收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 EXE样本6X_213
返回列表 发新帖
查看: 1203|回复: 9
收起左侧

[病毒样本] EXE样本6X_213

[复制链接]
QVM360
发表于 2020-3-31 23:27:01 | 显示全部楼层 |阅读模式
本帖最后由 QVM360 于 2020-3-31 23:28 编辑

RT,未改后缀请小心食用,后果自负。。


载点:https://www.lanzous.com/iauofed     密码:infected

综合了上次投票的结果,得出这个标题。。

希望大佬们能够多多赏糖,您的赏糖是我更新最大的动力!
单选投票, 共有 11 人参与投票
81.82% (9)
18.18% (2)
您所在的用户组没有投票权限

评分

参与人数 1人气 +1 收起 理由
petr0vic + 1

查看全部评分

回复

举报

我我我55
头像被屏蔽
发表于 2020-3-31 23:39:07 | 显示全部楼层
eset剩下1个
回复

举报

petr0vic
发表于 2020-4-1 01:43:09 | 显示全部楼层
极宝杀毒V1.7.4
kill all



本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

a233
发表于 2020-3-31 23:57:24 | 显示全部楼层
Avast
Original 5/6
MD5 5/6
UPX 4/6
ZProtect 2/6
ASPack 2/6
VMP 1/6
不双击

回复

举报

救命稻草
发表于 2020-4-1 00:00:00 | 显示全部楼层
Avira Free kill All
回复

举报

心醉咖啡
发表于 2020-4-1 01:31:26 | 显示全部楼层
毒霸
  1. 扫描时间:[2020-04-01 01:30:45]
  2. 扫描用时:[00:00:12]
  3. 扫描类型:自定义查杀
  4. 扫描文件总数:37
  5. 扫描速度:2文件/秒
  6. 发现威胁:2个
  7. 清除威胁:2个
  8. =============================================
  9. [2020-04-01 01:31:05]
  10. 威胁:f:\浏览器下载\exe样本6x_213\vmprotect\6.vmp.exe
  11. 类型:win32.heur.kvmh012.a
  12. 处理方式:删除

  14. [2020-04-01 01:31:05]
  15. 威胁:f:\浏览器下载\exe样本6x_213\aspack\2.exe
  16. 类型:win32.troj.generic_a.a.(kcloud)
  17. 处理方式:删除

复制代码
回复

举报

欧阳宣
头像被屏蔽
发表于 2020-4-1 08:32:51 | 显示全部楼层
malwarebytes
  1. Malwarebytes
  2. File: 34
  3. MachineLearning/Anomalous.97%, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\ASPACK\1.EXE, No Action By User, 0, 392687, 1.0.21702, , shuriken,
  4. MachineLearning/Anomalous.100%, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\ASPACK\6.EXE, No Action By User, 0, 392687, 1.0.21702, , shuriken,
  5. MachineLearning/Anomalous.100%, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\ASPACK\2.EXE, No Action By User, 0, 392687, 1.0.21702, , shuriken,
  6. MachineLearning/Anomalous.100%, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\ASPACK\5.EXE, No Action By User, 0, 392687, 1.0.21702, , shuriken,
  7. MachineLearning/Anomalous.100%, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\UPX\6.EXE, No Action By User, 0, 392687, 1.0.21702, , shuriken,
  8. Trojan.GuLoader, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\ASPACK\4.EXE, No Action By User, 8320, 805543, 1.0.21702, 000000000000000000000003, dds, 00656610
  9. Spyware.RaccoonStealer, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\ASPACK\3.EXE, No Action By User, 7451, 805947, 1.0.21702, 000000000000000000000003, dds, 00656610
  10. Trojan.GuLoader, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\MD5\4.EXE, No Action By User, 8320, 805543, 1.0.21702, , ame,
  11. Backdoor.AveMaria, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\MD5\6.EXE, No Action By User, 3875, 685416, 1.0.21702, 3F2886197B2E441BD1EC2740, dds, 00656610
  12. Backdoor.AveMaria, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\ORIGINAL\6.EXE, No Action By User, 3875, 685416, 1.0.21702, 3F2886197B2E441BD1EC2740, dds, 00656610
  13. Trojan.MalPack.GS, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\MD5\2.EXE, No Action By User, 8183, 805942, 1.0.21702, , ame,
  14. Trojan.GuLoader, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\ORIGINAL\4.EXE, No Action By User, 8320, 805543, 1.0.21702, , ame,
  15. Trojan.MalPack.GS, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\ORIGINAL\2.EXE, No Action By User, 8183, 805942, 1.0.21702, , ame,
  16. Trojan.MalPack.DLF, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\MD5\5.EXE, No Action By User, 7765, 805468, 1.0.21702, D1ECB63A45C643DF39740621, dds, 00656610
  17. Trojan.MalPack.GS, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\UPX\2.EXE, No Action By User, 8183, 805942, 1.0.21702, , ame,
  18. Trojan.GuLoader, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\UPX\4.EXE, No Action By User, 8320, 805543, 1.0.21702, , ame,
  19. Backdoor.Qbot, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\MD5\1.EXE, No Action By User, 670, 803062, 1.0.21702, 8A999259CF2B5951EB6B13E3, dds, 00656610
  20. Spyware.RaccoonStealer, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\MD5\3.EXE, No Action By User, 7451, 805947, 1.0.21702, 6C8AD563706339ACF853C1F6, dds, 00656610
  21. Trojan.MalPack.DLF, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\ORIGINAL\5.EXE, No Action By User, 7765, 805468, 1.0.21702, D1ECB63A45C643DF39740621, dds, 00656610
  22. Spyware.RaccoonStealer, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\ORIGINAL\3.EXE, No Action By User, 7451, 805947, 1.0.21702, 6C8AD563706339ACF853C1F6, dds, 00656610
  23. Backdoor.Qbot, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\ORIGINAL\1.EXE, No Action By User, 670, 803062, 1.0.21702, 8A999259CF2B5951EB6B13E3, dds, 00656610
  24. Spyware.LokiBot, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\UPX\5.EXE, No Action By User, 4188, 641023, 1.0.21702, , ame,
  25. Generic.Malware/Suspicious, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\VMPROTECT\4.VMP.EXE, No Action By User, 0, 392686, 1.0.21702, , shuriken,
  26. Generic.Malware/Suspicious, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\VMPROTECT\2.VMP.EXE, No Action By User, 0, 392686, 1.0.21702, , shuriken,
  27. Generic.Malware/Suspicious, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\VMPROTECT\6.VMP.EXE, No Action By User, 0, 392686, 1.0.21702, , shuriken,
  28. MachineLearning/Anomalous.100%, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\ZPROTECT\6.ZP.EXE, No Action By User, 0, 392687, 1.0.21702, , shuriken,
  29. Generic.Malware/Suspicious, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\ZPROTECT\5.ZP.EXE, No Action By User, 0, 392686, 1.0.21702, , shuriken,
  30. Backdoor.Qbot, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\UPX\1.EXE, No Action By User, 670, 803062, 1.0.21702, , ame,
  31. Spyware.RaccoonStealer, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\UPX\3.EXE, No Action By User, 7451, 805947, 1.0.21702, , ame,
  32. Spyware.RaccoonStealer, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\VMPROTECT\3.VMP.EXE, No Action By User, 7451, 805947, 1.0.21702, 000000000000000000000003, dds, 00656610
  33. Trojan.GuLoader, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\ZPROTECT\4.ZP.EXE, No Action By User, 8320, 805929, 1.0.21702, 601364C0E0EBA2FCFC77CFD3, dds, 00656610
  34. Spyware.RaccoonStealer, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\ZPROTECT\3.ZP.EXE, No Action By User, 7451, 805947, 1.0.21702, C45E95BB815FF716823461BF, dds, 00656610
  35. Backdoor.Qbot, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\ZPROTECT\1.ZP.EXE, No Action By User, 670, 803062, 1.0.21702, 601364C0E0EBA2FCFC77CFD3, dds, 00656610
  36. Generic.Malware/Suspicious, D:\VIRUS\EXE样本6X_213\EXE-·|+6X_213\ZPROTECT\2.ZP.EXE, No Action By User, 0, 392686, 1.0.21702, , shuriken,
复制代码
回复

举报

很温和
发表于 2020-4-1 08:38:37 | 显示全部楼层
fsp kill all
https://www.f-secure.com/v-descs/trojan_w32_generic.shtml
https://www.f-secure.com/v-descs/packed_w32_pecan_a.shtml
https://www.f-secure.com/v-descs/packed_w32_pecan_a.shtml
https://www.f-secure.com/v-descs/packed_w32_pecan_a.shtml
https://www.f-secure.com/v-descs/default.shtml
https://www.f-secure.com/v-descs/heuristic.shtml
https://www.f-secure.com/v-descs/heuristic.shtml
https://www.f-secure.com/v-descs/trojan_w32_generic.shtml
https://www.f-secure.com/v-descs/trojan_w32_lokibot.shtml
https://www.f-secure.com/v-descs/trojan_w32_generic.shtml
https://www.f-secure.com/v-descs/trojan_w32_lokibot.shtml
https://www.f-secure.com/v-descs/heuristic.shtml
https://www.f-secure.com/v-descs/trojan_w32_generic.shtml
https://www.f-secure.com/v-descs/default.shtml
https://www.f-secure.com/v-descs/heuristic.shtml
https://www.f-secure.com/v-descs/trojan_w32_injector.shtml
https://www.f-secure.com/v-descs/trojan_w32_injector.shtml
https://www.f-secure.com/v-descs/trojan-dropper_generic.shtml
https://www.f-secure.com/v-descs/trojan_w32_lokibot.shtml
https://www.f-secure.com/v-descs/trojan_w32_injector.shtml
https://www.f-secure.com/v-descs/trojan-dropper_generic.shtml
https://www.f-secure.com/v-descs/trojan_w32_injector.shtml
https://www.f-secure.com/v-descs/default.shtml
https://www.f-secure.com/v-descs/trojan-dropper_generic.shtml
https://www.f-secure.com/v-descs/trojan_w32_lokibot.shtml
https://www.f-secure.com/v-descs/trojan_w32_generic.shtml
https://www.f-secure.com/v-descs/trojan_w32_generic.shtml
https://www.f-secure.com/v-descs/default.shtml
https://www.f-secure.com/v-descs/trojan_w32_injector.shtml
有许多rt是变种啊
回复

举报

K560987
发表于 2020-4-1 08:58:42 | 显示全部楼层
诺顿kill all
类型:启发式病毒;病毒
回复

举报

小岛花六
发表于 2020-4-1 10:09:56 | 显示全部楼层


杀剩下的文件已提交官方复核。

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2025-4-30 23:49 , Processed in 0.131263 second(s), 23 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表