【缉毒卫队测试包】第67期 20201128

sunwei_8

anthonyqian 发表于 2020-11-28 18:48
应该是蹲点MalwareBazaar 吧。。。

有阿三那味了

秋日之殇

anthonyqian 发表于 2020-11-28 18:45
卡巴的云拉黑还是比较快的

不是云端拉黑，是本地机器学习。应该是卡巴早就捕获到了样本在下一次数据库更新时更新了启发式特征。

sunwei_8

秋日之殇 发表于 2020-11-28 18:52
不是云端拉黑，是本地机器学习。应该是卡巴早就捕获到了样本在下一次数据库更新时更新了启发式特征。

卡巴好样的，但那个神秘男人发的勒索还没做到通杀哈哈哈

anthonyqian

秋日之殇 发表于 2020-11-28 18:52
不是云端拉黑，是本地机器学习。应该是卡巴早就捕获到了样本在下一次数据库更新时更新了启发式特征。

我猜的 哈哈哈 现在没在用卡巴

夏墨123

【测试类型】：
①安软扫描；
【测试环境】
①联网；
② Win10-1909-64，
【测试工具版本】：
①测试工具名称 及其 主程序版本：dr.web ss 12.0
②病毒库版本：2020-11-28  19：16
【测试配置】：默认配置
【测试结果】：
安软扫描情况： 38/50 = 76%；
【测试截图】
file:///C:/Users/xm/Desktop/1.jpg

Shake2333

• 【测试类型】：
  ①安软扫描；
• 【测试环境】
  ①联网；
  ②Windows 10 20H2 X64
• 【测试工具版本】：
  ①测试工具名称 及其 主程序版本：ESET Internet Security 14.0.22.0
  ②病毒库版本：22394
• 【测试配置】：最高
• 【测试结果】：
  安软扫描情况： 30/50 = 60%；（eset居然翻车了）
• 2020.11.29扫描：45/50=90%
• 【测试截图】
• 【测试日志】
  

Nocria

IK - 31/50

1. [28.11.2020 20:55:02] On-demand scan started: "user_defined"
   
2. [28.11.2020 20:55:02] Found, 0.141s, SigName: "Trojan-Banker.AndroidOS.Cerberus", SigId: 3966279, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (1).apk"
   
3. [28.11.2020 20:55:02] Found, 0.328s, SigName: "Trojan.Win32.Crypt", SigId: 315584956, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (1).dll"
   
4. [28.11.2020 20:55:02] Found, 0.47s, SigName: "Linux.Mirai", SigId: 3939981, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (1).elf"
   
5. [28.11.2020 20:55:02] Found, 0.15s, SigName: "Trojan.Java.Crypt", SigId: 315233897, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (1).jar"
   
6. [28.11.2020 20:55:02] Found, 0.15s, SigName: "Trojan-Downloader.VBA.Agent", SigId: 315551536, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (1).unknown"
   
7. [28.11.2020 20:55:02] Found, 0.00s, SigName: "Trojan-Downloader.O97M.Qakbot", SigId: 315585094, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (1).xls"
   
8. [28.11.2020 20:55:02] Found, 0.16s, SigName: "Trojan-Downloader.VBA.Agent", SigId: 315551536, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (1).xlsx"
   
9. [28.11.2020 20:55:03] Found, 0.31s, SigName: "Win32.SuspectCrc", SigId: 315542236, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (1).zip"
   
10. [28.11.2020 20:55:03] Found, 0.31s, SigName: "Trojan-Banker.Emotet", SigId: 3918690, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (10).exe"
    
11. [28.11.2020 20:55:03] Found, 0.00s, SigName: "Trojan.MSIL.Bladabindi", SigId: 3729783, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (11).exe"
    
12. [28.11.2020 20:55:03] Found, 0.109s, SigName: "Trojan.Win32.Injector", SigId: 315581149, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (12).exe"
    
13. [28.11.2020 20:55:03] Found, 0.16s, SigName: "Trojan.PS.Agent", SigId: 3965499, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (18).xls"
    
14. [28.11.2020 20:55:03] Found, 0.297s, SigName: "Trojan.Win32.Krypt", SigId: 315582637, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (2).dll"
    
15. [28.11.2020 20:55:03] Found, 0.00s, SigName: "SuspectFile", SigId: 312891763, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (2).elf"
    
16. [28.11.2020 20:55:03] Found, 0.00s, SigName: "Trojan.Downloader", SigId: 3939103, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (2).exe"
    
17. [28.11.2020 20:55:03] Found, 0.00s, SigName: "Trojan-Downloader.Office.Crypt", SigId: 3976740, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (2).xlsx"
    
18. [28.11.2020 20:55:03] Found, 0.00s, SigName: "Trojan.Win32.Krypt", SigId: 315582637, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (3).bin"
    
19. [28.11.2020 20:55:03] Found, 0.16s, SigName: "Trojan.SuspectCRC", SigId: 315580465, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (3).dll"
    
20. [28.11.2020 20:55:03] Found, 0.16s, SigName: "Trojan.Shelma", SigId: 315490378, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (3).exe"
    
21. [28.11.2020 20:55:03] Found, 0.46s, SigName: "Trojan.Win32.Crypt", SigId: 315584955, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (4).dll"
    
22. [28.11.2020 20:55:03] Found, 0.62s, SigName: "Win32.SuspectCrc", SigId: 315559607, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (4).exe"
    
23. [28.11.2020 20:55:03] Found, 0.47s, SigName: "Trojan.Win32.Crypt", SigId: 315584894, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (5).dll"
    
24. [28.11.2020 20:55:03] Found, 0.78s, SigName: "Trojan.MSIL.Vmprotect", SigId: 3866727, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (5).exe"
    
25. [28.11.2020 20:55:03] Found, 0.47s, SigName: "Trojan.Win32.Crypt", SigId: 315584951, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (6).dll"
    
26. [28.11.2020 20:55:03] Found, 0.47s, SigName: "Trojan.MSIL.Tiny", SigId: 3933378, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (6).exe"
    
27. [28.11.2020 20:55:03] Found, 0.16s, SigName: "Trojan.SuspectCRC", SigId: 315581762, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (7).dll"
    
28. [28.11.2020 20:55:03] Found, 0.16s, SigName: "Trojan.MSIL.Inject", SigId: 3965796, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (7).exe"
    
29. [28.11.2020 20:55:03] Found, 0.47s, SigName: "Trojan.Win32.Crypt", SigId: 315584953, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (8).dll"
    
30. [28.11.2020 20:55:03] Found, 0.63s, SigName: "Trojan.SuspectCRC", SigId: 315579254, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (8).exe"
    
31. [28.11.2020 20:55:03] Found, 0.00s, SigName: "Trojan.MSIL.Agent", SigId: 3891979, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (9).exe"
    
32. [28.11.2020 20:55:03] Found, 0.00s, SigName: "Trojan.DOC.Crypt", SigId: 315584946, Type: "VIRUS", File: "C:\Users\promi\Desktop\【缉毒卫队测试包】第67期 20201128\【缉毒卫队测试包】第67期 20201128\test sample (9).xls"
    
33. [28.11.2020 20:55:03] On-demand scan FINISHED: "user_defined"
    
34. [28.11.2020 20:55:03] ----------------------------------------------------
    
35. [28.11.2020 20:55:03] Directories scanned: 2
    
36. [28.11.2020 20:55:03] Files scanned: 50
    
37. [28.11.2020 20:55:03] Virus found: 31
    
38. [28.11.2020 20:55:03] ----------------------------------------------------

复制代码

jumgg265

秋日之殇 发表于 2020-11-28 17:35
在宏设置里设置启用所有宏，双击会报pdm的。

宏设置在哪里啊 找了一圈没找到

秋日之殇

jumgg265 发表于 2020-11-29 10:49
宏设置在哪里啊 找了一圈没找到

office2019：打开excel，点击右下方的选项，点击信任中心，点击信任中心设置，选择宏设置。

sunwei_8

jumgg265 发表于 2020-11-29 10:49
宏设置在哪里啊 找了一圈没找到

楼下老哥解答了