【开放测试】卡饭病毒样本包 20210211 第123期

心醉咖啡

火绒

1. 病毒库时间：2021-02-11 16:51
   
2. 开始时间：2021-02-11 18:42
   
3. 总计用时：00:00:01
   
4. 扫描对象：106
   
5. 扫描文件：11
   
6. 发现风险：3
   
7. 已处理风险：3
   
8. 病毒详情：
   
9. 风险路径：E:\浏览器下载\11x (2021-02-11)\00p86q8O9A8Wt3xwIx1h.exe, 病毒名：HEUR:VirTool/MSIL.Obfuscator.gen!A, 病毒ID：3fda44dcb57a42be, 处理结果：已处理，删除文件
   
10. 风险路径：E:\浏览器下载\11x (2021-02-11)\q0m14U2047PnCwT5IPoH.xlsm, 病毒名：OMacro/Downloader.ahf, 病毒ID：36cc3d2e1579362f, 处理结果：已处理，清除恶意代码
    
11. 风险路径：E:\浏览器下载\11x (2021-02-11)\5LSOYd0Bp9PPAZ15eR2p.dll, 病毒名：VirTool/Obfuscator.lt, 病毒ID：ef77c42faaeb365d, 处理结果：已处理，删除文件
    

复制代码

企稳向好

GD 8X ,全是BD引擎杀的

ELOHIM

参加测试。

InApproaching

eset剩下一个

ELOHIM

1. 2021/02/11  17:45         1,012,740 5AKpkW1MReljH1l7JR9t.dll
   
2. 2021/02/11  17:45           101,269 7U7O9BEXC93933dY12f4.xlsb
   
3. 2021/02/11  17:45           408,103 ltEg29MK5zQ07PB7hvbJ.vbs
   
4. 2021/02/11  17:45            16,388 mFlZH7HUXLN7qoKFo5Lh.dll
   
5. 2021/02/11  17:45           933,966 mT7254twc0u28G1WiMFY.exe
   
6. 2021/02/11  17:45           110,596 wupV98El0qZkpEvMqX4q.exe

复制代码

扫描剩下这几个。

ZSsafe

感谢分享！


智速安全助手7kill（后续还会继续努力的！）

配置：默认配置

hsks

360
剩余样本中VT显示又kill1X

总共：7X

正在缓冲

avast

Nocria

IKARUS - 5/11

1. [11.02.2021 20:12:59] On-demand scan started: "user_defined"
   
2. [11.02.2021 20:13:01] Found, 0.47s, SigName: "Trojan-Dropper.DOC.Agent", SigId: 4031381, Type: "VIRUS", File: "C:\Users\promi\Desktop\11x (2021-02-11)\11x (2021-02-11)\7U7O9BEXC93933dY12f4.xlsb"
   
3. [11.02.2021 20:13:01] Found, 0.62s, SigName: "Trojan.Inject", SigId: 3752428, Type: "VIRUS", File: "C:\Users\promi\Desktop\11x (2021-02-11)\11x (2021-02-11)\C5daPw1V44tZhUX8y1tO.exe"
   
4. [11.02.2021 20:13:01] Found, 0.16s, SigName: "Trojan-Banker.Dridex", SigId: 3671795, Type: "VIRUS", File: "C:\Users\promi\Desktop\11x (2021-02-11)\11x (2021-02-11)\mFlZH7HUXLN7qoKFo5Lh.dll"
   
5. [11.02.2021 20:13:01] Found, 0.94s, SigName: "Trojan-Banker.Emotet", SigId: 3720419, Type: "VIRUS", File: "C:\Users\promi\Desktop\11x (2021-02-11)\11x (2021-02-11)\mT7254twc0u28G1WiMFY.exe"
   
6. [11.02.2021 20:13:01] Found, 0.15s, SigName: "Trojan.VB.Crypt", SigId: 4037095, Type: "VIRUS", File: "C:\Users\promi\Desktop\11x (2021-02-11)\11x (2021-02-11)\wupV98El0qZkpEvMqX4q.exe"
   
7. [11.02.2021 20:13:01] On-demand scan FINISHED: "user_defined"
   
8. [11.02.2021 20:13:01] ----------------------------------------------------
   
9. [11.02.2021 20:13:01] Directories scanned: 2
   
10. [11.02.2021 20:13:01] Files scanned: 11
    
11. [11.02.2021 20:13:01] Virus found: 5
    
12. [11.02.2021 20:13:01] ----------------------------------------------------

复制代码

---

MBAM - 5/11

1. File: 5
   
2. Trojan.MalPack, C:\USERS\PROMI\DESKTOP\11X (2021-02-11)\11X (2021-02-11)\C5DAPW1V44TZHUX8Y1TO.EXE, No Action By User, 263, 909026, 1.0.36969, 19A1ED1A148D1120ED13D7CC, dds, 01112306, 1002B360E4D1DD2F9A1181C7F21A4453, DDC1A7BB1BE1093468C4336376F298DA8795CB55E98B4B11A2072ED146766AD1
   
3. Generic.Malware/Suspicious, C:\USERS\PROMI\DESKTOP\11X (2021-02-11)\11X (2021-02-11)\WUPV98EL0QZKPEVMQX4Q.EXE, No Action By User, 0, 392686, 1.0.36969, , shuriken, , 5B6FC1524EF55E16DC8BEB59FDAD49BC, 397553131BBDB18F12F60041F0F9103DCDD17876AD49E930A07C8F529A084D48
   
4. Trojan.MalPack, C:\USERS\PROMI\DESKTOP\11X (2021-02-11)\11X (2021-02-11)\00P86Q8O9A8WT3XWIX1H.EXE, No Action By User, 263, 909046, 1.0.36969, 4101E33D262BAC5F8413D279, dds, 01112306, 1C6039A7A368CD637CA6A35157587FFB, F335C9AF20F40BFB5F2A19B7004771007DDE91937FF9491786C7006B7ADADDED
   
5. Trojan.Dridex, C:\USERS\PROMI\DESKTOP\11X (2021-02-11)\11X (2021-02-11)\5AKPKW1MRELJH1L7JR9T.DLL, No Action By User, 587, 909088, 1.0.36969, , ame, , 61090A26D22192E5C92177985D099B85, CB518C7F3F649897D218A74D214240CD4630687EBA15091E14640B95A2CE94F8
   
6. Trojan.MalPack.TRE, C:\USERS\PROMI\DESKTOP\11X (2021-02-11)\11X (2021-02-11)\MT7254TWC0U28G1WIMFY.EXE, No Action By User, 14450, 909066, 1.0.36969, , ame, , 912472E97B51D0554CB8A881DE531F29, BF6E8480F141137D69E09B7175F905C01E59C4D57A58EB55182056E149C58137

复制代码

泉州晋江

avg杀6个