收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 样本集奉上_140
1234下一页
返回列表 发新帖
楼主: QVM360
 收起左侧

[病毒样本] 样本集奉上_140

  [复制链接]
QVM360
 楼主| 发表于 2020-3-20 09:47:56 | 显示全部楼层
a27573 发表于 2020-3-20 09:45
果然
ESET主防只对Emotet这些广泛传播的家族起作用
为什么检测范围就不能扩大些呢

对勒索也有一些用处,但是不大。。
回复

举报

a233
发表于 2020-3-20 09:48:24 | 显示全部楼层
本帖最后由 a233 于 2020-3-20 10:11 编辑

Avast
Original 6/6

MD5 6/6

UPX 1/4

VMP 0/4
Aspack 0/4
Enigma 3/6

NoobyProtect 5/6

Themida 2/6

ZProtect 4/6

双击
UPX 3/3



VMP 1/4,3个加壳加坏的

Aspack 2/4


Enigma 3/3



NoobyProtect 2.exe加壳加坏了
Themida 4个全加壳加坏了
ZProtect 1/2,3.exe加壳加坏了

最后只有两个没防住


本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

a27573
发表于 2020-3-20 09:49:53 | 显示全部楼层
QVM360 发表于 2020-3-20 09:47
对勒索也有一些用处,但是不大。。

也是针对特定家族的勒索
回复

举报

IC9
发表于 2020-3-20 09:51:06 | 显示全部楼层
360安全 all kill
回复

举报

QVM360
 楼主| 发表于 2020-3-20 09:53:57 | 显示全部楼层
IC9 发表于 2020-3-20 09:51
360安全 all kill

肯定有官人蹲点,Themdia壳我就不信360能脱
回复

举报

swizzer
发表于 2020-3-20 09:54:34 | 显示全部楼层
a27573 发表于 2020-3-20 09:45
果然
ESET主防只对Emotet这些广泛传播的家族起作用
为什么检测范围就不能扩大些呢

eset的主防就是个补漏的,针对易变形的做检测···
目前E家并没把重心放在主防上
回复

举报

swizzer
发表于 2020-3-20 09:55:00 | 显示全部楼层
QVM360 发表于 2020-3-20 09:53
肯定有官人蹲点,Themdia壳我就不信360能脱

拉黑大法好
回复

举报

饭@avast
发表于 2020-3-20 09:55:35 | 显示全部楼层
fsp 扫描剩两个双击全杀
回复

举报

Nocria
发表于 2020-3-20 09:57:47 | 显示全部楼层
本帖最后由 Nocria 于 2020-3-20 10:01 编辑

IKARUS

ASPack - 3/4

  1. [20.03.2020 09:56:17] On-demand scan started: "user_defined"
  2. [20.03.2020 09:56:17] Found, 0.00s, SigName: "Trojan.Kazy", SigId: 2759213, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\Aspack\4.exe"
  3. [20.03.2020 09:56:17] Found, 0.16s, SigName: "Trojan.Kazy", SigId: 2759213, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\Aspack\3.exe"
  4. [20.03.2020 09:56:17] Found, 0.16s, SigName: "Trojan.Kazy", SigId: 2759213, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\Aspack\5.exe"
  5. [20.03.2020 09:56:17] On-demand scan FINISHED: "user_defined"
  6. [20.03.2020 09:56:17] ----------------------------------------------------
  7. [20.03.2020 09:56:17] Directories scanned: 1
  8. [20.03.2020 09:56:17] Files scanned: 4
  9. [20.03.2020 09:56:17] Virus found: 3
  10. [20.03.2020 09:56:17] ----------------------------------------------------
复制代码

Enigma - 2/6

  1. [20.03.2020 09:57:18] On-demand scan started: "user_defined"
  2. [20.03.2020 09:57:19] Found, 1.16s, SigName: "PUA.EnigmaProtector", SigId: 3497877, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\Enigma\4.enigma.exe"
  3. [20.03.2020 09:57:19] Found, 0.391s, SigName: "PUA.EnigmaProtector", SigId: 3497877, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\Enigma\6.enigma.exe"
  4. [20.03.2020 09:57:19] On-demand scan FINISHED: "user_defined"
  5. [20.03.2020 09:57:19] ----------------------------------------------------
  6. [20.03.2020 09:57:19] Directories scanned: 1
  7. [20.03.2020 09:57:19] Files scanned: 6
  8. [20.03.2020 09:57:19] Virus found: 2
  9. [20.03.2020 09:57:19] ----------------------------------------------------
复制代码


MD5 - 4/6

  1. [20.03.2020 09:58:21] On-demand scan started: "user_defined"
  2. [20.03.2020 09:58:21] Found, 0.00s, SigName: "Trojan.VB.Crypt", SigId: 3781399, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\MD5\3.exe"
  3. [20.03.2020 09:58:21] Found, 0.00s, SigName: "Trojan.VB.Crypt", SigId: 3783249, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\MD5\4.exe"
  4. [20.03.2020 09:58:21] Found, 0.15s, SigName: "Trojan.MSIL.Inject", SigId: 3780520, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\MD5\1.exe"
  5. [20.03.2020 09:58:21] Found, 0.15s, SigName: "Trojan.VB.Crypt", SigId: 3783249, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\MD5\5.exe"
  6. [20.03.2020 09:58:21] On-demand scan FINISHED: "user_defined"
  7. [20.03.2020 09:58:21] ----------------------------------------------------
  8. [20.03.2020 09:58:21] Directories scanned: 1
  9. [20.03.2020 09:58:21] Files scanned: 6
  10. [20.03.2020 09:58:21] Virus found: 4
  11. [20.03.2020 09:58:21] ----------------------------------------------------
复制代码


NoobyProtect - emptied

  1. [20.03.2020 09:58:52] On-demand scan started: "user_defined"
  2. [20.03.2020 09:58:52] Found, 0.31s, SigName: "PUA.NoobyProtect", SigId: 3296670, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\NoobyProtect\3_se.exe"
  3. [20.03.2020 09:58:52] Found, 0.31s, SigName: "PUA.NoobyProtect", SigId: 3296670, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\NoobyProtect\2_se.exe"
  4. [20.03.2020 09:58:53] Found, 0.47s, SigName: "PUA.NoobyProtect", SigId: 3296670, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\NoobyProtect\4_se.exe"
  5. [20.03.2020 09:58:53] Found, 0.31s, SigName: "PUA.NoobyProtect", SigId: 3296670, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\NoobyProtect\5_se.exe"
  6. [20.03.2020 09:58:53] Found, 0.78s, SigName: "PUA.NoobyProtect", SigId: 3296670, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\NoobyProtect\1_se.exe"
  7. [20.03.2020 09:58:53] Found, 0.63s, SigName: "PUA.NoobyProtect", SigId: 3296670, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\NoobyProtect\6_se.exe"
  8. [20.03.2020 09:58:53] On-demand scan FINISHED: "user_defined"
  9. [20.03.2020 09:58:53] ----------------------------------------------------
  10. [20.03.2020 09:58:53] Directories scanned: 1
  11. [20.03.2020 09:58:53] Files scanned: 6
  12. [20.03.2020 09:58:53] Virus found: 6
  13. [20.03.2020 09:58:53] ----------------------------------------------------
复制代码


Original - 5/6

  1. [20.03.2020 09:59:26] On-demand scan started: "user_defined"
  2. [20.03.2020 09:59:26] Found, 0.00s, SigName: "Trojan.VB.Crypt", SigId: 3781399, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\Original\3.exe"
  3. [20.03.2020 09:59:26] Found, 0.00s, SigName: "Trojan.VB.Crypt", SigId: 3783249, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\Original\4.exe"
  4. [20.03.2020 09:59:26] Found, 0.16s, SigName: "Trojan.VB.Crypt", SigId: 3783249, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\Original\5.exe"
  5. [20.03.2020 09:59:26] Found, 0.16s, SigName: "Trojan.MSIL.Inject", SigId: 3780520, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\Original\1.exe"
  6. [20.03.2020 09:59:26] Found, 0.16s, SigName: "Trojan.Inject", SigId: 294383821, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\Original\6.exe"
  7. [20.03.2020 09:59:26] On-demand scan FINISHED: "user_defined"
  8. [20.03.2020 09:59:26] ----------------------------------------------------
  9. [20.03.2020 09:59:26] Directories scanned: 1
  10. [20.03.2020 09:59:26] Files scanned: 6
  11. [20.03.2020 09:59:26] Virus found: 5
  12. [20.03.2020 09:59:26] ----------------------------------------------------
复制代码


Themida - 5/6

  1. [20.03.2020 09:59:53] On-demand scan started: "user_defined"
  2. [20.03.2020 09:59:53] Found, 0.62s, SigName: "Backdoor.Bifrose", SigId: 2627797, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\Themida\3.Themida.exe"
  3. [20.03.2020 09:59:53] Found, 0.62s, SigName: "Backdoor.Win32.Prorat", SigId: 2774693, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\Themida\2.Themida.exe"
  4. [20.03.2020 09:59:54] Found, 0.125s, SigName: "Backdoor.Win32.Prorat", SigId: 2774693, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\Themida\4.Themida.exe"
  5. [20.03.2020 09:59:54] Found, 0.63s, SigName: "Backdoor.Bifrose", SigId: 2627797, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\Themida\5.Themida.exe"
  6. [20.03.2020 09:59:54] Found, 0.94s, SigName: "Backdoor.MSIL.CardinalRAT", SigId: 3624713, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\Themida\6.Themida.exe"
  7. [20.03.2020 09:59:54] On-demand scan FINISHED: "user_defined"
  8. [20.03.2020 09:59:54] ----------------------------------------------------
  9. [20.03.2020 09:59:54] Directories scanned: 1
  10. [20.03.2020 09:59:54] Files scanned: 6
  11. [20.03.2020 09:59:54] Virus found: 5
  12. [20.03.2020 09:59:54] ----------------------------------------------------
复制代码


UPX - 3/4

  1. [20.03.2020 10:00:28] On-demand scan started: "user_defined"
  2. [20.03.2020 10:00:28] Found, 0.00s, SigName: "Trojan.VB.Crypt", SigId: 3783249, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\UPX\4.exe"
  3. [20.03.2020 10:00:28] Found, 0.00s, SigName: "Trojan.VB.Crypt", SigId: 3781399, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\UPX\3.exe"
  4. [20.03.2020 10:00:28] Found, 0.00s, SigName: "Trojan.VB.Crypt", SigId: 3783249, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\UPX\5.exe"
  5. [20.03.2020 10:00:28] On-demand scan FINISHED: "user_defined"
  6. [20.03.2020 10:00:28] ----------------------------------------------------
  7. [20.03.2020 10:00:28] Directories scanned: 1
  8. [20.03.2020 10:00:28] Files scanned: 4
  9. [20.03.2020 10:00:28] Virus found: 3
  10. [20.03.2020 10:00:28] ----------------------------------------------------
复制代码


VMProtect - 2/4

  1. [20.03.2020 10:00:53] On-demand scan started: "user_defined"
  2. [20.03.2020 10:00:53] Found, 0.78s, SigName: "Trojan.VB.Crypt", SigId: 3783249, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\VMProtect\4.vmp.exe"
  3. [20.03.2020 10:00:53] Found, 0.78s, SigName: "Trojan.VB.Crypt", SigId: 3781399, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\VMProtect\3.vmp.exe"
  4. [20.03.2020 10:00:54] On-demand scan FINISHED: "user_defined"
  5. [20.03.2020 10:00:54] ----------------------------------------------------
  6. [20.03.2020 10:00:54] Directories scanned: 1
  7. [20.03.2020 10:00:54] Files scanned: 4
  8. [20.03.2020 10:00:54] Virus found: 2
  9. [20.03.2020 10:00:54] ----------------------------------------------------
复制代码


ZProtect - 3/6

  1. [20.03.2020 10:00:53] On-demand scan started: "user_defined"
  2. [20.03.2020 10:00:53] Found, 0.78s, SigName: "Trojan.VB.Crypt", SigId: 3783249, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\VMProtect\4.vmp.exe"
  3. [20.03.2020 10:00:53] Found, 0.78s, SigName: "Trojan.VB.Crypt", SigId: 3781399, Type: "VIRUS", File: "C:\Users\promi\Desktop\样本集奉上_140\样本集奉上_140\VMProtect\3.vmp.exe"
  4. [20.03.2020 10:00:54] On-demand scan FINISHED: "user_defined"
  5. [20.03.2020 10:00:54] ----------------------------------------------------
  6. [20.03.2020 10:00:54] Directories scanned: 1
  7. [20.03.2020 10:00:54] Files scanned: 4
  8. [20.03.2020 10:00:54] Virus found: 2
  9. [20.03.2020 10:00:54] ----------------------------------------------------
复制代码
回复

举报

TimelessTT
发表于 2020-3-20 10:02:00 | 显示全部楼层
QVM360 发表于 2020-3-20 09:39
ESET牛逼!
扫描+双击,除去加壳加坏的,清空!!!

少见HIPS和AMS大杀特杀
回复

举报

下一页 »
1234下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-4-25 22:02 , Processed in 0.099087 second(s), 14 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表