EXE样本5X_276

YU2711

趋势13/14
扫描(6/14)
MD5:1
Original:4
UPX:1

1. 2020/4/20 12:38,Trojan.Win32.COBALTSTRIKE.SM,安全威脅,C:\Users\UseR\Downloads\EXE样本5X_276\EXE样本5X_276\MD5\4.exe,已移除,即時掃瞄
   
2. 2020/4/20 12:38,TROJ_GEN.R002C0DDK20,病毒,C:\Users\UseR\Downloads\EXE样本5X_276\EXE样本5X_276\Original\2.exe,已移除,即時掃瞄
   
3. 2020/4/20 12:38,TROJ_FRS.VSNW06D20,安全威脅,C:\Users\UseR\Downloads\EXE样本5X_276\EXE样本5X_276\Original\3.exe,已移除,即時掃瞄
   
4. 2020/4/20 12:38,Trojan.Win32.COBALTSTRIKE.SM,安全威脅,C:\Users\UseR\Downloads\EXE样本5X_276\EXE样本5X_276\Original\4.exe,已移除,即時掃瞄
   
5. 2020/4/20 12:38,Trojan.Win32.COBALTSTRIKE.SM,安全威脅,C:\Users\UseR\Downloads\EXE样本5X_276\EXE样本5X_276\UPX\4.exe,已移除,手動掃瞄
   
6. 2020/4/20 12:38,TROJ_GEN.R049C0PDJ20,病毒,C:\Users\UseR\Downloads\EXE样本5X_276\EXE样本5X_276\Original\5.exe,已移除,手動掃瞄

复制代码

执行(7/8)
MD5:3
Original:1
UPX:3

1. 2020/4/20 12:43,C:\Users\UseR\Downloads\EXE样本5X_276\EXE样本5X_276\MD5\1.exe,OUIgo,1.00.0018,OUIGO, le TGV,ZwWriteVirtualMemory,已終止
   
2. 2020/4/20 12:46,C:\Users\UseR\Downloads\EXE样本5X_276\EXE样本5X_276\MD5\3.exe,未知,,,C:\Users\UseR\304912040124740\svchost.exe,已終止
   
3. 2020/4/20 12:47,C:\Users\UseR\Downloads\EXE样本5X_276\EXE样本5X_276\MD5\5.exe,未知,,,C:\Users\UseR\Downloads\EXE样本5X_276\EXE样本5X_276\MD5\5.exe,已清除
   
4. 2020/4/20 12:48,C:\Users\UseR\Downloads\EXE样本5X_276\EXE样本5X_276\Original\1.exe,OUIgo,1.00.0018,OUIGO, le TGV,ZwWriteVirtualMemory,已終止
   
5. 2020/4/20 12:48,C:\Users\UseR\Downloads\EXE样本5X_276\EXE样本5X_276\UPX\1.exe,OUIgo,1.00.0018,OUIGO, le TGV,ZwWriteVirtualMemory,已終止
   
6. 2020/4/20 12:49,C:\Users\UseR\Downloads\EXE样本5X_276\EXE样本5X_276\UPX\3.exe,未知,,,C:\Users\UseR\203302306117536\svchost.exe,已終止
   
7. 2020/4/20 12:50,C:\Users\UseR\Downloads\EXE样本5X_276\EXE样本5X_276\UPX\5.exe,未知,,,C:\Users\UseR\Downloads\EXE样本5X_276\EXE样本5X_276\UPX\5.exe,已清除
   

复制代码

1. 2020/4/20 12:44,HEU_CDPLC016,安全威脅,C:\Users\UseR\AppData\Local\Temp\~DF6B7303D219966DA6.TMP,已移除,關聯掃瞄
   
2. 2020/4/20 12:47,HEU_FALCONTroj.Win32.Gen.XXBM100FF008,安全威脅,C:\Users\UseR\Downloads\EXE样本5X_276\EXE样本5X_276\MD5\5.exe,已移除,即時掃瞄
   
3. 2020/4/20 12:50,HEU_FALCONTroj.Win32.Gen.XXBM100FF008,安全威脅,C:\Users\UseR\Downloads\EXE样本5X_276\EXE样本5X_276\UPX\5.exe,已移除,即時掃瞄
   

复制代码

MISS:MD5(2).exe

xcvbaby

金山毒霸：9x
UPX: 1x
Original: 4x
MD5: 4X

1. 扫描时间：[2020-04-20 12:56:55]
   
2. 扫描用时：[00:00:18]
   
3. 扫描类型：自定义查杀
   
4. 扫描文件总数：14
   
5. 扫描速度：1文件/秒
   
6. 发现威胁：9个
   
7. 清除威胁：9个
   
8. =============================================
   
9. [2020-04-20 13:01:27]
   
10. 威胁：c:\users\administrator\desktop\exe样本5x_276\upx\4.exe
    
11. 类型：win32.pswtroj.undef.(kcloud)
    
12. 处理方式：删除
    
13. 
    
14. [2020-04-20 13:01:27]
    
15. 威胁：c:\users\administrator\desktop\exe样本5x_276\original\1.exe
    
16. 类型：win32.troj.mansabo.b.(kcloud)
    
17. 处理方式：删除
    
18. 
    
19. [2020-04-20 13:01:27]
    
20. 威胁：c:\users\administrator\desktop\exe样本5x_276\original\2.exe
    
21. 类型：win32.troj.undef.(kcloud)
    
22. 处理方式：删除
    
23. 
    
24. [2020-04-20 13:01:27]
    
25. 威胁：c:\users\administrator\desktop\exe样本5x_276\original\3.exe
    
26. 类型：win32.hack.undef.(kcloud)
    
27. 处理方式：删除
    
28. 
    
29. [2020-04-20 13:01:27]
    
30. 威胁：c:\users\administrator\desktop\exe样本5x_276\original\4.exe
    
31. 类型：win32.hack.parazit.aw.(kcloud)
    
32. 处理方式：删除
    
33. 
    
34. [2020-04-20 13:01:27]
    
35. 威胁：c:\users\administrator\desktop\exe样本5x_276\md5\1.exe
    
36. 类型：win32.heur.kvm100.a
    
37. 处理方式：删除
    
38. 
    
39. [2020-04-20 13:01:27]
    
40. 威胁：c:\users\administrator\desktop\exe样本5x_276\md5\2.exe
    
41. 类型：win32.heur.kvm100.a
    
42. 处理方式：删除
    
43. 
    
44. [2020-04-20 13:01:27]
    
45. 威胁：c:\users\administrator\desktop\exe样本5x_276\md5\3.exe
    
46. 类型：win32.heur.kvm100.a
    
47. 处理方式：删除
    
48. 
    
49. [2020-04-20 13:01:27]
    
50. 威胁：c:\users\administrator\desktop\exe样本5x_276\md5\4.exe
    
51. 类型：win32.heur.kvm100.a
    
52. 处理方式：删除
    
53. 
    

复制代码