本帖最后由 Nocria 于 2020-4-19 11:14 编辑
IKARUS
不知是不是错觉,自从上次程序更新后,妖刀对抗MD5和UPX混淆的能力比之前强了不少。
Original - 4/5
- [19.04.2020 10:57:15] On-demand scan started: "user_defined"
- [19.04.2020 10:57:15] Found, 0.78s, SigName: "Trojan-PSW.Agent", SigId: 3775382, Type: "VIRUS", File: "C:\Users\promi\Desktop\EXE样本5X_266\EXE样本5X_266\Original\1.exe"
- [19.04.2020 10:57:15] Found, 0.78s, SigName: "Trojan.MSIL.Crypt", SigId: 298177898, Type: "VIRUS", File: "C:\Users\promi\Desktop\EXE样本5X_266\EXE样本5X_266\Original\2.exe"
- [19.04.2020 10:57:17] Found, 1.437s, SigName: "PUA.Multibar", SigId: 3548421, Type: "PUA", File: "C:\Users\promi\Desktop\EXE样本5X_266\EXE样本5X_266\Original\4.exe"
- [19.04.2020 10:57:17] Found, 1.610s, SigName: "Trojan.Win32.Autoit", SigId: 3794850, Type: "VIRUS", File: "C:\Users\promi\Desktop\EXE样本5X_266\EXE样本5X_266\Original\5.exe"
- [19.04.2020 10:57:17] On-demand scan FINISHED: "user_defined"
- [19.04.2020 10:57:17] ----------------------------------------------------
- [19.04.2020 10:57:17] Directories scanned: 1
- [19.04.2020 10:57:17] Files scanned: 10
- [19.04.2020 10:57:17] Virus found: 4
- [19.04.2020 10:57:17] ----------------------------------------------------
复制代码
MD5 - 3/5
- [19.04.2020 10:58:20] On-demand scan started: "user_defined"
- [19.04.2020 10:58:20] Found, 0.62s, SigName: "Trojan-PSW.Agent", SigId: 3775382, Type: "VIRUS", File: "C:\Users\promi\Desktop\EXE样本5X_266\EXE样本5X_266\MD5\1.exe"
- [19.04.2020 10:58:21] Found, 1.344s, SigName: "PUA.Multibar", SigId: 3548421, Type: "PUA", File: "C:\Users\promi\Desktop\EXE样本5X_266\EXE样本5X_266\MD5\4.exe"
- [19.04.2020 10:58:22] Found, 1.484s, SigName: "Trojan.Win32.Autoit", SigId: 3794850, Type: "VIRUS", File: "C:\Users\promi\Desktop\EXE样本5X_266\EXE样本5X_266\MD5\5.exe"
- [19.04.2020 10:58:22] On-demand scan FINISHED: "user_defined"
- [19.04.2020 10:58:22] ----------------------------------------------------
- [19.04.2020 10:58:22] Directories scanned: 1
- [19.04.2020 10:58:22] Files scanned: 10
- [19.04.2020 10:58:22] Virus found: 3
- [19.04.2020 10:58:22] ----------------------------------------------------
复制代码
UPX - emptied
- [19.04.2020 10:58:20] On-demand scan started: "user_defined"
- [19.04.2020 10:58:20] Found, 0.62s, SigName: "Trojan-PSW.Agent", SigId: 3775382, Type: "VIRUS", File: "C:\Users\promi\Desktop\EXE样本5X_266\EXE样本5X_266\MD5\1.exe"
- [19.04.2020 10:58:21] Found, 1.344s, SigName: "PUA.Multibar", SigId: 3548421, Type: "PUA", File: "C:\Users\promi\Desktop\EXE样本5X_266\EXE样本5X_266\MD5\4.exe"
- [19.04.2020 10:58:22] Found, 1.484s, SigName: "Trojan.Win32.Autoit", SigId: 3794850, Type: "VIRUS", File: "C:\Users\promi\Desktop\EXE样本5X_266\EXE样本5X_266\MD5\5.exe"
- [19.04.2020 10:58:22] On-demand scan FINISHED: "user_defined"
- [19.04.2020 10:58:22] ----------------------------------------------------
- [19.04.2020 10:58:22] Directories scanned: 1
- [19.04.2020 10:58:22] Files scanned: 10
- [19.04.2020 10:58:22] Virus found: 3
- [19.04.2020 10:58:22] ----------------------------------------------------
复制代码
|