收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 Endermanch / MalwareDatabase/fakescanners
返回列表 发新帖
查看: 1060|回复: 8
收起左侧

[可疑文件] Endermanch / MalwareDatabase/fakescanners

[复制链接]
Yuki丶
发表于 2021-1-4 20:01:02 | 显示全部楼层
本帖最后由 Yuki丶 于 2021-1-4 20:03 编辑

BD24杀
fakescanners.zip=>fakescanners=>Activation Security Warning.zip=>index.html=>(INFECTED_JS)JS:Trojan.Cryxos.2891No action was taken
fakescanners.zip=>fakescanners=>Fake Microsoft Block.zip=>msie1.htmlTrojan.GenericKD.42883099No action was taken
fakescanners.zip=>fakescanners=>Fake Chrome Alert.zip=>index2.htmlTrojan.GenericKD.42883100No action was taken
fakescanners.zip=>fakescanners=>Fake Microsoft Block.zip=>index.htmlTrojan.GenericKD.42883091No action was taken
fakescanners.zip=>fakescanners=>Activation Security Warning.zip=>redx.php=>(INFECTED_JS)JS:Trojan.Cryxos.2891No action was taken
fakescanners.zip=>fakescanners=>Fake BSOD.zip=>Fake BSOD.htmlTrojan.GenericKD.42883096No action was taken
fakescanners.zip=>fakescanners=>Apple Alert.zip=>11.html=>(INFECTED_JS)JS:Trojan.Cryxos.3952No action was taken
fakescanners.zip=>fakescanners=>Fake Microsoft Block.zip=>405.zip=>index.htmlTrojan.GenericKD.42883091No action was taken
fakescanners.zip=>fakescanners=>Fake Chrome Alert.zip=>murphy_ie.zip=>index2.htmlTrojan.GenericKD.42883100No action was taken
fakescanners.zip=>fakescanners=>Fake Chrome Alert.zip=>index.htmlTrojan.GenericKD.42883098No action was taken
akescanners.zip=>fakescanners=>LPS2019.zip=>index.htmlTrojan.JS.FakeAV.HSuspect
fakescanners.zip=>fakescanners=>Fake Chrome Alert.zip=>murphy_ie.zip=>index.htmlTrojan.GenericKD.42883098No action was taken
fakescanners.zip=>fakescanners=>Fake Login Prompt.zip=>index.html=>(INFECTED_JS)JS:Trojan.Cryxos.3903No action was taken
fakescanners.zip=>fakescanners=>Fake MacOS Infection.zip=>firiedge/index.htmlTrojan.GenericKD.31839841No action was taken
fakescanners.zip=>fakescanners=>Fake MacOS Infection.zip=>index.htmlTrojan.GenericKD.31628465No action was taken
fakescanners.zip=>fakescanners=>Fake Microsoft Support.zip=>index.html=>(INFECTED_JS)JS:Trojan.Cryxos.1018No action was taken
fakescanners.zip=>fakescanners=>Fake Microsoft Block.zip=>405.zip=>msie1.htmlTrojan.GenericKD.42883099No action was taken
fakescanners.zip=>fakescanners=>Fake Microsoft Block.zip=>405.zip=>msie2.htmlTrojan.GenericKD.42883090No action was taken
fakescanners.zip=>fakescanners=>Fake Microsoft Block.zip=>msie2.htmlTrojan.GenericKD.42883090No action was taken
fakescanners.zip=>fakescanners=>Fake Virus Alert.zip=>index.html=>(INFECTED_JS)JS:Trojan.Cryxos.3903No action was taken
fakescanners.zip=>fakescanners=>Fake Microsoft Support.zip=>murphy_chrome.zip=>index.html=>(INFECTED_JS)JS:Trojan.Cryxos.1018No action was taken
fakescanners.zip=>fakescanners=>Fake SmartScreen.zip=>index.htmlTrojan.GenericKD.42883092No action was taken
fakescanners.zip=>fakescanners=>WindowsSupport.zip=>104.248.221.3=>systemerror-ie-edge=>indexe2c9.html=>(INFECTED_JS)JS:Trojan.Cryxos.3903No action was taken
fakescanners.zip=>fakescanners=>WindowsSupport.zip=>104.248.221.3=>systemerror-ie-edge=>js=>main.js=>(INFECTED_JS)JS:Trojan.Cryxos.2103No action was taken

回复

举报

秋日之殇
发表于 2021-1-4 20:07:56 | 显示全部楼层
卡巴斯基扫描killx4

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

Yuki丶
发表于 2021-1-4 20:10:52 | 显示全部楼层
秋日之殇 发表于 2021-1-4 20:07
卡巴斯基扫描killx4

建议解压所有的压缩包
回复

举报

Nocria
发表于 2021-1-4 20:18:47 | 显示全部楼层
趋势安全大师 killed 8x.

回复

举报

秋日之殇
发表于 2021-1-4 20:20:02 | 显示全部楼层
Yuki丶 发表于 2021-1-4 20:10
建议解压所有的压缩包

解压了,双击阻止了5个连接。都是joke

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

Shake2333
发表于 2021-1-4 20:26:00 | 显示全部楼层
eset kill 14x
懒得上图了
回复

举报

心醉咖啡
发表于 2021-1-4 20:45:28 | 显示全部楼层
毒霸0
回复

举报

intherain
发表于 2021-1-4 20:52:54 | 显示全部楼层
  1. Emsisoft Anti-Malware - 版本 2020.12
  2. 最后更新: 2021/1/4 20:27:16

  4. 操作系统版本: Windows 10x64

  6. 扫描设置:

  8. 扫描方式: 自定义扫描
  9. 对象: C:\Users\Desktop\fakescanners

  11. 检测非必要程序(PUPs): 开
  12. 扫描存档: 开
  13. 扫描邮件档案: 关
  14. ADS数据流扫描: 开
  15. 直接磁盘访问: 关

  17. 扫描开始:        2021/1/4 20:51:41
  18. C:\Users\Desktop\fakescanners\Apple Alert\11.html -> (INFECTED_JS)         发现风险: JS:Trojan.Cryxos.3952 (B) [krnl.xmd]
  19. C:\Users\Desktop\fakescanners\Activation Security Warning\redx.php -> (INFECTED_JS)         发现风险: JS:Trojan.Cryxos.2891 (B) [krnl.xmd]
  20. C:\Users\Desktop\fakescanners\Activation Security Warning\index.html -> (INFECTED_JS)         发现风险: JS:Trojan.Cryxos.2891 (B) [krnl.xmd]
  21. C:\Users\Desktop\fakescanners\Fake Chrome Alert\murphy_ie.zip -> index2.html         发现风险: Trojan.GenericKD.42883100 (B) [krnl.xmd]
  22. C:\Users\Desktop\fakescanners\Fake Chrome Alert\murphy_ie.zip -> index.html         发现风险: Trojan.GenericKD.42883098 (B) [krnl.xmd]
  23. C:\Users\Desktop\fakescanners\Fake Microsoft Block\405.zip -> index.html         发现风险: Trojan.GenericKD.42883091 (B) [krnl.xmd]
  24. C:\Users\Desktop\fakescanners\Fake Microsoft Block\405.zip -> msie1.html         发现风险: Trojan.GenericKD.42883099 (B) [krnl.xmd]
  25. C:\Users\Desktop\fakescanners\Fake Microsoft Block\405.zip -> msie2.html         发现风险: Trojan.GenericKD.42883090 (B) [krnl.xmd]
  26. C:\Users\Desktop\fakescanners\WindowsSupport\104.248.221.3\systemerror-ie-edge\js\main.js -> (INFECTED_JS)         发现风险: JS:Trojan.Cryxos.2103 (B) [krnl.xmd]
  27. C:\Users\Desktop\fakescanners\Fake Microsoft Support\index.html -> (INFECTED_JS)         发现风险: JS:Trojan.Cryxos.1018 (B) [krnl.xmd]
  28. C:\Users\Desktop\fakescanners\Fake Virus Alert\index.html -> (INFECTED_JS)         发现风险: JS:Trojan.Cryxos.3903 (B) [krnl.xmd]
  29. C:\Users\Desktop\fakescanners\WindowsSupport\104.248.221.3\systemerror-ie-edge\indexe2c9.html -> (INFECTED_JS)         发现风险: JS:Trojan.Cryxos.3903 (B) [krnl.xmd]
  30. C:\Users\Desktop\fakescanners\Fake Microsoft Support\murphy_chrome.zip -> index.html -> (INFECTED_JS)         发现风险: JS:Trojan.Cryxos.1018 (B) [krnl.xmd]
  31. C:\Users\Desktop\fakescanners\index.html -> (INFECTED_JS)         发现风险: JS:Trojan.Cryxos.3903 (B) [krnl.xmd]
  32. C:\Users\Desktop\fakescanners\Fake BSOD.html         发现风险: Trojan.GenericKD.42883096 (B) [krnl.xmd]
  33. C:\Users\Desktop\fakescanners\Fake Chrome Alert\index.html         发现风险: Trojan.GenericKD.42883098 (B) [krnl.xmd]
  34. C:\Users\Desktop\fakescanners\Fake Chrome Alert\index2.html         发现风险: Trojan.GenericKD.42883100 (B) [krnl.xmd]
  35. C:\Users\Desktop\fakescanners\Fake MacOS Infection\firiedge\index.html         发现风险: Trojan.GenericKD.31839841 (B) [krnl.xmd]
  36. C:\Users\Desktop\fakescanners\Fake MacOS Infection\index.html         发现风险: Trojan.GenericKD.31628465 (B) [krnl.xmd]
  37. C:\Users\Desktop\fakescanners\Fake Microsoft Block\index.html         发现风险: Trojan.GenericKD.42883091 (B) [krnl.xmd]
  38. C:\Users\Desktop\fakescanners\Fake Microsoft Block\msie1.html         发现风险: Trojan.GenericKD.42883099 (B) [krnl.xmd]
  39. C:\Users\Desktop\fakescanners\Fake Microsoft Block\msie2.html         发现风险: Trojan.GenericKD.42883090 (B) [krnl.xmd]
  40. C:\Users\Desktop\fakescanners\Fake SmartScreen\index.html         发现风险: Trojan.GenericKD.42883092 (B) [krnl.xmd]
  41. C:\Users\Desktop\fakescanners\LPS2019\index.html         发现风险: Trojan.JS.FakeAV.H (B) [krnl.xmd]

  43. 扫描        210
  44. 发现        24

  46. 扫描结束:        2021/1/4 20:51:51
  47. 扫描时间:        0:00:10
复制代码
回复

举报

返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2025-5-4 10:14 , Processed in 0.136780 second(s), 18 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表