15X

wwwab

高质量样本
WIRTE组织攻击样本
下载1：您有一份文件待查收！即刻点击链接获取文件：https://cowtransfer.com/s/66a55441738f4c 或进入 cowtransfer.com 获取，在首页输入取件码：098062（24小时内有效）
下载2：https://share.weiyun.com/KbADgcwb

Nocria

IKARUS - 10/15

1. [28.02.2021 12:14:22] On-demand scan started: "user_defined"
   
2. [28.02.2021 12:14:22] Found, 0.78s, SigName: "Trojan.VBA.Agent", SigId: 289741450, Type: "VIRUS", File: "C:\Users\promi\Desktop\Downloads\Downloads\2fb915b60bd6990c757a748fe5e6d4d28e5fd555e131862c416efa7ce5131788"
   
3. [28.02.2021 12:14:22] Found, 0.93s, SigName: "X97M.XLM4", SigId: 309907414, Type: "VIRUS", File: "C:\Users\promi\Desktop\Downloads\Downloads\38a9fb95ce22e3595e6bcab16043630cc3dfed65d2d8588f80da8148827af475"
   
4. [28.02.2021 12:14:22] Found, 0.00s, SigName: "Trojan-Downloader.VBA.Agent", SigId: 290909831, Type: "VIRUS", File: "C:\Users\promi\Desktop\Downloads\Downloads\7133ef4361d0955e9f07ec2cb092aa54de438141c405d3739263e509d951b64a"
   
5. [28.02.2021 12:14:22] Found, 0.16s, SigName: "Trojan.VBS.Agent", SigId: 289733655, Type: "VIRUS", File: "C:\Users\promi\Desktop\Downloads\Downloads\86afdc1e034deab844b250f89a285848d8632f7e5496b1de00ecbc2dc48153b3"
   
6. [28.02.2021 12:14:22] Found, 0.15s, SigName: "W97M.XLM4", SigId: 319446985, Type: "VIRUS", File: "C:\Users\promi\Desktop\Downloads\Downloads\8a0501372165361b80a8063826c78f61608637194ed884787a9a5e9f837f33ed"
   
7. [28.02.2021 12:14:22] Found, 0.46s, SigName: "Trojan-Downloader.VBA.Agent", SigId: 317700519, Type: "VIRUS", File: "C:\Users\promi\Desktop\Downloads\Downloads\8bd23bbab513e03ea1eb2adae09f56b08c53cacd2a3e8134ded5ef8a741a12a5"
   
8. [28.02.2021 12:14:22] Found, 0.16s, SigName: "W97M.Stratos", SigId: 290873710, Type: "VIRUS", File: "C:\Users\promi\Desktop\Downloads\Downloads\a710fb9dc78caf76a7819358e9b0af965a3728f6a12ef1179652d5895468045d"
   
9. [28.02.2021 12:14:22] Found, 0.16s, SigName: "Trojan.SuspectCRC", SigId: 303479008, Type: "VIRUS", File: "C:\Users\promi\Desktop\Downloads\Downloads\c1388b7a84a0cf3cc41047ff68bd5905cc29bf4611fd3d76e021744f00617b6d"
   
10. [28.02.2021 12:14:22] Found, 0.16s, SigName: "Trojan.SuspectCRC", SigId: 319447034, Type: "VIRUS", File: "C:\Users\promi\Desktop\Downloads\Downloads\c5a4c456d4d3e8c4786d8f82860d8d6884ede6c035d6be7ba491676018844c10"
    
11. [28.02.2021 12:14:22] Found, 0.00s, SigName: "W97M.XLM4", SigId: 319447153, Type: "VIRUS", File: "C:\Users\promi\Desktop\Downloads\Downloads\d0234d56dac17481704ac5aa9c1fc4b5813949f577c50406a95050c2317a78ea"
    
12. [28.02.2021 12:14:23] On-demand scan FINISHED: "user_defined"
    
13. [28.02.2021 12:14:23] ----------------------------------------------------
    
14. [28.02.2021 12:14:23] Directories scanned: 2
    
15. [28.02.2021 12:14:23] Files scanned: 15
    
16. [28.02.2021 12:14:23] Virus found: 10

复制代码

正在缓冲

avast

k2132

火绒 6个  智量 3个

秋日之殇

卡巴扫描剩余4个，都有密码无法进行双击测试

anthonyqian

请加密码，ESET拦截下载，11个

心醉咖啡

毒霸

1. 扫描时间：[2021-02-28 16:13:51]
   
2. 扫描用时：[00:00:14]
   
3. 扫描类型：自定义查杀
   
4. 扫描文件总数：30
   
5. 扫描速度：2文件/秒
   
6. 发现威胁：10个
   
7. 清除威胁：10个
   
8. =============================================
   
9. [2021-02-28 16:14:20]
   
10. 威胁：e:\浏览器下载\downloads(20210228121217)\downloads\38a9fb95ce22e3595e6bcab16043630cc3dfed65d2d8588f80da8148827af475
    
11. 类型：excel.gen.m
    
12. 处理方式：修复
    
13. 
    
14. [2021-02-28 16:14:20]
    
15. 威胁：e:\浏览器下载\downloads(20210228121217)\downloads\6024d10dd4a8e7efe0c81d6cfcf0f6b6833bf2728dfb2590485adb483a78d3ff
    
16. 类型：excel.gen.m
    
17. 处理方式：修复
    
18. 
    
19. [2021-02-28 16:14:20]
    
20. 威胁：e:\浏览器下载\downloads(20210228121217)\downloads\7133ef4361d0955e9f07ec2cb092aa54de438141c405d3739263e509d951b64a
    
21. 类型：excel.gen.m
    
22. 处理方式：修复
    
23. 
    
24. [2021-02-28 16:14:20]
    
25. 威胁：e:\浏览器下载\downloads(20210228121217)\downloads\81d8657b41dc70a4f92b952833684d3f2ad26ea073ce72807e4e03bf9a9818eb
    
26. 类型：excel.gen.m
    
27. 处理方式：修复
    
28. 
    
29. [2021-02-28 16:14:20]
    
30. 威胁：e:\浏览器下载\downloads(20210228121217)\downloads\8a0501372165361b80a8063826c78f61608637194ed884787a9a5e9f837f33ed
    
31. 类型：excel.gen.m
    
32. 处理方式：修复
    
33. 
    
34. [2021-02-28 16:14:20]
    
35. 威胁：e:\浏览器下载\downloads(20210228121217)\downloads\8bd23bbab513e03ea1eb2adae09f56b08c53cacd2a3e8134ded5ef8a741a12a5
    
36. 类型：excel.gen.m
    
37. 处理方式：修复
    
38. 
    
39. [2021-02-28 16:14:20]
    
40. 威胁：e:\浏览器下载\downloads(20210228121217)\downloads\a710fb9dc78caf76a7819358e9b0af965a3728f6a12ef1179652d5895468045d
    
41. 类型：excel.gen.m
    
42. 处理方式：修复
    
43. 
    
44. [2021-02-28 16:14:20]
    
45. 威胁：e:\浏览器下载\downloads(20210228121217)\downloads\c1388b7a84a0cf3cc41047ff68bd5905cc29bf4611fd3d76e021744f00617b6d
    
46. 类型：excel.gen.m
    
47. 处理方式：修复
    
48. 
    
49. [2021-02-28 16:14:20]
    
50. 威胁：e:\浏览器下载\downloads(20210228121217)\downloads\c5a4c456d4d3e8c4786d8f82860d8d6884ede6c035d6be7ba491676018844c10
    
51. 类型：excel.gen.m
    
52. 处理方式：修复
    
53. 
    
54. [2021-02-28 16:14:20]
    
55. 威胁：e:\浏览器下载\downloads(20210228121217)\downloads\d0234d56dac17481704ac5aa9c1fc4b5813949f577c50406a95050c2317a78ea
    
56. 类型：excel.gen.m
    
57. 处理方式：修复
    
58. 
    

复制代码

megakotaro

江民查殺率=0%