收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 From MB 295X
123
返回列表 发新帖
楼主: hsks
 收起左侧

[病毒样本] From MB 295X

[复制链接]
louise90
发表于 2021-7-30 07:56:20 | 显示全部楼层
本帖最后由 louise90 于 2021-7-30 07:57 编辑

上报给卡巴后(多上报了几个)
Hello,

these files are already detected
953be80db4fb9341f303c21684058a028dd1db599780e61faaa91328258a62d7.exe_        -        Trojan.Win64.Agent.qwhwym
a701108be3d3802eba7c79c5c68afc0fee833595cdada8df5ac02ef9b97d2ad1.exe_        -        Trojan.Win64.Agent.qwhwyn
39a77ef363317beea8cad0c8dfe80791ee12647f61396cbfa0128b73113bab8d.exe_   Virus.Win32.Sality.sil  
these files are already detected by mail and web AV components:
07a12c478721a693d8f8b7b6cc750a2735b72f1c6666f70d9187842408966b5c.xlsx_        -        HEUR:Exploit.MSOffice.CVE-2018-0802.gen
1db2032d1470253f0f3ccd40bbd0b9e84bf68db5054c2c6501666c31508a2d0f.xlsx_        -        HEUR:Exploit.MSOffice.CVE-2018-0802.gen
1dce3392074fc0c6008724190d19a6a7315af9649268361b99da6c2ac7c124dc.xlsx_        -        HEUR:Exploit.MSOffice.CVE-2018-0802.gen
2343ad8cbaec4cfc723e45aff2d9bd2da9ad95f13c846a339f9ffa2ce0c58ec4.xlsx_        -        HEUR:Exploit.MSOffice.CVE-2018-0802.gen
25cf0d59c10c48159f55b2ed560b6f3974f5b007b9b4bb31b9cfd5e33ca0bd09.xlsx_        -        HEUR:Exploit.MSOffice.CVE-2018-0802.gen
28b02e16e45ff4e270bc5d02aadd25578d6a010062bba2f8a59e62854881df4f.xlsx_        -        HEUR:Exploit.MSOffice.CVE-2018-0802.gen
2c77dd3ea2323758b45affaf3a0ba904974d498c15b7a4358d2cbb1fc753589a.xlsx_        -        HEUR:Exploit.MSOffice.CVE-2018-0802.gen
2faa8044f1bf5914a55deaccad3c32ed35e17ce17c052b23ff04975c242365bf.xlsx_        -        HEUR:Exploit.MSOffice.CVE-2018-0802.gen
696eadb60b5b73f018f1b8051553659b6adaddc2ddfc108ad3c9ae8056311e9a.xlsx_        -        HEUR:Exploit.MSOffice.CVE-2018-0802.gen
703e4663a565e0eaa6ad7e6a8bd110b6287833b47397fb8423a283da4b2e5950.xlsx_        -        HEUR:Exploit.MSOffice.CVE-2018-0802.gen
7280cc1dee970caa921aed1457caa20658adf3d9a32883f744b8e028c3e2a1e4.xlsx_        -        HEUR:Exploit.MSOffice.CVE-2018-0802.gen
99009b2d132f8a2c1d47a690836b514cf32d28095f6158c53a962fe98aaf4c78.xlsx_        -        HEUR:Exploit.MSOffice.CVE-2018-0802.gen
991c1f9c4828b6de37f61e4373158ede52fc9ad86e1c54742fd83d55a12ec418.xlsx_        -        HEUR:Exploit.MSOffice.CVE-2018-0802.gen
a3ab039f972a61b65af8b77d9d6721533226af80bdcc9afc4036d0d25015d5d6.xlsx_        -        HEUR:Exploit.MSOffice.CVE-2018-0802.gen
a60f5da18b43cee8b11581668df2284a37361f16f1994f21e2c9dab8e48f8298.xlsx_        -        HEUR:Exploit.MSOffice.CVE-2018-0802.gen
b0b527cfdc95d0d1924fb6a82d50fffca17c8bb9e889ef280e9f86bd31901b8e.xlsx_        -        HEUR:Exploit.MSOffice.CVE-2018-0802.gen
e9228a345f2d9e7f0fcb8fe091c41e678f743295d723f6141769af47d4d8e082.xlsx_        -        HEUR:Exploit.MSOffice.CVE-2018-0802.gen


will be added:
0012fc50c941f2d86f8420ea7737ca6f53a41dcffb8d04284e8cf508bddad472.exe_        Trojan.Win64.Agent.qwhwyo
0e1e2a815d6d5cd7b3865c0288334379c21b6153a0cba7b14943d5df9affa48f.dll_        Trojan-Banker.Win32.Dridex.j
0eada128b45a683c41d6da28fe1aa1be6b8bce3e3934c95d98f75e1c33639eed.dll_        Trojan-Banker.Win32.Dridex.k
18212cfa287efab4d07f3566ff0dcab8e74c180f26289dedbac2ec96705746a5.dll_        Trojan-Banker.Win32.Dridex.l  
1a1861211c2baabfe16ce19e9e34a820f7bd45e87a6e39b6778ded8a26313438.xlsm_        HEUR:Trojan.MSOffice.Agent.gen
36330ee3c38ae53b19a77429e8b13c005735c93b764c0c195ee8fa5da8668017.dll_        Trojan-Banker.Win32.Dridex.m
376abec32ec9400b58354ad6f53f102cae695ae6f1a2d4395f7abbdc0b472613.exe_        Trojan.Win64.Agent.qwhwyp
38cd03b944e9368f595347945a7a3a3fd657601578fbd74f5954875f0db15644.ps1_        Trojan-Downloader.PowerShell.Agent.ok
3c6e2c29392c5331736bf9a0d4f109f272a2fc00156c3f9dc4996f8f55dbcd2a.dll_        Trojan-Banker.Win32.Dridex.n
42cd6333122aee5006e4764b69610c9ea8ae96fc3fb16b9218c1a10bd7d772d1.exe_        Trojan.Win64.Agent.qwhwyq
45c63658f4a081513e55bfb9f14884760c59028bf04e69c3b5c4b956ecdc843f.xls_        HEUR:Trojan.MSOffice.Agent.gen
4aadef23f11dd8fdc214bea41b6f7819bf723f20f581fec84d38e3ab1d08ad94.exe_        HEUR:Trojan.Win32.Agent.gen
4bd474b1f615fc768411667af9008bca632bce598f02c565634cb49b4aa7e845.dll_        Trojan-Banker.Win32.Dridex.o
4f236ee5708cdb3437caaa0a3acaf44b50fb219604790935b38062ad81442c7f.dll_        Trojan-Banker.Win32.Dridex.p
75f423b4e6ca17c94dda8104d745642ca61a0a54a38bf29e3ca55b9d0fec7d66.xls_        HEUR:Trojan.MSOffice.Agent.gen
9314c01984c89151f6d4624acad638fe054b3036fcc5115271cb598954c20070.dll_        HEUR:Trojan.Win32.Agent.gen
96396c7355d06982ab80daabeabf43c8ee81cd47e0b3269f9a9df1f48024297d.dll_        Trojan-Banker.Win32.Dridex.q
9c4088dfc53bb7b6d9887d200801a926b73c09458910460a2d6f4e2d67f13e6e.dll_        HEUR:Trojan.Win32.Agent.gen
a0dce56519e9005045f514f5f42c773b1cb44109c77693da9c6a092cae6395ed.dll_        Trojan-Banker.Win32.Dridex.r
aff5fde32f9e5da9c85be058dc1c8a28e86d7b6984235833034b5b0975454315.exe_        Trojan.Win32.Agent.xaidml
bb4a151f638da83fe1a229954eb038e17f97be84d721dc491927ad3e689b33f7.dll_        Trojan-Banker.Win32.Dridex.s
cc2225427a9465620f4fb894cb999802c7aaaf2703d4aab275fb49d8774171e2.dll_        Trojan-Banker.Win32.Dridex.t
deafe5f21f9d2670d395d2a729667818519646eaf443b344de4134c2bb35ca16.dll_        Trojan-Banker.Win32.Dridex.u
eaf5792174c7bf56b1c8c9a4dce16b164b480e92c75260d5a2394101a3ba7765.dll_        Trojan-Banker.Win32.Dridex.v
f8c56a2e79f9c648130668de931327b8fbd66059aed2e889a5189f916cd51cc0.dll_        Trojan-Banker.Win32.Dridex.w

回复

举报

cerium1925
头像被屏蔽
发表于 2021-7-30 08:55:49 | 显示全部楼层
anthonyqian 发表于 2021-7-30 04:16
BD 目前剩余2个。

38cd03b944e9368f595347945a7a3a3fd657601578fbd74f5954875f0db15644.ps1

BD依然是大杀器,这么强悍
回复

举报

123
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2025-7-3 00:23 , Processed in 0.104571 second(s), 15 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表