10x (20200312,Original+Packed_With_UPX_Shell)

显示全部楼层 · 发表于 2020-3-12 21:34:21

本帖最后由 YorkWaugh 于 2020-3-12 21:35 编辑

最近没人玩火绒了吗

5、7、8、10不报

显示全部楼层 · 发表于 2020-3-12 21:45:03

等了几分钟依旧是3x

显示全部楼层 · 发表于 2020-3-12 22:04:56

本帖最后由巍巍于 2020-3-13 07:23 编辑

BD kill 14x
(有些乱,有些没被清除,截图有些麻烦,就不贴了)
刚刚重启清除了一下,original剩下9.exe,upx剩下8.exe
双击全灭

显示全部楼层 · 发表于 2020-3-12 22:06:12

本帖最后由 Nocria 于 2020-3-12 22:13 编辑

IKARUS - 14/16

Original - emptied

[12.03.2020 22:08:59] On-demand scan started: "user_defined"
[12.03.2020 22:08:59] Found, 0.31s, SigName: "Trojan-Ransom.FileCrypter", SigId: 294218478, Type: "VIRUS", File: "C:\Users\promi\Desktop\10x（20200312）\10x（20200312）\Original\10.exe"
[12.03.2020 22:08:59] Found, 0.31s, SigName: "Trojan.Win32.MBRlock", SigId: 206141828, Type: "VIRUS", File: "C:\Users\promi\Desktop\10x（20200312）\10x（20200312）\Original\7.exe"
[12.03.2020 22:08:59] Found, 0.00s, SigName: "Win32.Outbreak", SigId: 294245841, Type: "VIRUS", File: "C:\Users\promi\Desktop\10x（20200312）\10x（20200312）\Original\8.exe"
[12.03.2020 22:08:59] Found, 0.31s, SigName: "Trojan-Spy.LokiBot", SigId: 3777026, Type: "VIRUS", File: "C:\Users\promi\Desktop\10x（20200312）\10x（20200312）\Original\9.exe"
[12.03.2020 22:08:59] Found, 0.78s, SigName: "Trojan.MSIL.Inject", SigId: 3775038, Type: "VIRUS", File: "C:\Users\promi\Desktop\10x（20200312）\10x（20200312）\Original\1.exe"
[12.03.2020 22:09:00] Found, 0.312s, SigName: "Trojan.Win32.Crypt", SigId: 3767149, Type: "VIRUS", File: "C:\Users\promi\Desktop\10x（20200312）\10x（20200312）\Original\5.exe"
[12.03.2020 22:09:00] On-demand scan FINISHED: "user_defined"
[12.03.2020 22:09:00] ----------------------------------------------------
[12.03.2020 22:09:00] Directories scanned: 1
[12.03.2020 22:09:00] Files scanned: 6
[12.03.2020 22:09:00] Virus found: 6
[12.03.2020 22:09:00] ----------------------------------------------------

复制代码

UPX - 4/6

[12.03.2020 22:10:07] On-demand scan started: "user_defined"
[12.03.2020 22:10:07] Found, 0.16s, SigName: "Trojan-Ransom.FileCrypter", SigId: 293579036, Type: "VIRUS", File: "C:\Users\promi\Desktop\10x（20200312）\10x（20200312）\UPX\10.upx.exe"
[12.03.2020 22:10:07] Found, 0.16s, SigName: "Trojan.Win32.Crypt", SigId: 275316819, Type: "VIRUS", File: "C:\Users\promi\Desktop\10x（20200312）\10x（20200312）\UPX\7.upx.exe"
[12.03.2020 22:10:07] Found, 0.156s, SigName: "Trojan-Spy.LokiBot", SigId: 3777026, Type: "VIRUS", File: "C:\Users\promi\Desktop\10x（20200312）\10x（20200312）\UPX\9.upx.exe"
[12.03.2020 22:10:07] Found, 0.344s, SigName: "Trojan.Win32.Crypt", SigId: 3767149, Type: "VIRUS", File: "C:\Users\promi\Desktop\10x（20200312）\10x（20200312）\UPX\5.upx.exe"
[12.03.2020 22:10:08] On-demand scan FINISHED: "user_defined"
[12.03.2020 22:10:08] ----------------------------------------------------
[12.03.2020 22:10:08] Directories scanned: 1
[12.03.2020 22:10:08] Files scanned: 6
[12.03.2020 22:10:08] Virus found: 4
[12.03.2020 22:10:08] ----------------------------------------------------

复制代码

根目录 - emptied

[12.03.2020 22:11:07] On-demand scan started: "user_defined"
[12.03.2020 22:11:07] Found, 0.16s, SigName: "Trojan.MSIL.Inject", SigId: 3776071, Type: "VIRUS", File: "C:\Users\promi\Desktop\10x（20200312）\10x（20200312）\6.scr"
[12.03.2020 22:11:07] Found, 0.16s, SigName: "Trojan.Inject", SigId: 294218226, Type: "VIRUS", File: "C:\Users\promi\Desktop\10x（20200312）\10x（20200312）\4.exe"
[12.03.2020 22:11:07] Found, 0.31s, SigName: "Trojan.Inject", SigId: 294236473, Type: "VIRUS", File: "C:\Users\promi\Desktop\10x（20200312）\10x（20200312）\2.exe"
[12.03.2020 22:11:07] Found, 0.78s, SigName: "Trojan-Spy.Azorult", SigId: 293913952, Type: "VIRUS", File: "C:\Users\promi\Desktop\10x（20200312）\10x（20200312）\3.com"
[12.03.2020 22:11:07] On-demand scan FINISHED: "user_defined"
[12.03.2020 22:11:07] ----------------------------------------------------
[12.03.2020 22:11:07] Directories scanned: 0
[12.03.2020 22:11:07] Files scanned: 4
[12.03.2020 22:11:07] Virus found: 4
[12.03.2020 22:11:07] ----------------------------------------------------

复制代码

显示全部楼层 · 发表于 2020-3-12 22:08:55

Emsisoft 12x
Emsisoft Anti-Malware Home v. 2020.3.0.10024
(C) 2003-2020 Emsisoft - www.emsisoft.com

ID  Object
0 C:\Users\CNSAc\Downloads\10x（20200312）\3.com  Trojan.GenericKD.33504379 (B)
1 C:\Users\CNSAc\Downloads\10x（20200312）\Original\7.exe  Trojan.Generic.17389935 (B)
2 C:\Users\CNSAc\Downloads\10x（20200312）\UPX\1.upx.exe  Trojan.Agent.ENAG (B)
3 C:\Users\CNSAc\Downloads\10x（20200312）\Original\1.exe  Trojan.GenericKDZ.65403 (B)
4 C:\Users\CNSAc\Downloads\10x（20200312）\4.exe  Trojan.GenericKD.33534696 (B)
5 C:\Users\CNSAc\Downloads\10x（20200312）\6.scr  Trojan.GenericKD.33534355 (B)
6 C:\Users\CNSAc\Downloads\10x（20200312）\UPX\9.upx.exe  Gen:Variant.Barys.686 (B)
7 C:\Users\CNSAc\Downloads\10x（20200312）\2.exe  Gen:Trojan.Heur.DNP.Qm0@aGicKYc (B)
8 C:\Users\CNSAc\Downloads\10x（20200312）\Original\10.exe  Gen:Heur.Ransom.REntS.Gen.1 (B)
9 C:\Users\CNSAc\Downloads\10x（20200312）\Original\8.exe  MalCert.A (A)
10  C:\Users\CNSAc\Downloads\10x（20200312）\UPX\10.upx.exe  Gen:Variant.Razy.596169 (B)
11  C:\Users\CNSAc\Downloads\10x（20200312）\UPX\7.upx.exe  Gen:Variant.Graftor.399091 (B)

显示全部楼层 · 发表于 2020-3-12 22:12:29

扫描3，剩余双击

显示全部楼层 · 发表于 2020-3-12 22:14:08

显示全部楼层 · 发表于 2020-3-12 22:42:13

DrWeb
10/16
-根目录 kill 2x
-original kill 5x
-upx kill 3x

显示全部楼层 · 发表于 2020-3-13 19:21:14

咖啡清空，数量为16个

显示全部楼层 · 发表于 2020-3-13 22:36:50

提示: 该帖被管理员或版主屏蔽

argergasdf 头像被屏蔽	发表于 2020-3-13 22:36:50 \| 显示全部楼层提示: 该帖被管理员或版主屏蔽
argergasdf 头像被屏蔽
	回复举报

[病毒样本] 10x (20200312,Original+Packed_With_UPX_Shell)

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

浏览过的版块