, 3 Apr 2018 15:32:53 +0700]=>DOC1092119565.zip --> DOC1092119565.js --> (INFECTED_JS) [JS:Trojan.JS.Agent.SGP]  [Delete success]
  121. 2019-8-8 15:53:34 MD5:c312891debec75bd368222919da40412 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(52).eml --> [Subject: Scanned image from MX-2600N][Date: Fri, 21 Apr 2017 16:28:27 +0200]=>noreply@[recipeint's email domain]_20170411_578394.pdf --> 770714.docm --> word/vbaProject.bin [W97m.Downloader.FRP]  [Delete success]
  122. 2019-8-8 15:53:35 MD5:4c29f5b5d7c520178a75d716d8abe620 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(152).eml --> [Subject: File COPY.29112016.7141.XLS Sent 29/11/2016][Date: Tue, 29 Nov 2016 11:25:18 -0500]=>COPY.29112016.7141.XLS --> xl/vbaProject.bin [Trojan.MSWord.Downloader.AS]  [Delete success]
  123. 2019-8-8 15:53:35 MD5:5f804421f5f98957efe1b6a04b8bb951 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(81).eml --> [Subject: Re: Invoice 38809][Date: Wed, 16 Jan 2019 15:05:44 -0600]=>FILE-38809.doc [W97m.Downloader.HVX]  [Delete success]
  124. 2019-8-8 15:53:35 MD5:768588e8469d4209ca38f379e45ce4f3 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(19).eml --> [Subject: Re: AW: Invoice: 7543][Date: Thu, 24 Jan 2019 19:10:40 +0200]=>FILE-7543.doc [Trojan.GenericKD.41000816]  [Delete success]
  125. 2019-8-8 15:53:35 MD5:d4e7d245232c303fe201382f77198a1b C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(115).eml --> [Subject: ][Date: Wed, 28 Jun 2017 07:32:59 -0000]=>email_354518_[recipient's name].zip --> 27465.zip --> (dummy) [Trojan.Oroles.Gen.8]  [Delete success]
  126. 2019-8-8 15:53:35 MD5:46d67364808226d76a424ea7e9627dca C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(60).eml --> [Subject: I love you][Date: Tue, 8 Jan 2019 05:24:54 +0300]=>Love_You_35140600-2019-txt.zip --> Love_You_35140600-2019-txt.js --> (INFECTED_JS) [JS:Trojan.Cryxos.1964]  [Delete success]
  127. 2019-8-8 15:53:35 MD5:0598f3012b5d0fda8a8463b3a68f3f4e C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(132).eml --> [Subject: Our Order][Date: 07 May 2018 09:51:52 -0700]=>New order.gz --> New order.exe [Trojan.Agent.CYWH]  [Delete success]
  128. 2019-8-8 15:53:35 MD5:4f8379223142f52eac4923b3eba15461 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(18).eml --> [From: <[removed]mag@super.net.uk>][Date: Fri, 28 Jul 2017 18:47:07 -0000]=>EMAIL_20688570373232_[recipient].zip --> 02675720.zip --> bToVk9U5.js --> (INFECTED_JS) [JS:Trojan.Cryxos.1145]  [Delete success]
  129. 2019-8-8 15:53:36 MD5:95e43dd07a7f75cc0693cfcc35e2f52a C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(32).eml --> [Subject:  You have received a secure document ][Date: Thu, 22 Mar 2018 12:08:34 +0000]=>9S659EHDCSI72649DS.doc [VB:Trojan.Downloader.JUEK]  [Delete success]
  130. 2019-8-8 15:53:36 MD5:0ebcfa78d97a4bc2eb378aa5ef094d9c C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(68).eml --> [Subject: 56820 [recipient]][Date: Thu, 27 Apr 2017 16:00:28 -0000]=>38.zip --> 247.zip --> (dummy) [Trojan.Oroles.Gen.8]  [Delete success]
  131. 2019-8-8 15:53:36 MD5:2cd3df53fa517882442ee1d5dc0a4cc7 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(14).eml --> [Subject: FULL OPTION][Date: Mon, 26 Feb 2018 02:38:36 -0800]=>OPTIONS.ace --> INQUIRY.com [Trojan.GenericKD.30367827]  [Delete success]
  132. 2019-8-8 15:53:36 MD5:23bba245cd0eda22ae223d542e4f3e1a C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(158).eml --> [Subject: Re: Re: REQUEST FOR QUOTATION SK BEND ENGINEERING AND CONS][Date: 27 Feb 2018 00:01:31 +0100]=>Specification.docx [Trojan.GenericKD.40152297]  [Delete success]
  133. 2019-8-8 15:53:36 MD5:1e4675ce352959bd16743ea154c9a8ed C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(199).eml --> [Subject: Updated][Date: Tue, 28 Jun 2016 03:31:05 +0500]=>update_phil_430422.zip --> swift 4f1a.js [Generic.JS.DownloaderAG.59528BBB]  [Delete success]
  134. 2019-8-8 15:53:36 MD5:a279a1fc8d5fc9d0ff57f05c5038566f C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(119).eml --> [From: <danny.h@post.cz>][Date: Thu, 19 Jan 2017 07:51:09 -0000]=>EMAIL_42654088199_[recipient].zip --> 380_ZIP.zip --> 380.js [Trojan.GenericKD.4189987]  [Delete success]
  135. 2019-8-8 15:53:36 MD5:4bcf1c295de26f8950771f2420757eaf C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(49).eml --> [Subject: FW: Your HSBC application documents ][Date: Tue, 17 Apr 2018 11:32:37 +0000]=>04172018HSBCJSZZH_app.doc --> (objdata) --> (Embedded DocFile g) [Exploit.CVE-2017-11882.Gen]  [Delete success]
  136. 2019-8-8 15:53:36 MD5:c9909d2d4d08316712b2ea70a9e64254 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(161).eml --> [Subject: Status of invoice][Date: Mon, 18 Sep 2017 16:08:25 +0530]=>a2175091-78.7z --> 34288202516.vbs [VB:Trojan.VBS.Downloader.ADU]  [Delete success]
  137. 2019-8-8 15:53:36 MD5:f447793054b35af5a9851db1af861434 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(170).eml --> [Subject: Windows 11 free download.][Date: Tue, 10 Jul 2018 17:20:41 +0000]=>4u91e.jpg [Gen:Variant.Midie.6815]  [Delete success]
  138. 2019-8-8 15:53:36 MD5:226a10639b0f067a8d940b1907ccb925 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(102).eml --> [Subject: Joanne Weston FedEx][Date: Thu, 29 Mar 2018 19:53:40 +0100]=>VT8675940951.zip --> VT8675940951/VT8675940951.bat [Generic.Bat.Downloader.1.96424711]  [Delete success]
  139. 2019-8-8 15:53:36 MD5:e9d51a4a07f0496bee8af95d33f9c588 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(39).eml --> [Subject: подробности заказа][Date: Tue, 25 Dec 2018 09:20:50 +0100]=>info.zip --> zakaz.6864.docx.zip --> информация о заказе.js --> (INFECTED_JS) [JS:Trojan.Agent.DMMG]  [Delete success]
  140. 2019-8-8 15:53:36 MD5:4981c1f5074ecdc10bec2284a73c5579 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(145).eml --> [Subject: Invoice INV-0373][Date: Fri, 02 Jun 2017 14:41:25 +0500]=>invoice inv-0373.pdf --> 651X2WTXGJM419.docm --> word/vbaProject.bin [VB:Trojan.VBA.Downloader.FI]  [Delete success]
  141. 2019-8-8 15:53:37 MD5:bdc877c7b6de381907aaccbe9e0eb65e C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(194).eml --> [Subject: New Doc 2017-10-01 - Page 1]=>new doc 2017-10-01 - page 1.7z --> New Doc 2017-10-02 - Page 2 -5759.js --> (INFECTED_JS) [JS:Trojan.JS.Agent.QYD]  [Delete success]
  142. 2019-8-8 15:53:37 MD5:6be9481321e89731db45fc15eecdbfc8 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(176).eml --> [Subject: Purchasing order][Date: Tue, 28 Jul 2015 21:10:50 +0700]=>PURCHASING Order.jar --> Main.class [Java.Trojan.Adwind.BM]  [Delete success]
  143. 2019-8-8 15:53:37 MD5:79174d84d4787620137337e7941252f6 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(70).eml --> [Subject:Account Compromised][Date: Tue, 24 May 2016 20:54:24 +0700]=>Security Notification.zip --> Security Report ID(14336017).doc [W97M.Downloader.CUZ]  [Delete success]
  144. 2019-8-8 15:53:37 MD5:2c53ffea209ee1f48a8c47889ddb2334 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(22).eml --> [Subject: ][Date: Wed, 28 Jun 2017 00:29:19 -0000]=>email_564957620270_[recipient's name].zip --> 25601.zip [Trojan.GenericKD.5520100]  [Delete success]
  145. 2019-8-8 15:53:37 MD5:cccf02fe9a1b085c54aa3d4e959d6938 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(125).eml --> [Subject: подробности заказа][Date: Tue, 25 Dec 2018 07:31:05 +0300]=>info.zip --> zakaz.3242.docx.zip --> информация о заказе.js --> (INFECTED_JS) [JS:Trojan.Agent.DMMG]  [Delete success]
  146. 2019-8-8 15:53:37 MD5:412a520ead5aac4a1aa32076219c3812 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(89).eml --> [Subject: Invoice #81058][Date: Fri, 13 Apr 2018 20:31:16 +0800]=>DOC2773019141.zip --> DOC2773019141.doc [VB:Trojan.Valyria.1658]  [Delete success]
  147. 2019-8-8 15:53:37 MD5:f86fe38e5249046b4090b034495c25c8 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(166).eml --> [Subject: Meisa Kuroki!][Date: Tue, 26 Feb 2019 13:06:03 +0300]=>PIC0769811504-JPG.zip --> PIC0769811504-JPG.js [Trojan.Agent.DQJX]  [Delete success]
  148. 2019-8-8 15:53:37 MD5:7dcdb7bf1c7cc791576b54c74f68677b C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(29).eml --> [Subject: Third Reminder - Outstanding Account][Date: Tue, 03 May 2016 18:30:11 +0700]=>Document_943.zip --> 17656_17656.js --> (INFECTED_JS) [JS:Trojan.JS.Downloader.IK]  [Delete success]
  149. 2019-8-8 15:53:37 MD5:bf4195b472572fc22601bce88fed4721 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(109).eml --> [Subject: :D][Date: Tue, 8 Jan 2019 20:24:21 +0200]=>Love_You_25821416-2019-txt.zip --> Love_You_25821416-2019-txt.js [Trojan.Agent.DNBH]  [Delete success]
  150. 2019-8-8 15:53:37 MD5:965d8fa1f1f12d4d2a63936a66ea8f46 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(51).eml --> [Subject: Subject:][Date: Wed, 04 Jan 2017 07:24:43 -0000]=>15010386517237.zip --> 19206_ZIP.zip --> 19206.doc [VB:Trojan.VBA.Downloader.CN]  [Delete success]
  151. 2019-8-8 15:53:37 MD5:d63ff6530948edb85d4e28254328dcd6 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(151).eml --> [Subject: Notice: [recipient's name]][Date: Sun, 29 Apr 2018 14:44:37 -0700]=>scan_recipients-name0.doc --> (Encrypted Package) --> word/vbaProject.bin [VB:Trojan.VBA.Agent.XL]  [Delete success]
  152. 2019-8-8 15:53:37 MD5:fa5663c36ddfe4fc88e08e3faad7de0d C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(80).eml --> [From: Barrett <Barrett@tstt.net.in>][Date: Mon, 24 Jul 2017 16:03:36 +0430]=>IMG_0383.ZIP --> 01258861149_20170411_128830.wsf [Trojan.JS.Agent.QSM]  [Delete success]
  153. 2019-8-8 15:53:38 MD5:022bcbcac563c7857eb976d8dcfe4612 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(189).eml --> [Subject: Re: Purchase Order Details HTE1903-008][Date: Sun, 19 May 2019 11:07:39 -0700]=>Purchase Order Details HTE1903-008.rar --> purchase.exe [Gen:Variant.Midie.63424]  [Delete success]
  154. 2019-8-8 15:53:38 MD5:bb1354c3000bb1f51290241993de9122 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(114).eml --> [From: <anna@monadance.org>][Date: Thu, 19 Jan 2017 08:13:09 -0000]=>EMAIL_7281945_[recipient].zip --> 12824_ZIP.zip --> 12824.js [Trojan.GenericKD.4189901]  [Delete success]
  155. 2019-8-8 15:53:38 MD5:cb3147b8cdecbe0a6c776809828be7b4 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(59).eml --> [Subject: Keep this private][Date: Tue, 26 Feb 2019 09:53:14 +0630]=>PIC034438920-JPG.zip --> PIC034438920-JPG.js [Trojan.Agent.DQKK]  [Delete success]
  156. 2019-8-8 15:53:38 MD5:a5dced569bfe4bb95e99dded52eec685 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(6).eml --> [Subject: :-D][Date: Tue, 26 Feb 2019 19:44:08 +0600]=>PIC025435008-JPG.zip --> PIC025435008-JPG.js [Trojan.Agent.DQJX]  [Delete success]
  157. 2019-8-8 15:53:38 MD5:f9e855ff2a4d84c716c527ad3e016730 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(131).eml --> [Subject: Emailing: IMG_20171222_358078220, IMG_20171222_235116613, ][Date: Fri, 22 Dec 2017 04:34:48 +0700]=>img_20171222_358078220.7z --> IMG_20171221_555275412.js [Trojan.JS.Downloader.IGF]  [Delete success]
  158. 2019-8-8 15:53:38 MD5:fac826100c20b99ee332b501a28de836 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(179).eml --> [Subject: CC Confirmation]=>skm_c554e67614648511.7z --> SKM_C554e16073396317.vbs [VB:Trojan.VBS.Agent.AQD]  [Delete success]
  159. 2019-8-8 15:53:38 MD5:793d284d955ba3f0babe6003301b7cd3 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(67).eml --> [Subject: Re: AW: Invoice due number 3321][Date: Mon, 14 Jan 2019 13:23:42 -0600]=>FILE-3321.doc [VB:Trojan.VBS.Agent.AZH]  [Delete success]
  160. 2019-8-8 15:53:38 MD5:31ddb77e6d1182f625697aff014efd01 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(31).eml --> [Subject: Try Windows 11 today trial download now.][Date: Tue, 10 Jul 2018 06:29:28 +0000]=>1t90ri.jpg [Trojan.AgentWDCR.NPU]  [Delete success]
  161. 2019-8-8 15:53:38 MD5:6301d814fa56784a68d0b696b1a94a51 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(139).eml --> [Subject: Always thinking about you][Date: Tue, 8 Jan 2019 05:08:22 +0300]=>Love_You_35140600-2019-txt.zip --> Love_You_35140600-2019-txt.js --> (INFECTED_JS) [JS:Trojan.Cryxos.1964]  [Delete success]
  162. 2019-8-8 15:53:38 MD5:186d9f91d799a9b9af9df67f3e4688b1 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(157).eml --> [Subject: Website Job Application][Date: Thu, 16 Nov 2017 13:43:30 +0100]=>Boris's Resume.doc [W97m.Downloader.GMA]  [Delete success]
  163. 2019-8-8 15:53:39 MD5:f3e97b97f59bfd556d196b3c3fde1327 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(198).eml --> [Subject: Please find attached a XLS Invoice 52201][Date: Tue, 29 Nov 2016 17:02:53 +0700]=>INVOICE.TAM_52201_20161129_FCAE04AC3.xls [Trojan.GenericKD.3789799]  [Delete success]
  164. 2019-8-8 15:53:39 MD5:a279a1fc8d5fc9d0ff57f05c5038566f C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(119).eml --> [From: <danny.h@post.cz>][Date: Thu, 19 Jan 2017 07:51:09 -0000]=>EMAIL_42654088199_[recipient].zip --> 380_ZIP.zip --> (dummy) [Trojan.Oroles.Gen.8]  [Delete success]
  165. 2019-8-8 15:53:39 MD5:4bcf1c295de26f8950771f2420757eaf C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(49).eml --> [Subject: FW: Your HSBC application documents ][Date: Tue, 17 Apr 2018 11:32:37 +0000]=>04172018HSBCJSZZH_app.doc --> (objdata) --> (Equation.3) [Exploit.CVE-2017-11882.Gen]  [Delete success]
  166. 2019-8-8 15:53:39 MD5:fd3e3bf67cdc4ab09d3d7c5a325efb6c C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(160).eml --> [Subject: Try Windows 11 today trial download now.][Date: Tue, 10 Jul 2018 17:59:30 +0000]=>bdopye5r.jpg [Gen:Variant.Midie.6815]  [Delete success]
  167. 2019-8-8 15:53:39 MD5:7b1b2217b35f2296123944139ac090c0 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(17).eml --> [Subject: Fattura service][Date: Wed, 18 Apr 2018 13:32:34 +0100]=>Fatture_813_2018.xls [VB.Chronos.4.Gen]  [Delete success]
  168. 2019-8-8 15:53:39 MD5:acc5b10813bb8f14dd9964efea70ba5a C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(100).eml --> [Subject: Akina Nakamori!][Date: Tue, 26 Feb 2019 13:11:00 +0300]=>PIC08872672-JPG.zip --> PIC08872672-JPG.js [Trojan.Agent.DQKK]  [Delete success]
  169. 2019-8-8 15:53:39 MD5:233bf5db5e66057047e27595d262317b C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(38).eml --> [Subject: RFQ#5500177966][Date: Thu, 03 Jan 2019 03:34:50 +0200]=>RFQ#5500177966.rar --> Believe.exe [Trojan.GenericKD.31675658]  [Delete success]
  170. 2019-8-8 15:53:39 MD5:542d5b22eb54f7f94586dd4608394895 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(144).eml --> [Subject:  You have received a secure document ][Date: Thu, 22 Mar 2018 12:08:45 +0000]=>9S659EHDCSI72649DS.doc [VB:Trojan.Downloader.JUEK]  [Delete success]
  171. 2019-8-8 15:53:39 MD5:8f3409d42eb836058e6d64655bf3c15e C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(193).eml --> [Subject: Kyoko Fukada!][Date: Tue, 26 Feb 2019 11:32:15 -0800]=>PIC09147184-JPG.zip --> PIC09147184-JPG.js [Trojan.Agent.DQKK]  [Delete success]
  172. 2019-8-8 15:53:39 MD5:6be9481321e89731db45fc15eecdbfc8 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(176).eml --> [Subject: Purchasing order][Date: Tue, 28 Jul 2015 21:10:50 +0700]=>PURCHASING Order.jar --> RRMq0vPQRIVr1iT5haMPpP5PlmbY9P2HfYq79oZI7t3pSKMVD5D8qfj62zhy69viayX69sTPQQmGSgoFFogRapKA6cdakTIhXhcRSnz7dyuGP4cdMSA5BzLITIe7f2vnKLEVSTx9cE81y0fCLoODxAWQkbMjMtPKDz8VLSXQB06Fps2DeW85T185wOt2CfCJLnYObkRJ1KSpI03b552BrHP1h0bbwBfYHObdEH35X0H1dvoPAXUfALz7PbKSugChcZuaVYMCNU7DDCJHngb6cOALIiIiIiIIii.class [Java.Trojan.Adwind.AM]  [Delete success]
  173. 2019-8-8 15:53:40 MD5:41b080eb510047fadaf1c1a86752f3be C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(23).eml --> [Subject: 55019 [recipient]][Date: Thu, 27 Apr 2017 20:17:35 -0000]=>10762210455416.zip --> 20255.js --> (INFECTED_JS) [JS.Remucod.2.Gen]  [Delete success]
  174. 2019-8-8 15:53:40 MD5:20fd22c1342284e4c89902c8a8d3d267 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(71).eml --> [Subject: Message from KM_C224e][Date: Mon, 18 Sep 2017 11:35:11 -0500]=>20171809_24636829014.7z --> 20170918_77742887162.vbs [VB:Trojan.VBS.Downloader.ADW]  [Delete success]
  175. 2019-8-8 15:53:40 MD5:3c6cf2bb571578b1ae93980ffe7a905f C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(124).eml --> [Subject: Please find attached invoice no: 878503][Date: Mon, 21 Nov 2016 14:35:47 +0530]=>pm648504.zip --> DYXULJ871830.js --> (INFECTED_JS) [JS:Trojan.JS.Downloader.HAZ]  [Delete success]
  176. 2019-8-8 15:53:40 MD5:5a84aa7c7196f9f43679b5ab023849ca C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(88).eml --> [Subject: Ayumi Hamasaki!][Date: Tue, 26 Feb 2019 11:58:02 +0200]=>PIC034055256-JPG.zip --> PIC034055256-JPG.js [Trojan.Agent.DQKK]  [Delete success]
  177. 2019-8-8 15:53:40 MD5:5ec59217745910c851c4049df2b0d9b8 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(167).eml --> [Subject:  You have received a secure document ][Date: Thu, 22 Mar 2018 12:08:44 +0000]=>9S659EHDCSI72649DS.doc [VB:Trojan.Downloader.JUEK]  [Delete success]
  178. 2019-8-8 15:53:40 MD5:908d5758b9190f27853ea64867d1613f C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(28).eml --> [Subject:Account Compromised][Date: Tue, 24 May 2016 15:58:28 +0200]=>Security Notification.zip --> Security Report ID(11028949).doc [W97M.Downloader.CUZ]  [Delete success]
  179. 2019-8-8 15:53:40 MD5:965d8fa1f1f12d4d2a63936a66ea8f46 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(51).eml --> [Subject: Subject:][Date: Wed, 04 Jan 2017 07:24:43 -0000]=>15010386517237.zip --> (dummy) [Trojan.Oroles.Gen.2]  [Delete success]
  180. 2019-8-8 15:53:40 MD5:2ef1c7608add208fad3c27efd395e781 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(150).eml --> [Subject:  HSBC SecureMail Activity Confirmation - Do Not Reply. ][Date: Wed, 4 Apr 2018 06:02:43 -0400]=>encrypted_message.doc [VB:Trojan.Valyria.1767]  [Delete success]
  181. 2019-8-8 15:53:41 MD5:23f89196cedb40d4cf238f57cbb5f6c7 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(79).eml --> [Subject: CC Confirmation]=>skm_c554e68843091528.7z --> SKM_C554e16069123981.vbs [VB:Trojan.VBS.Agent.AQD]  [Delete success]
  182. 2019-8-8 15:53:41 MD5:999064db8e43e4a08cdd262d3a25e7bc C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(187).eml --> [Subject: scan][Date: Tue, 10 May 2016 11:31:33 +0200]=>scan.zip --> 00004009530388.js --> (INFECTED_JS) [JS:Trojan.JS.Agent.NI]  [Delete success]
  183. 2019-8-8 15:53:41 MD5:bb1354c3000bb1f51290241993de9122 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(114).eml --> [From: <anna@monadance.org>][Date: Thu, 19 Jan 2017 08:13:09 -0000]=>EMAIL_7281945_[recipient].zip --> 12824_ZIP.zip --> (dummy) [Trojan.Oroles.Gen.8]  [Delete success]
  184. 2019-8-8 15:53:41 MD5:4c23270bd4a8e80cc6a4b5209834a40d C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(58).eml --> [Subject: New Payroll Co.][Date: Tue, 19 Jun 2018 10:46:49 -0600]=>New Payroll Co..doc [W97M.Downloader.GXM]  [Delete success]
  185. 2019-8-8 15:53:41 MD5:2fdef24d48913a0d8afea8ebd2dc7254 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(178).eml --> [Subject: Documents from Purple Office - IN00024293][Date: Mon, 15 Aug 2016 20:37:49 +0700]=>97B1C9B8FE58680AE514FFE0EA5C0F56.docm --> word/vbaProject.bin [W97M.Bendis.CC]  [Delete success]
  186. 2019-8-8 15:53:41 MD5:7258091582841a27450a14ffa4bed007 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(30).eml --> [Subject: bonifico gennaio][Date: Tue, 16 Jan 2018 14:53:17 +0200]=>gennaio_sales.xls [VB:Trojan.VBA.Downloader.HZ]  [Delete success]
  187. 2019-8-8 15:53:41 MD5:f9df3425415a95a90f89dd8b11dfc466 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(66).eml --> [Subject: Order 212070 (Acknowledgement)][Date: Thu, 03 Nov 2016 08:22:12 -0700]=>GiWOXG212070.zip --> TXwYT7031-1420.vbs [Trojan.VBS.Downloader.ZC]  [Delete success]
  188. 2019-8-8 15:53:41 MD5:3ec8be7881534414f228293c8f1cc2cb C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(138).eml --> [Subject:  FW: Case BARC2736166][Date: Thu, 12 Apr 2018 06:20:39 -0400]=>BARC2736166.docx [Trojan.Exploit.MSOfficeWord.GenericKDS.30602583]  [Delete success]
  189. 2019-8-8 15:53:42 MD5:ec8c906e75ffd3a2b3058a35c46d2041 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(197).eml --> [Subject:  Invoice sent 18/01/19][Date: Fri, 18 Jan 2019 16:30:14 +0700]=>INV_201901_EHU711031273-68.doc [Trojan.GenericKD.40957825]  [Delete success]
  190. 2019-8-8 15:53:42 MD5:a279a1fc8d5fc9d0ff57f05c5038566f C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(119).eml --> [From: <danny.h@post.cz>][Date: Thu, 19 Jan 2017 07:51:09 -0000]=>EMAIL_42654088199_[recipient].zip --> (dummy) [Trojan.Oroles.Gen.2]  [Delete success]
  191. 2019-8-8 15:53:42 MD5:4bcf1c295de26f8950771f2420757eaf C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(49).eml --> [Subject: FW: Your HSBC application documents ][Date: Tue, 17 Apr 2018 11:32:37 +0000]=>04172018HSBCJSZZH_app.doc --> (objdata) [Trojan.Powershell.BF]  [Delete success]
  192. 2019-8-8 15:53:42 MD5:71a8bf6d83e1d04ccba019db2e1b8658 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(16).eml --> [Subject: Your Reception - HPH invoice is ready][Date: Wed, 15 Aug 2018 11:55:45 +0100]=>9P3018_2018_08_15.doc [VB:Trojan.VBA.Downloader.MQ]  [Delete success]
  193. 2019-8-8 15:53:42 MD5:fbdd77ca8a84e18e75a533b864c001b9 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(101).eml --> [Subject: Windows 11 free download.][Date: Tue, 10 Jul 2018 13:40:45 +0000]=>g7kgbcv5.jpg [Gen:Variant.Midie.6815]  [Delete success]
  194. 2019-8-8 15:53:42 MD5:07998ebb0975a40be8e6795fbbd1ab42 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(37).eml --> [Subject: Concerning a job!][Date: Thu, 3 May 2018 19:44:30 +0200]=>Danial's Resume.doc --> (Encrypted Package) --> word/vbaProject.bin [VB:Trojan.VBA.Agent.XL]  [Delete success]
  195. 2019-8-8 15:53:42 MD5:e27caedbb87e96b031f5ee017da0aeff C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(143).eml --> [Subject:  You have received a secure document ][Date: Thu, 22 Mar 2018 12:08:45 +0000]=>9S659EHDCSI72649DS.doc [VB:Trojan.Downloader.JUEK]  [Delete success]
  196. 2019-8-8 15:53:42 MD5:9a994cad73714c9c51417c3636d1426b C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(99).eml --> [Subject: Don't show anyone!][Date: Tue, 26 Feb 2019 19:41:15 +0500]=>PIC024850664-JPG.zip --> PIC024850664-JPG.js [Trojan.Agent.DQJX]  [Delete success]
  197. 2019-8-8 15:53:42 MD5:1534e1a683dbadd5ff232d77566a2bda C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(175).eml --> [Subject: UPS Tracking Number for shipment H6902644376][Date: Fri, 28 Apr 2017 14:01:29 +0400]=>H6902644376.rar --> H6902644376.js [Trojan.GenericKD.4953926]  [Delete success]
  198. 2019-8-8 15:53:42 MD5:cd0641ebeba5638d3750eb13e93f05e2 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(108).eml --> [From: <marycris-paccia@libero.it>][Date: Fri, 13 Jan 2017 16:07:17 -0000]=>793186269136.zip --> 10803.doc [VB:Trojan.Valyria.58]  [Delete success]
  199. 2019-8-8 15:53:43 MD5:450b5b6766c8fe760876b01b58074fb7 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(69).eml [Trojan.GenericKD.5262565]  [Delete success]
  200. 2019-8-8 15:53:43 MD5:6bd132f8f06cd02f68f7bd5c5b6d054b C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(123).eml --> [Subject: Invoice INV0000343][Date: Tue, 31 Oct 2017 12:54:39 -0000]=>Invoice INV0000343.doc [Trojan.GenericKD.6184374]  [Delete success]
  201. 2019-8-8 15:53:43 MD5:ea2a84c33c7eb776c9ed1bcbf9d0d423 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(87).eml --> [Subject: B4 2018 Payroll][Date: Tue, 19 Jun 2018 14:52:19 +0200]=>B4 2018 Payroll.doc [VB:Trojan.Valyria.2545]  [Delete success]
  202. 2019-8-8 15:53:43 MD5:b97d57b6dba9a463afc488297030754d C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(165).eml --> [Subject:  FW: (CC01) Company Complaint ][Date: Tue, 24 Apr 2018 07:50:21 -0400]=>536ffa992-491508d-ca0354e-52f32a3-7a679a53a.doc [Trojan.GenericKD.40220733]  [Delete success]
  203. 2019-8-8 15:53:43 MD5:eb4eb5af02f49637bd7359c8b2ba6a7a C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(75).eml --> [Subject: Receipt#6011][Date: Mon, 31 Jul 2017 18:23:06 +0700]=>P6011.zip --> 18472.2017-07-31_68.36.18.vbs [Trojan.VBS]  [Delete success]
  204. 2019-8-8 15:53:43 MD5:a9e94359aaed5a585c9859f366e70eb4 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(27).eml --> [Subject: Emailed Invoice - 539014]=>i_539014.7z --> I_843058.js --> (INFECTED_JS) [JS:Trojan.JS.Agent.QYD]  [Delete success]
  205. 2019-8-8 15:53:43 MD5:d26d0234b520416d2cbf4ed741df570e C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(130).eml --> [Subject: Jin Akanishi!][Date: Mon, 25 Feb 2019 21:57:42 +0600]=>PIC036251704-JPG.zip --> PIC036251704-JPG.js [Trojan.Agent.DQGD]  [Delete success]
  206. 2019-8-8 15:53:43 MD5:e2c4e600ea7debc77cbf66ec8848fdd7 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(15).eml --> [Subject: Website Job Application][Date: Thu, 16 Nov 2017 13:27:42 +0100]=>Michael's Resume.doc [W97m.Downloader.GMA]  [Delete success]
  207. 2019-8-8 15:53:44 MD5:a4d3132b99cc53f6a615f5bd54d49d91 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(8).eml --> [Subject: FW: Invoice][Date: Thu, 28 Apr 2016 19:16:25 +0530]=>869D2_scan-invoice_03B280.zip --> a4adf71.js --> (INFECTED_JS) [JS:Trojan.JS.Downloader.HT]  [Delete success]
  208. 2019-8-8 15:53:44 MD5:999064db8e43e4a08cdd262d3a25e7bc C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(187).eml --> [Subject: scan][Date: Tue, 10 May 2016 11:31:33 +0200]=>scan.zip --> (dummy) [Trojan.Oroles.Gen.8]  [Delete success]
  209. 2019-8-8 15:53:44 MD5:bb1354c3000bb1f51290241993de9122 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(114).eml --> [From: <anna@monadance.org>][Date: Thu, 19 Jan 2017 08:13:09 -0000]=>EMAIL_7281945_[recipient].zip --> (dummy) [Trojan.Oroles.Gen.2]  [Delete success]
  210. 2019-8-8 15:53:44 MD5:3b5c4b30055133bed358a1debab519a1 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(57).eml --> [Subject: Yumi Matsutoya!][Date: Tue, 26 Feb 2019 16:08:29 +0400]=>PIC036309264-JPG.zip --> PIC036309264-JPG.js [Trojan.Agent.DQJX]  [Delete success]
  211. 2019-8-8 15:53:44 MD5:43eaee56010dd0058a429b28f7595bd1 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(156).eml --> [Subject: Namie Amuro!][Date: Mon, 25 Feb 2019 18:07:56 +0530]=>PIC08429848-JPG.zip --> PIC08429848-JPG.js [Trojan.Agent.DQGD]  [Delete success]
  212. 2019-8-8 15:53:44 MD5:3a3a0faa9ee182b060f88b35d3609557 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(177).eml --> [Subject: Immediate payment requested][Date: Wed, 23 Jan 2019 04:47:33 -0600]=>invoice (5).doc [VB.EmoDldr.5.Gen]  [Delete success]
  213. 2019-8-8 15:53:44 MD5:d5ace9ea3dbb9a50a649bb938a01048c C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(65).eml --> [Subject: Please find attached a XLS Invoice 078107][Date: Tue, 29 Nov 2016 11:15:06 +0100]=>INVOICE.TAM_078107_20161129_EB80D624D.xls [Trojan.GenericKD.3789826]  [Delete success]
  214. 2019-8-8 15:53:44 MD5:f55d9ada36a151d4859f496570ef6d33 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(3).eml --> [Subject: Regarding Job][Date: Tue, 26 Mar 2019 07:49:21 +0100]=>Kylee Chiles Resume.doc --> (Encrypted Package) --> word/vbaProject.bin [W97M.Downloader.IAB]  [Delete success]
  215. 2019-8-8 15:53:44 MD5:1334d6928aa4e504c428720446c055de C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(137).eml --> [Subject: :D][Date: Tue, 8 Jan 2019 06:15:29 +0600]=>Love_You_5742488-2019-txt.zip --> Love_You_5742488-2019-txt.js --> (INFECTED_JS) [JS:Trojan.Cryxos.1964]  [Delete success]
  216. 2019-8-8 15:53:44 MD5:37a5568a35dac68e872419ecfd53ef7f C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(184).eml --> [Subject: Momoe Yamaguchi!][Date: Tue, 26 Feb 2019 21:31:51 +0530]=>PIC037060688-JPG.zip --> PIC037060688-JPG.js [Trojan.Agent.DQJX]  [Delete success]
  217. 2019-8-8 15:53:44 MD5:319cb2b67e9b4597177af116074a6466 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(192).eml [Trojan.GenericKD.31486247]  [Delete success]
  218. 2019-8-8 15:53:44 MD5:95494c7e39325f0073e9fbde5ea44f68 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(118).eml --> [Subject: Updated][Date: Tue, 28 Jun 2016 06:25:00 +0700]=>aron_updated_178841.zip --> swift eb18.js [Generic.JS.DownloaderAG.1B94E00C]  [Delete success]
  219. 2019-8-8 15:53:44 MD5:d72af27ec16938e5bb991a7acc75dacb C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(48).eml --> [Subject: Try Windows 11 today for free.][Date: Tue, 10 Jul 2018 14:55:27 +0000]=>wqc8ma.jpg [Gen:Variant.Midie.6815]  [Delete success]
  220. 2019-8-8 15:53:45 MD5:28642df252317d2d4d3474f74d80fdd8 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(159).eml --> [Subject: Nat West Bank][Date: Wed, 9 Aug 2017 11:31:29 +0100]=>West5476754-34.doc [VB:Trojan.VBA.Agent.KD]  [Delete success]
  221. 2019-8-8 15:53:45 MD5:41b080eb510047fadaf1c1a86752f3be C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(23).eml --> [Subject: 55019 [recipient]][Date: Thu, 27 Apr 2017 20:17:35 -0000]=>10762210455416.zip --> (dummy) [Trojan.Oroles.Gen.8]  [Delete success]
  222. 2019-8-8 15:53:45 MD5:0c51a0dee64d1ee8749a9f5846f960dc C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(10).eml --> [Subject: Order 3370533 (Acknowledgement)][Date: Thu, 03 Nov 2016 22:51:05 +0800]=>QonH3370533.zip --> IQVuw6029-1166.vbs [Trojan.VBS.Downloader.ZC]  [Delete success]
  223. 2019-8-8 15:53:45 MD5:ce61f7b7f8ad2058f7f14c91384b4095 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(36).eml --> [Subject: My letter just for you][Date: Tue, 8 Jan 2019 23:14:43 +0530]=>Love_You_4169768-2019-txt.zip --> Love_You_4169768-2019-txt.js [Trojan.GenericKD.31505957]  [Delete success]
  224. 2019-8-8 15:53:45 MD5:c8c469a251af03a13798fb095fa7618d C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(142).eml --> [Subject: Scanned image from MX-2600N][Date: Fri, 21 Apr 2017 19:30:53 +0500]=>noreply@[recipeint's email domain]_20170411_522862.pdf --> 281956.docm --> word/vbaProject.bin [W97m.Downloader.FRP]  [Delete success]
  225. 2019-8-8 15:53:45 MD5:a3a9b4e5f901212bd9d6457e25e49694 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(98).eml [Trojan.JS.RKN]  [Delete success]
  226. 2019-8-8 15:53:45 MD5:33f66171df69e71d6b1ec9c315707ea0 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(174).eml --> [Subject: Try Windows 11 today for free.][Date: Tue, 10 Jul 2018 19:25:02 +0000]=>n7ri2l5s.jpg [Gen:Variant.Midie.6815]  [Delete success]
  227. 2019-8-8 15:53:45 MD5:0794c87f61ed5a5f30556eb54058fdba C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(107).eml --> [Subject: Invoice_8077025][Date: Wed, 27 Dec 2017 17:22:44 +0500]=>invoice_8077025.7z --> Invoice_9068713.js [Trojan.JS.Downloader.IGK]  [Delete success]
  228. 2019-8-8 15:53:45 MD5:2f2f8fdc87ea23bd119563c157dce5a8 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(43).eml --> [Subject: Keiko Kitagawa!][Date: Tue, 26 Feb 2019 22:34:07 +0700]=>PIC07118856-JPG.zip --> PIC07118856-JPG.js [Trojan.Agent.DQJX]  [Delete success]
  229. 2019-8-8 15:53:46 MD5:0ebcfa78d97a4bc2eb378aa5ef094d9c C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(68).eml --> [Subject: 56820 [recipient]][Date: Thu, 27 Apr 2017 16:00:28 -0000]=>38.zip --> 247.zip --> 247.js --> (INFECTED_JS) [JS:Trojan.JS.Downloader.HVH]  [Delete success]
  230. 2019-8-8 15:53:46 MD5:f34e443ec6b6674ddcd3af856feffef3 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(122).eml --> [Subject: Wrote this letter for you][Date: Tue, 8 Jan 2019 11:55:14 +0600]=>Love_You_24373792-2019-txt.zip --> Love_You_24373792-2019-txt.js --> (INFECTED_JS) [JS:Trojan.Cryxos.1964]  [Delete success]
  231. 2019-8-8 15:53:46 MD5:341f5fa60600aae96b805b17811ef828 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(86).eml --> [Subject: uk_confirmation_ph794673241.pdf][Date: Thu, 30 Mar 2017 18:30:58 +0700]=>uk_confirmation_ph794673241.zip --> uk_confirmation_ph954869378.zip --> uk_confirmation_ph954869378.exe [Trojan.GenericKD.4715170]  [Delete success]
  232. 2019-8-8 15:53:46 MD5:0cb6f33520ce70d3a0081d2815d2cb7a C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(164).eml [Trojan.GenericKD.30383381]  [Delete success]
  233. 2019-8-8 15:53:46 MD5:a8eb015951a230b3c344285a666f3ca8 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(73).eml --> [Subject: Re: Re: Please send us your catalogs and full price-list][Date: Tue, 30 Jan 2018 07:22:12 -0800]=>Logo.doc [Trojan.RTF.Agent.G]  [Delete success]
  234. 2019-8-8 15:53:46 MD5:5d37ec248deb441c357e9e21aa5ad209 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(26).eml --> [Subject: =Scanned DUC-Invoice][Date: Thu, 30 Jul 2015 20:16:04 -0400]=>Invoice.jar --> RRMq0vPQRIVr1iT5haMPpP5PlmbY9P2HfYq79oZI7t3pSKMVD5D8qfj62zhy69viayX69sTPQQmGSgoFFogRapKA6cdakTIhXhcRSnz7dyuGP4cdMSA5BzLITIe7f2vnKLEVSTx9cE81y0fCLoODxAWQkbMjMtPKDz8VLSXQB06Fps2DeW85T185wOt2CfCJLnYObkRJ1KSpI03b552BrHP1h0bbwBfYHObdEH35X0H1dvoPAXUfALz7PbKSugChcZuaVYMCNU7DDCJHngb6cOALIiIiiIiIII.class [Java.Trojan.GenericGB.19948]  [Delete success]
  235. 2019-8-8 15:53:46 MD5:6582757f54bb5d0b14cde2903080ba5e C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(13).eml --> [Subject: File COPY.29112016.5314.XLS Sent 29/11/2016][Date: Tue, 29 Nov 2016 23:29:40 +0700]=>COPY.29112016.5314.XLS --> xl/vbaProject.bin [Trojan.MSWord.Downloader.AS]  [Delete success]
  236. 2019-8-8 15:53:46 MD5:2188047194e22e6b8984323b26fd14f8 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(93).eml --> [From: Angelina <Angelina@kristini.net>][Date: Mon, 24 Jul 2017 15:54:19 +0430]=>IMG_4093.ZIP --> 01258861149_20170411_818203.wsf [Trojan.JS.Agent.QSM]  [Delete success]
  237. 2019-8-8 15:53:46 MD5:2bf6b625875245de2f6e57b4e01f8eea C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(149).eml --> [Subject: Payment #68833][Date: Tue, 3 Apr 2018 16:19:23 +0700]=>DOC3561320906.zip --> DOC3561320906.js --> (INFECTED_JS) [JS:Trojan.JS.Agent.SGP]  [Delete success]
  238. 2019-8-8 15:53:46 MD5:f0ae2634918e8b3fb0318267e2fe88b5 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(78).eml --> [Subject: Please find attached a XLS Invoice 83732][Date: Tue, 29 Nov 2016 11:53:24 +0300]=>INVOICE.TAM_83732_20161129_EFD7983DD.xls [Trojan.GenericKD.3789844]  [Delete success]
  239. 2019-8-8 15:53:46 MD5:5409102457efc1daf20d9e99d8e8917f C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(188).eml --> [From: <rbrown@rsu13.org>][Date: Wed, 18 Jan 2017 04:11:37 -0000]=>EMAIL_040615_[recipient].zip --> 13787_ZIP.zip --> 13787.doc [VB:Trojan.Valyria.155]  [Delete success]
  240. 2019-8-8 15:53:46 MD5:19f93bec7507ffbc759a82241632a832 C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(113).eml --> [Subject: FW: Incoming Confirmation][Date: Wed, 30 Jan 2019 13:48:37 -0500]=>Confirmation029820.xlsm [Trojan.XLS.Agent.Q]  [Delete success]
  241. 2019-8-8 15:53:46 MD5:79d34e9321691d41a08066ee74f6d44e C:\Users\WuYanZu\Desktop\VirusSamples_124\Samp(56).eml --> [Subject: Re: AW: New invoice #872406][Date: Wed, 30 Jan 2019 18:31:17 +0100]=>FILE-872406.doc [Trojan.GenericKD.31601171]  [Delete success]
  242. ---------------------
复制代码

菜鸟七号
发表于 2019-9-4 10:31:41 | 显示全部楼层
一个也没杀出来,真尴尬
xiuzhiguo
发表于 2019-9-4 17:53:20 | 显示全部楼层
eset miss all
munsimli
发表于 2019-9-4 22:43:20 | 显示全部楼层
fsp解壓後實時監控殺編號156,其餘右鍵掃描全miss
我爱玩蛋糕
发表于 2019-9-6 20:46:39 | 显示全部楼层
nod32竟然不支持eml文件查毒
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛|卡饭乐购| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 苏ICP备07004770号 ) GMT+8, 2019-9-19 02:31 , Processed in 0.039102 second(s), 5 queries , MemCache On.

快速回复 返回顶部 返回列表