收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 81X
123下一页
返回列表 发新帖
楼主: hsks
 收起左侧

[病毒样本] 81X

  [复制链接]
我是一条咸鱼
发表于 2021-8-2 10:18:38 | 显示全部楼层
360 68x

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

sichuanwenxuan
发表于 2021-8-2 10:22:22 | 显示全部楼层
智量+WD剩余一个。

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

SayWhat13
发表于 2021-8-2 10:37:14 | 显示全部楼层
Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 8/2/21
Scan Time: 10:35 AM
Log File: 4d0d466c-f33a-11eb-a6f7-489ebd2588e4.json

-Software Information-
Version: 4.4.4.126
Components Version: 1.0.1404
Update Package Version: 1.0.43796
License: Premium

-Scan Summary-
Scan Type: Custom Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 97
Threats Detected: 74
Threats Quarantined: 0
Time Elapsed: 1 min, 6 sec

-Scan Options-
Memory: Disabled
Startup: Disabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registry Key: 0
(No malicious items detected)

Registry Value: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 0
(No malicious items detected)

File: 74
Backdoor.RevengeRAT, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\040024C107A93D0156B82ECC489B20EE0FDC6A8C7DC5C1C15830B8CAAD36CD9D.EXE, No Action By User, 4306, 495170, 1.0.43796, 6F477F5C50CCAFB35008F7FB, dds, 01359304, E45A161EA707E05EAD92D304C63566D2, 040024C107A93D0156B82ECC489B20EE0FDC6A8C7DC5C1C15830B8CAAD36CD9D
Trojan.MalPack, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\17CC58E77877849E90EAD801F4C0295A29067A8A013E8D852D56B1F4BF71F88E.EXE, No Action By User, 541, 964667, 1.0.43796, , ame, , 179BF04261648829B6608A118B2A1A1D, 17CC58E77877849E90EAD801F4C0295A29067A8A013E8D852D56B1F4BF71F88E
Trojan.MalPack, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\0C1571E0F22ECC1C3ED2B80EE90DF329D820E287AC0BE834AA905726EA96887E.EXE, No Action By User, 541, 964667, 1.0.43796, , ame, , D23F5899352F63E1E45E615EF6526F10, 0C1571E0F22ECC1C3ED2B80EE90DF329D820E287AC0BE834AA905726EA96887E
Ransom.BlackMatter, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\22D7D67C3AF10B1A37F277EBABE2D1EB4FD25AFBD6437D4377400E148BCC08D6.EXE, No Action By User, 9253, 964671, 1.0.43796, 1, dds, 01359304, 598C53BFEF81E489375F09792E487F1A, 22D7D67C3AF10B1A37F277EBABE2D1EB4FD25AFBD6437D4377400E148BCC08D6
Spyware.PasswordStealer, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\36C35B4364B62C4D1FF2BE1E1A043A10BC587625AD383DD2B4DACDE157A952E4.EXE, No Action By User, 554, 964576, 1.0.43796, , ame, , 2B41A99CDF2D243256BF5950DCBC38B8, 36C35B4364B62C4D1FF2BE1E1A043A10BC587625AD383DD2B4DACDE157A952E4
Heuristics.Shuriken, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\26018F4239D445F9078C47C3D7F5FD4EC6E5C27C242F732CE1759258AA1FF949.EXE, No Action By User, 10905, 167, 1.0.43796, D4CA57FD49BC4EECFE83A334, dds, 01359304, 22C3194529458EF4BFB5CE9934D06EC9, 26018F4239D445F9078C47C3D7F5FD4EC6E5C27C242F732CE1759258AA1FF949
Spyware.PasswordStealer, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\46A96491765AC14A4726F52D36A4C3F76D6F2ADF9A0879BA7365B476C78F9CF0.EXE, No Action By User, 554, 964576, 1.0.43796, , ame, , 7A6EB6B5CD944850B4C517DB62476E65, 46A96491765AC14A4726F52D36A4C3F76D6F2ADF9A0879BA7365B476C78F9CF0
Trojan.MalPack, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\4A84FAEBC419ED0CDDBC9E37B337A3090A01051D3ED7D1650C2845369B9A1D63.EXE, No Action By User, 541, 963037, 1.0.43796, , ame, , 60994EC6DC169CCB15FD0B3B502390C3, 4A84FAEBC419ED0CDDBC9E37B337A3090A01051D3ED7D1650C2845369B9A1D63
Malware.AI.3377521915, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\64DBF3976D752392F5594EBD0FE2185F26B04CC4998D94E46062B4E3615C7CCF.EXE, No Action By User, 1000000, 0, 1.0.43796, 979D17CBC3311A9BC950E4FB, dds, 01359304, F2D7A001BDC3A590DCCAD2B6B7EF7739, 64DBF3976D752392F5594EBD0FE2185F26B04CC4998D94E46062B4E3615C7CCF
Trojan.Crypt, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\88694F8E030E9D1EF06C16419AE18BD428C1E6907D191E20679F36734B2FE22B.EXE, No Action By User, 603, 964632, 1.0.43796, 1, dds, 01359304, 7B751B12E1BA5957B750DEEE88C76556, 88694F8E030E9D1EF06C16419AE18BD428C1E6907D191E20679F36734B2FE22B
Trojan.MalPack.GS, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\028FE7D08AB916D5239CCD8BCFDCD885DDFFDF3821ABC01958490DAEBA45DBEC.EXE, No Action By User, 8440, 964528, 1.0.43796, , ame, , 9E5FEA777637A2A611C00C482DA0ED6A, 028FE7D08AB916D5239CCD8BCFDCD885DDFFDF3821ABC01958490DAEBA45DBEC
Trojan.MalPack, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\456079AC17674DE342836DEE558093A80C9B6FB869B5A7562A615DB1BBE1B42D.EXE, No Action By User, 541, 964667, 1.0.43796, 1, dds, 01359304, C7B1E94B6C418BC8EBC5E624933460D9, 456079AC17674DE342836DEE558093A80C9B6FB869B5A7562A615DB1BBE1B42D
Malware.AI.540561319, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\4DA1E9B11E61A8F2633DA08AA63BB869E7130D04B15D06A81DB1047F687EBCC5.EXE, No Action By User, 1000000, 0, 1.0.43796, 43D775239523385520384FA7, dds, 01359304, 4431B1333363F8E42A5BC281B7280493, 4DA1E9B11E61A8F2633DA08AA63BB869E7130D04B15D06A81DB1047F687EBCC5
Trojan.MalPack, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\1E514875BF316FB915692DB9E6A716D76FF7D149DECBB0B2CD31A075DD349BE2.EXE, No Action By User, 541, 964667, 1.0.43796, , ame, , 8C36D4F1E288C3F8F6EB0BE63F1C5A30, 1E514875BF316FB915692DB9E6A716D76FF7D149DECBB0B2CD31A075DD349BE2
Spyware.PasswordStealer, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\3BAA3AFDC0DBD4CC6BD1DB808EAE12356BFE7BB8E4640D96116A38111367A5FD.EXE, No Action By User, 554, 517817, 1.0.43796, 027487BE2077C9A3706DA551, dds, 01359304, 902520746CFC798190CBAF6534753DAC, 3BAA3AFDC0DBD4CC6BD1DB808EAE12356BFE7BB8E4640D96116A38111367A5FD
Trojan.Crypt.MSIL.Generic, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\4D97A3F97AEEEBB6E15603ACBA4108E0925458122213136D3A15E7283569512C.EXE, No Action By User, 7514, 962939, 1.0.43796, 4F2650B954A54B8C2D0A1CF4, dds, 01359304, A03809A5458F9F12EA149BDFE0DB7C1D, 4D97A3F97AEEEBB6E15603ACBA4108E0925458122213136D3A15E7283569512C
Malware.AI.4236087537, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\5E1F7246B57C5A54C246D40BA8ADCDD2FDFF29B8760C7DC7CA5893B4764E6949.EXE, No Action By User, 1000000, 0, 1.0.43796, 42951962D6172959FC7D90F1, dds, 01359304, A989A70066D734762A1EC5255604C197, 5E1F7246B57C5A54C246D40BA8ADCDD2FDFF29B8760C7DC7CA5893B4764E6949
Spyware.RaccoonStealer, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\630D1743C5856D0BD5AEAB5FEA4F818645BBFA902B5131D88B8CFE7118E793B7.EXE, No Action By User, 863, 964590, 1.0.43796, , ame, , B8FEBFC6B3D2E6543792ADE9DFFE9BC7, 630D1743C5856D0BD5AEAB5FEA4F818645BBFA902B5131D88B8CFE7118E793B7
Generic.Trojan.Dropper.DDS, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\71E5DE30F627EACB124F9F11D7BA70DE43997847E88A61E440593EF9FD776BAB.EXE, No Action By User, 1000002, 0, 1.0.43796, 2C2687FC73EE0CE5EE979DE0, dds, 01359304, FD047A74224274E29409C2B841C2B306, 71E5DE30F627EACB124F9F11D7BA70DE43997847E88A61E440593EF9FD776BAB
MachineLearning/Anomalous.95%, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\5D232CE70BFDC3344AD9C117DA898E5D72EA5A5FF0704933735ABB186714C9F4.EXE, No Action By User, 0, 392687, 1.0.43796, , shuriken, , 704DC4AE0454D7C116D75EED8C7A0B8E, 5D232CE70BFDC3344AD9C117DA898E5D72EA5A5FF0704933735ABB186714C9F4
MachineLearning/Anomalous.100%, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\84D7F98350C50BE6F36FFAC192A8FA44B63B1378F4AE648FA092AF7D210B91B9.EXE, No Action By User, 0, 392687, 1.0.43796, , shuriken, , D097D6E3D52D03949CE798AA768A805C, 84D7F98350C50BE6F36FFAC192A8FA44B63B1378F4AE648FA092AF7D210B91B9
MachineLearning/Anomalous.95%, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\967E08D85B9639892FD4BF4AB2D3E6FC7DCD4AFE22326E4114DF182C8B0A9B5E.EXE, No Action By User, 0, 392687, 1.0.43796, , shuriken, , 9129525B5A79A06DAD5E9C6ACFB72B8F, 967E08D85B9639892FD4BF4AB2D3E6FC7DCD4AFE22326E4114DF182C8B0A9B5E
MachineLearning/Anomalous.100%, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\EB60897607EB5872E6ED502463D4CDCC888BCE8DF09352D6708C69D18B3E0005.EXE, No Action By User, 0, 392687, 1.0.43796, , shuriken, , 21614CD641F1B0564630A4DFFE6C54E2, EB60897607EB5872E6ED502463D4CDCC888BCE8DF09352D6708C69D18B3E0005
MachineLearning/Anomalous.95%, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\B201C8657C45C97A017D357F7542D2786FAC1E9CDE1A4CE8C5C2021F52E83540.EXE, No Action By User, 0, 392687, 1.0.43796, , shuriken, , 2B16B974325B5AA01406993D40AC15A3, B201C8657C45C97A017D357F7542D2786FAC1E9CDE1A4CE8C5C2021F52E83540
Trojan.Crypt.MSIL, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\7878B172FBA181C1788524B5EF99F4D9129714E6193DDAB14F7545670231FCF7.EXE, No Action By User, 6018, 963466, 1.0.43796, 88DD0F866E4E062F4FC56580, dds, 01359304, AFAC8ACBDDFC59D99959EA4AB137FE92, 7878B172FBA181C1788524B5EF99F4D9129714E6193DDAB14F7545670231FCF7
Heuristics.Shuriken, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\94D008685BA759F32D3B80B5542394C9BD4A4F2CA42781CB67F31A7460244BCC.EXE, No Action By User, 10905, 167, 1.0.43796, 955408608D531C197093D76A, dds, 01359304, F906B753D9B24E1A81A6188C9F48BC86, 94D008685BA759F32D3B80B5542394C9BD4A4F2CA42781CB67F31A7460244BCC
Trojan.Crypt, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\851C23C1E7511CAE9134DA4086116A84A8C28405A0BA05F1A9654A518E2CD64D.EXE, No Action By User, 603, 964684, 1.0.43796, 6F427DB75F54143CFF19A5F8, dds, 01359304, A66DBDEA71C220E57325E20D01516820, 851C23C1E7511CAE9134DA4086116A84A8C28405A0BA05F1A9654A518E2CD64D
Trojan.MalPack, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\8F1C6ABCD065193379083F0A9D9BBDD3B7D62D8106BF7B01A1C26005378FEA15.EXE, No Action By User, 541, 851341, 1.0.43796, 544A775F44F563D4BC7D4DC5, dds, 01359304, 85AF27073CCC6FADBC02D76C3BBAD917, 8F1C6ABCD065193379083F0A9D9BBDD3B7D62D8106BF7B01A1C26005378FEA15
Malware.AI.1953969706, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\6E5A7FCF8C27FB801D08EFE579582948FEA2EB62F2EDF9669350C50EAA91ED71.EXE, No Action By User, 1000000, 0, 1.0.43796, 018DAB52B05CF4AA7477362A, dds, 01359304, E4DC1316BDE5F058C3EAF297A378F07E, 6E5A7FCF8C27FB801D08EFE579582948FEA2EB62F2EDF9669350C50EAA91ED71
Malware.AI.2518921819, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\144C0621CA5ECB402DE01D8F10044F92A2EF917522E4B4955F3760BB17095BAC.EXE, No Action By User, 1000000, 0, 1.0.43796, F6EEEEF15FEBE9319623B25B, dds, 01359304, C46F1A56503F218C2977B4B42F5AA84B, 144C0621CA5ECB402DE01D8F10044F92A2EF917522E4B4955F3760BB17095BAC
Trojan.Crypt.MSIL, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\3511A32415E449888BB2BFF8E38E099C20949F31015E3531F0B35149D4A2328F.EXE, No Action By User, 6018, 963292, 1.0.43796, DBB1A66D6ECB3B7BD5BBC331, dds, 01359304, 40058619E2924D55F7A4E704991E08B4, 3511A32415E449888BB2BFF8E38E099C20949F31015E3531F0B35149D4A2328F
Bladabindi.Backdoor.Njrat.DDS, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\B30EEBF734354F55373978E395C912393F3C674AAA4717748AE449B09832F6AE.EXE, No Action By User, 1000002, 0, 1.0.43796, F0C5CD4F36A188EFF08AFCED, dds, 01359304, B72D429D1D690165C7B0DE4A074C4A58, B30EEBF734354F55373978E395C912393F3C674AAA4717748AE449B09832F6AE
Spyware.PasswordStealer, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\C45096343494D886B5AF190001A970929EB711D8A80515CF2AC1EFFC6D35A948.EXE, No Action By User, 554, 964576, 1.0.43796, , ame, , BE12A12A38CC4F094C8944ED245D801A, C45096343494D886B5AF190001A970929EB711D8A80515CF2AC1EFFC6D35A948
Malware.AI.4214741772, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\8E179869692A91D891D9CEC79601780B59615B85D472AFDC0D3B70A48A81284B.EXE, No Action By User, 1000000, 0, 1.0.43796, B9B4BEA5351EED63FB37DB0C, dds, 01359304, 5BF088DAE5AD40D25667511EFD8F8CFC, 8E179869692A91D891D9CEC79601780B59615B85D472AFDC0D3B70A48A81284B
Trojan.PowerShell, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\9CC0CF19E63FBF43ED381C94967A1C52A606452657CC05C17B27A1A07E2C5607.EXE, No Action By User, 5682, 907335, 1.0.43796, , ame, , FE23DC62734828F2DFB01DAC7A854DBB, 9CC0CF19E63FBF43ED381C94967A1C52A606452657CC05C17B27A1A07E2C5607
Backdoor.Quasar, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\5BA130E20C196975DD6CB369281C1A16CB523433AED75A17A47FFA3B2928B841.EXE, No Action By User, 4445, 964672, 1.0.43796, , ame, , E7CBF2CDC843B3C59D9F07ED5A124DE0, 5BA130E20C196975DD6CB369281C1A16CB523433AED75A17A47FFA3B2928B841
Spyware.PasswordStealer, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\6D807D0723B2A5CC11BB2F7E83B678CFD9F981C17DC9FA32D6C79AA42DFD31BD.EXE, No Action By User, 554, 948524, 1.0.43796, 1C07DFAEAEEBBA2EA5276D11, dds, 01359304, 11821DF0179E7ACADB1226FFB045B8CF, 6D807D0723B2A5CC11BB2F7E83B678CFD9F981C17DC9FA32D6C79AA42DFD31BD
Trojan.MalPack, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\A4520E17B63C5503219D9C36435B26054AC63E4539883C5244B3129535D82879.EXE, No Action By User, 541, 964667, 1.0.43796, , ame, , E950889FC7F88CBC4408D934E2E220F6, A4520E17B63C5503219D9C36435B26054AC63E4539883C5244B3129535D82879
Spyware.RaccoonStealer, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\AAAAB76ABFF4DC4DEC34B967A7F3F03CF937D1D47F806BF193F9CB80D35E77E6.EXE, No Action By User, 863, 964590, 1.0.43796, , ame, , 2B2019BF18467E9150AEDA07ACBDD1E8, AAAAB76ABFF4DC4DEC34B967A7F3F03CF937D1D47F806BF193F9CB80D35E77E6
Spyware.PoullightStealer, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\BB5F523D4B4D9A8BFB0F0E89EFF3559D228451476467B7B193E7686031398D3D.EXE, No Action By User, 8669, 816597, 1.0.43796, C5A35410950515C9D714E527, dds, 01359304, 87E5DF4B2D1AD17687A506394018AEB8, BB5F523D4B4D9A8BFB0F0E89EFF3559D228451476467B7B193E7686031398D3D
Ransom.FileCryptor, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\BA58D39A6FE9E9D906D6A23E953A7F42980E573110C0277EF3A9EC73515BD268.EXE, No Action By User, 928, 455788, 1.0.43796, F1EA9319F17C71184BAF284E, dds, 01359304, DF3384444E356116E0FC91CA2EC37A26, BA58D39A6FE9E9D906D6A23E953A7F42980E573110C0277EF3A9EC73515BD268
Spyware.PasswordStealer, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\CD2CB1220011AFA6A1BFC8F5457BBA94964777743247A0B374F1147C9204ED66.EXE, No Action By User, 554, 948524, 1.0.43796, A417FCF4DFA17B66013C2FB6, dds, 01359304, FC3F82C9200496428652BEF9892ED46E, CD2CB1220011AFA6A1BFC8F5457BBA94964777743247A0B374F1147C9204ED66
Trojan.MalPack.GS, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\C3DA65FDED89C1B6E0EA8ED263EB3F381E374389DE6617BA3F21165AB1CF005D.EXE, No Action By User, 8440, 964528, 1.0.43796, , ame, , F3595A5DF5E76A707E45B3EB6C161EE6, C3DA65FDED89C1B6E0EA8ED263EB3F381E374389DE6617BA3F21165AB1CF005D
Malware.AI.4280220518, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\E386C831DF697E516FEDCAB1AD8A879AE057A5F4F321A873DCD31E9C6760009E.EXE, No Action By User, 1000000, 0, 1.0.43796, D6FCCA878F2C53A7FF1EFB66, dds, 01359304, 41965FC5D071CE4B42BBA9B7C486F784, E386C831DF697E516FEDCAB1AD8A879AE057A5F4F321A873DCD31E9C6760009E
Generic.Worm.Autorun.DDS, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\E8CA0270E68C2F29F8E9F6A77FE630A93B08C04573BDE4956690F8943E6D10E8.EXE, No Action By User, 1000002, 0, 1.0.43796, EED40CDF0D644D1D1F3FAABA, dds, 01359304, B8F6E00E0B83AE7620BA2104C644F485, E8CA0270E68C2F29F8E9F6A77FE630A93B08C04573BDE4956690F8943E6D10E8
Spyware.RedLineStealer, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\C49DB28C90989F14866FAA6781FC5E6531C8A63D3C3F3D245B4C4D752CE5EBF0.EXE, No Action By User, 598, 963064, 1.0.43796, 1, dds, 01359304, F7CDED298CDF3671D5BE20511CA4FCB1, C49DB28C90989F14866FAA6781FC5E6531C8A63D3C3F3D245B4C4D752CE5EBF0
Trojan.MalPack, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\DF462937835934F9EDAFAB767C440457A7416CCC2791955DB97D4714A406D5CE.EXE, No Action By User, 541, 964667, 1.0.43796, , ame, , A4A306682BF75B4976C3441F5151DB97, DF462937835934F9EDAFAB767C440457A7416CCC2791955DB97D4714A406D5CE
Trojan.Crypt, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\9A49377425CD34E622494BF90D1726520D879B2F7DE449A65B88FA4F75965BDC.EXE, No Action By User, 603, 964684, 1.0.43796, 6F427DB75F54143CFF19A5F8, dds, 01359304, 870D4A5E6BE7FD07F7F651544D2D8BC1, 9A49377425CD34E622494BF90D1726520D879B2F7DE449A65B88FA4F75965BDC
Trojan.MalPack, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\ADC2C80F4A9F969A641F2674C94BD576420B34D338B12BA5B4CAB09E6C51A466.EXE, No Action By User, 541, 964667, 1.0.43796, , ame, , 3828DE95C4E8146D8E220230690B3BE9, ADC2C80F4A9F969A641F2674C94BD576420B34D338B12BA5B4CAB09E6C51A466
Spyware.AgentTesla, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\C186924C9E23F60E9DEA580F9D3435D36A24C95FC2E4B79C95933CF870650697.EXE, No Action By User, 524, 964685, 1.0.43796, , ame, , 34821BFEE7748DD682B080ED1C3996D0, C186924C9E23F60E9DEA580F9D3435D36A24C95FC2E4B79C95933CF870650697
Spyware.PasswordStealer, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\DCAF58A74327239AFF106EB7DA1F06A9AD9BCEEAAD4E8A08496FA75F744E8F55.EXE, No Action By User, 554, 948524, 1.0.43796, A417FCF4DFA17B66013C2FB6, dds, 01359304, 964D27F847238A3FF9B11F21D99AFF90, DCAF58A74327239AFF106EB7DA1F06A9AD9BCEEAAD4E8A08496FA75F744E8F55
Malware.AI.4276795825, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\E7E2866ED8E4E76DF821C19DEE3C8B3C41C282C226152E5B3ABC352D2F2A6861.EXE, No Action By User, 1000000, 0, 1.0.43796, BE8B26C2DA876001FEEAB9B1, dds, 01359304, 40A4815D1AB525027145A34B8E99F446, E7E2866ED8E4E76DF821C19DEE3C8B3C41C282C226152E5B3ABC352D2F2A6861
Spyware.RaccoonStealer, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\F3FCB0022C829887C912754D7B26A7C64C4C73A575006AAFEE3A1F0BB6F74EC1.EXE, No Action By User, 863, 964590, 1.0.43796, 12, dds, 01359304, D871831D36241B22B1866D434668CECA, F3FCB0022C829887C912754D7B26A7C64C4C73A575006AAFEE3A1F0BB6F74EC1
Trojan.FakeSig, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\28F5FA7118D4F1866643D781C3FEE5CB4507F3D268C263EF40551D527DA2C330.EXE, No Action By User, 545, 964680, 1.0.43796, A5F4FAE20749E123EFF3237B, dds, 01359304, D2B7580D40D74302A11FEB42394A7FDC, 28F5FA7118D4F1866643D781C3FEE5CB4507F3D268C263EF40551D527DA2C330
Spyware.Agent, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\4869E227DC7FD28AFEAB3A5E42322E1069C712578D0CE5CED4F6862FBBAFD587.EXE, No Action By User, 5684, 963616, 1.0.43796, CBA2FC346E1041450993C1F1, dds, 01359304, A0680A1DE10066F640FD52149343D384, 4869E227DC7FD28AFEAB3A5E42322E1069C712578D0CE5CED4F6862FBBAFD587
Trojan.MalPack, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\5651C726A433D942EB9CDBE74C6631178FA3E243E0953E0A55F54F1752E05682.EXE, No Action By User, 541, 964667, 1.0.43796, 1, dds, 01359304, 68B16B954DA4726F6CCDAFF90B0D6C23, 5651C726A433D942EB9CDBE74C6631178FA3E243E0953E0A55F54F1752E05682
Spyware.LokiBot, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\67746F374044E6E84B71DE09E0676DE8AA022E94ECFB53C83A39920D2533B087.EXE, No Action By User, 4291, 815748, 1.0.43796, 1, dds, 01359304, D9C4292C44DEF6E0A607C24427AA74E8, 67746F374044E6E84B71DE09E0676DE8AA022E94ECFB53C83A39920D2533B087
Ransom.BlackMatter, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\7F6DD0CA03F04B64024E86A72A6D7CFAB6ABCCC2173B85896FC4B431990A5984.EXE, No Action By User, 9253, 964676, 1.0.43796, 1, dds, 01359304, D0512F2063CBD79FB0F770817CC81AB3, 7F6DD0CA03F04B64024E86A72A6D7CFAB6ABCCC2173B85896FC4B431990A5984
Trojan.PowerShell, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\88C642B1FA43B77487F3916DD95AC236189971475C3289C745DC45A739E6453F.EXE, No Action By User, 5682, 907335, 1.0.43796, , ame, , A6C8AF48B5F7F850E5400CCA5C288AE1, 88C642B1FA43B77487F3916DD95AC236189971475C3289C745DC45A739E6453F
Trojan.MalPack, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\991B82B18100C2C4A0CD920971A40E2410D15CDA4FA6F11EA64190EB8A9B363F.EXE, No Action By User, 541, 964667, 1.0.43796, , ame, , AE93DDCD6EDDADB4B5D7B2DFCF0193BE, 991B82B18100C2C4A0CD920971A40E2410D15CDA4FA6F11EA64190EB8A9B363F
Trojan.MalPack.XOR, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\ACAED16A37962B29231A2B0842B616000656A12FF66CE41830CA855A207FC5DC.EXE, No Action By User, 9132, 870730, 1.0.43796, B0B0B15DB2AEAD54214B0961, dds, 01359304, 25741AC45FFE74F8C4817B28500FA48D, ACAED16A37962B29231A2B0842B616000656A12FF66CE41830CA855A207FC5DC
Trojan.MalPack, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\BF71696E66A738FD23CE41E05B796F8374BE7C73DCAD393A8933FBBDDE7B978D.EXE, No Action By User, 541, 964667, 1.0.43796, , ame, , 6D80A854E2FDCE6268A336C4D69272E1, BF71696E66A738FD23CE41E05B796F8374BE7C73DCAD393A8933FBBDDE7B978D
Malware.AI.4024116118, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\D61176AD7367C227CD55914C24FB5584D01B17CEF989648C8274665B630EA9AA.EXE, No Action By User, 1000000, 0, 1.0.43796, 5981A505B2D1527CEFDB2396, dds, 01359304, 32184D631A9D9BAFEEC0C049D0C72C1A, D61176AD7367C227CD55914C24FB5584D01B17CEF989648C8274665B630EA9AA
Trojan.MalPack, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\E6507F36045C13DEE736BEA44D61E90169EA69DE61E9DC50B5743960C5B8F85A.EXE, No Action By User, 541, 884368, 1.0.43796, , ame, , 97CB3FDA3CFF430377A866D6B437DE8F, E6507F36045C13DEE736BEA44D61E90169EA69DE61E9DC50B5743960C5B8F85A
Trojan.MalPack, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\F1041F8BEB103E1F63FA8D5234ED3B5A55A37D1C675755040DBB08836C210A90.EXE, No Action By User, 541, 955286, 1.0.43796, D2E0E0BBC7B1AAC03AC50EE1, dds, 01359304, F3AAF224FFEAA26E00A6395A3B0A80B5, F1041F8BEB103E1F63FA8D5234ED3B5A55A37D1C675755040DBB08836C210A90
Generic.Malware/Suspicious, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\EBC23FA946CA40B18F4193C7E616B4628C0F2C3667BD84C8D59EB24CFC3ACDEE.EXE, No Action By User, 0, 392686, 1.0.43796, , shuriken, , BD90D76652738C92E4B632D312E5FD04, EBC23FA946CA40B18F4193C7E616B4628C0F2C3667BD84C8D59EB24CFC3ACDEE
MachineLearning/Anomalous.95%, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\0FE40289008F481B84B73F77C87EFD5A737DF057E19D9799A7C8E5B0B3A29539.EXE, No Action By User, 0, 392687, 1.0.43796, , shuriken, , AD91056D751FD1A37689DAAA789C2E19, 0FE40289008F481B84B73F77C87EFD5A737DF057E19D9799A7C8E5B0B3A29539
Generic.Malware/Suspicious, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\8AAF65B0F9E9B3A932132671C338A1198D5B1104DD8F7499A1AFEC5309BAE904.EXE, No Action By User, 0, 392686, 1.0.43796, , shuriken, , 55CF4B389DD1807D39D8E7FC762749D0, 8AAF65B0F9E9B3A932132671C338A1198D5B1104DD8F7499A1AFEC5309BAE904
MachineLearning/Anomalous.95%, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\F5FE7311025D620BCCB08DCFB69F03C71620351B35EA8635B798FFC62374423A.EXE, No Action By User, 0, 392687, 1.0.43796, , shuriken, , 10F49A80DE7E85FA33959DA15D393F29, F5FE7311025D620BCCB08DCFB69F03C71620351B35EA8635B798FFC62374423A
Generic.Malware/Suspicious, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\7E6B769AFC67E5E76904920F69A8D31475576EE4DC3411379EFA665DE38F7697.EXE, No Action By User, 0, 392686, 1.0.43796, , shuriken, , 02AB49305F95F010772ABA55EA61744E, 7E6B769AFC67E5E76904920F69A8D31475576EE4DC3411379EFA665DE38F7697
Generic.Malware/Suspicious, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\5638A743D42C3622F1826CB1120AA4E22A40D1E853472620071CBA8A1388409B.EXE, No Action By User, 0, 392686, 1.0.43796, , shuriken, , 207450FF08453CC47B40DF231032D4D0, 5638A743D42C3622F1826CB1120AA4E22A40D1E853472620071CBA8A1388409B
Generic.Malware/Suspicious, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\A09CD8A5D439735F199CFC6B9EEC7D1A9B212D5F0B131E6FF1FFA7A07C8F7419.EXE, No Action By User, 0, 392686, 1.0.43796, , shuriken, , 48EFEB5867E36B7F4C58E587F51B0678, A09CD8A5D439735F199CFC6B9EEC7D1A9B212D5F0B131E6FF1FFA7A07C8F7419
MachineLearning/Anomalous.100%, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\FBFFACFD342E10055441FEFF193D815000E7111D5C1BD4C26FFC732D66CE5268.EXE, No Action By User, 0, 392687, 1.0.43796, , shuriken, , 07C35D9283746F816056BA7F4DEA056B, FBFFACFD342E10055441FEFF193D815000E7111D5C1BD4C26FFC732D66CE5268
Malware.Heuristic.1003, C:\USERS\HP\DOWNLOADS\COMPRESSED\L2PU1KVW_81X\81X\4A6BF1668BD4C6A6C8AFBCEA62D489853885F492A381D0D49B9E4B96CE2FEF34.EXE, No Action By User, 1000001, 0, 1.0.43796, 0000000000000000000003EB, dds, 01359304, 1868B8297AA938D8918AB0ED3F619794, 4A6BF1668BD4C6A6C8AFBCEA62D489853885F492A381D0D49B9E4B96CE2FEF34

Physical Sector: 0
(No malicious items detected)

WMI: 0
(No malicious items detected)


(end)

评分

参与人数 1人气 +1 收起 理由
wwwab + 1 好长啊

查看全部评分

回复

举报

Microsoftheihei
发表于 2021-8-2 10:53:14 | 显示全部楼层
md清空
回复

举报

aboringman
发表于 2021-8-2 12:06:20 | 显示全部楼层
本帖最后由 aboringman 于 2021-8-2 12:26 编辑

Norton:79



剩余脚本双击,自动防护拦截,算80,另一个好像是Java,没有环境不玩。

  1. 文件名: CL.Downloader!gen10
  2. 完整路径: 不可用

  4. ____________________________

  6. ____________________________


  9. 在电脑上 
  10. 不可用

  12. 上次使用时间 
  13. 2021/8/2 ( 12:19:11 )

  15. 启动项 


  18. 已启动 


  21. 威胁类型: 启发式病毒。 根据恶意软件启发式技术检测威胁。

  23. ____________________________


  26. CL.Downloader!gen10
  27. 定位


  30. 未知
  31. Norton 社区中使用了此文件的用户数未知 。

  33. 未知
  34. 此文件版本当前 未知。


  37. 此文件具有高风险。


  40. ____________________________


  43. 来源: 外部介质


  46. ____________________________

  48. 文件操作

  50. 文件: powershell.exe (CL.Downloader!gen10) 未尝试修复
  51. ____________________________


  54. 文件指纹 - SHA:
  55. 不可用
  56. 文件指纹 - MD5:
  57. 不可用
复制代码

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

keen-qv
发表于 2021-8-2 15:32:03 | 显示全部楼层
金山毒霸74个
360卫士79个

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

swizzer
发表于 2021-8-2 15:44:34 | 显示全部楼层
好家伙,去除无效样本后智量扫描&双击清空了(jar杀了衍生物)
放点主防日志
  1. 2021-08-02 15:29:55|C:\Users\John Smith\uvtys4Mpp.exe|Heur.ML.PE.C
  2. 2021-08-02 15:29:59|C:\Users\John Smith\uvtys4Mpp.exe|Heur.ML.PE.C
  3. 2021-08-02 15:30:49|D:\IDM\Compressed\L2PU1Kvw_81X\81X\87f4a4c323f26710b7acdc123173fa63f4ccb4f3c8239dfaa489ee69ab89f7cc.vbs|WIBD:HEUR.MalPowerShell.B0
  4. 2021-08-02 15:34:10|D:\IDM\Compressed\L2PU1Kvw_81X\81X\64dbf3976d752392f5594ebd0fe2185f26b04cc4998d94e46062b4e3615c7ccf.exe|MEMRAY:MalCode.K
  5. 2021-08-02 15:37:19|D:\IDM\Compressed\L2PU1Kvw_81X\81X\26018f4239d445f9078c47c3d7f5fd4ec6e5c27c242f732ce1759258aa1ff949.exe|WIBD:HEUR.MalAutoit.B
  6. 2021-08-02 15:37:24|C:\Users\John Smith\AppData\Local\Temp\IXP000.TMP\TMP4351$.TMP|威胁回滚(隔离)
  7. 2021-08-02 15:37:24|C:\Users\John Smith\AppData\Local\Temp\IXP000.TMP\Pei.vsd|威胁回滚(隔离)
  8. 2021-08-02 15:37:24|C:\Users\John Smith\AppData\Local\Temp\IXP000.TMP\Aprano.vsd|威胁回滚(隔离)
  9. 2021-08-02 15:37:24|C:\Users\John Smith\AppData\Local\Temp\IXP000.TMP\Impaziente.vsd|威胁回滚(隔离)
  10. 2021-08-02 15:37:24|C:\Users\John Smith\AppData\Local\Temp\IXP000.TMP\Attira.vsd|威胁回滚(隔离)
  11. 2021-08-02 15:37:24|C:\Users\John Smith\AppData\LocalLow\SogouPY\InputStaticstics.dat.sgbak|威胁回滚(隔离)
  12. 2021-08-02 15:37:34|D:\IDM\Compressed\L2PU1Kvw_81X\81X\3511a32415e449888bb2bff8e38e099c20949f31015e3531f0b35149d4a2328f.exe|WIBD:HEUR.MalPersistence.M0
  13. 2021-08-02 15:37:37|C:\Users\John Smith\AppData\Local\Temp\tmp1DB6.tmp|WIBD:HEUR.MalPersistence.M0
  14. 2021-08-02 15:37:42|C:\Users\John Smith\AppData\Roaming\WttEwluIdHmG.exe|威胁回滚(隔离)
  15. 2021-08-02 15:39:57|D:\IDM\Compressed\L2PU1Kvw_81X\81X\ebc23fa946ca40b18f4193c7e616b4628c0f2c3667bd84c8d59eb24cfc3acdee.exe|WIBD:HEUR.PEObfuscator.A
复制代码

回复

举报

StevenCheong55
发表于 2021-8-2 15:46:38 | 显示全部楼层
ESET 76/81
回复

举报

anthonyqian
发表于 2021-8-2 16:22:12 | 显示全部楼层
hsks 发表于 2021-8-2 08:56
我已经哭晕在厕所
无效样本有点多

还行啊 样本质量挺高的 好像就两个是损坏的
回复

举报

ANY.LNK
发表于 2021-8-2 17:41:17 | 显示全部楼层
Microsoft Defender:解压+扫描当前剩一个,并且剩下的那个被ASR规则阻止
回复

举报

下一页 »
123下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-4-20 09:47 , Processed in 0.106939 second(s), 15 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表