收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 26X + 5X FP
返回列表 发新帖
查看: 1408|回复: 9
收起左侧

[病毒样本] 26X + 5X FP

[复制链接]
Eset小粉絲
发表于 2021-10-19 12:36:39 | 显示全部楼层 |阅读模式
Download

New malicious software was found in the attached files. Its detection will be included in the next update.
00aec2788fad1e76453afaac9fa78b6d - Trojan.Win32.Agentb.koky
1990a470a7dd44ba879da6cd0de625e5 - Trojan.Win32.Agentb.kolc
2eb9a3e12bfd118e2f9344ceb322d1ca - not-a-virus:HEUR:AdWare.Win32.MiniPages.gen
30c7ca307fd4478430f46ebceda48a81 - Trojan.Win32.Agentb.kolb
35715a6d75d6f7473291217654c553a9 - Trojan.Win32.Agentb.kold
4be9624bbf6df22079054eaba58fdb13 - HEUR:Trojan-Spy.Win32.Stealer.gen
4beab501f22fcb3aa973cefa82dc76bc - HEUR:Trojan.MSIL.Agent.gen
4dba23bb53086eed48189067485f7f99 - Trojan.Win32.Agentb.kokz        
4ff1046c955b44147490778b3240f87e - HEUR:Trojan.MSIL.Agent.gen
5c3879a07696f2f26668ed267be30a2f - Trojan.Win32.Agentb.kola
7f1b1fb214d50adbf68739ba79a6fd15 - HEUR:Trojan.Win32.Agentb.gen
94077bacedbf41e7b5e582bb15218745 - HEUR:Trojan.Win32.Agentb.gen
9ac00acd0b869ca08fc192b074da7a22 - Trojan.Win32.Regsup.cypw
a3c00f6e92d5b75625fcda28953def12 - HEUR:Trojan.Win32.Agentb.gen
a918f1a22c6c712d27ee5c1cf12c089e - HEUR:Trojan.MSIL.Agent.gen
acf92f34a57d6a2a59374d55de9b7ccc - HEUR:Trojan.MSIL.Agent.gen
c4cbaec203a03f718d5def0fe4047b54 - HEUR:Trojan-Downloader.MSIL.Agent.gen
c58821e230703e9826eb8e0b80ed81ab - HEUR:Trojan.Win32.Agentb.gen
c593e115d91065b47602e464851f6d13 - Trojan.Win32.Inject.anvrj
d3e3d4ada28dc35cb308567977fd9625 - HEUR:Trojan.MSIL.Agent.gen
db9b25292068eecb923785d5e67df6e0 - HEUR:Trojan.MSIL.Miner.gen
e42c98e59eb44b5fa683ff814638ec06 - HEUR:Trojan.MSIL.Agent.gen
ec5702b803de813dbbcae69a2427d1fc - Trojan-Banker.Win32.Cridex.arug
ed3421dc872b0693137df6406cdc4a52 - Trojan.Win32.Genome.anolz
f3e817934124b256301df5796ca414c7 - Trojan.Win32.Agentb.kole
f5dba19f84bfd02418ca81c7906e41de - HEUR:Backdoor.Win32.Agent.gen

About next files, sorry, it was a false detection. It will be fixed.
e4e549626d8b3073b1e69f873fd0f211
eb2da578aca9d1fca5657e8f68db4fcb
aa471b8ce90d6cf71f28c882b51343a9
955499433451bc9104a948b6bc736d36
6d60dc0644405d8bbad018c4620a26e7
Thank you for your help.

评分

参与人数 1人气 +2 收起 理由
dongwenqi + 2 版区有你更精彩: )

查看全部评分

回复

举报

白崎桑
发表于 2021-10-19 12:46:02 | 显示全部楼层
本帖最后由 白崎桑 于 2021-10-19 12:51 编辑

智量 虚拟机快照时间10/15 19:45 断网
误报 e4e549626d8b3073b1e69f873fd0f211
955499433451bc9104a948b6bc736d36
aa471b8ce90d6cf71f28c882b51343a9
漏报

联网更新后测试结果一致

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

anthonyqian
发表于 2021-10-19 12:56:14 | 显示全部楼层
咖啡 30个 剩余eb2da578aca9d1fca5657e8f68db4fcb
回复

举报

ytysh
发表于 2021-10-19 13:04:44 | 显示全部楼层
anthonyqian 发表于 2021-10-19 12:56
咖啡 30个 剩余eb2da578aca9d1fca5657e8f68db4fcb

麦咖啡 YYDS
回复

举报

anthonyqian
发表于 2021-10-19 13:13:19 | 显示全部楼层
ytysh 发表于 2021-10-19 13:04
麦咖啡 YYDS

咖啡月神:只要不改hash、PE样本 其他都好说
回复

举报

Nocria
发表于 2021-10-19 13:27:31 | 显示全部楼层
本帖最后由 Nocria 于 2021-10-19 13:33 编辑

IKARUS - 27/31




  1. [19.10.2021 13:30:26] On-demand scan started: "user_defined"
  2. [19.10.2021 13:30:26] Found, 0.00s, SigName: "Trojan.Win32.Genome", SigId: 856978, Type: "VIRUS", File: "C:\Users\promi\Desktop\Samples\00aec2788fad1e76453afaac9fa78b6d"
  3. [19.10.2021 13:30:26] Found, 0.00s, SigName: "Trojan-Dropper.MSIL", SigId: 1897290, Type: "VIRUS", File: "C:\Users\promi\Desktop\Samples\30c7ca307fd4478430f46ebceda48a81"
  4. [19.10.2021 13:30:26] Found, 0.00s, SigName: "Trojan-Dropper.MSIL", SigId: 1897290, Type: "VIRUS", File: "C:\Users\promi\Desktop\Samples\35715a6d75d6f7473291217654c553a9"
  5. [19.10.2021 13:30:26] Found, 0.16s, SigName: "Trojan.Win32.Duote", SigId: 4214733, Type: "VIRUS", File: "C:\Users\promi\Desktop\Samples\2eb9a3e12bfd118e2f9344ceb322d1ca"
  6. [19.10.2021 13:30:26] Found, 0.16s, SigName: "Trojan.MSIL.Agent", SigId: 338773764, Type: "VIRUS", File: "C:\Users\promi\Desktop\Samples\4beab501f22fcb3aa973cefa82dc76bc"
  7. [19.10.2021 13:30:26] Found, 0.00s, SigName: "Trojan-Dropper.MSIL", SigId: 1897290, Type: "VIRUS", File: "C:\Users\promi\Desktop\Samples\4dba23bb53086eed48189067485f7f99"
  8. [19.10.2021 13:30:26] Found, 0.15s, SigName: "Trojan.MSIL.Agile", SigId: 3929095, Type: "VIRUS", File: "C:\Users\promi\Desktop\Samples\4ff1046c955b44147490778b3240f87e"
  9. [19.10.2021 13:30:26] Found, 0.46s, SigName: "Trojan-Downloader", SigId: 4150039, Type: "VIRUS", File: "C:\Users\promi\Desktop\Samples\5c3879a07696f2f26668ed267be30a2f"
  10. [19.10.2021 13:30:26] Found, 0.16s, SigName: "Trojan.Win32.Injector", SigId: 4232439, Type: "VIRUS", File: "C:\Users\promi\Desktop\Samples\7f1b1fb214d50adbf68739ba79a6fd15"
  11. [19.10.2021 13:30:26] Found, 0.16s, SigName: "Trojan.Win32.Injector", SigId: 4232439, Type: "VIRUS", File: "C:\Users\promi\Desktop\Samples\94077bacedbf41e7b5e582bb15218745"
  12. [19.10.2021 13:30:26] Found, 0.00s, SigName: "Trojan-Downloader.Win32.Nymaim", SigId: 338773683, Type: "VIRUS", File: "C:\Users\promi\Desktop\Samples\9ac00acd0b869ca08fc192b074da7a22"
  13. [19.10.2021 13:30:26] Found, 0.00s, SigName: "Trojan.Agent", SigId: 339495330, Type: "VIRUS", File: "C:\Users\promi\Desktop\Samples\a3c00f6e92d5b75625fcda28953def12"
  14. [19.10.2021 13:30:26] Found, 0.16s, SigName: "Packer.PESpin", SigId: 2828713, Type: "VIRUS", File: "C:\Users\promi\Desktop\Samples\aa471b8ce90d6cf71f28c882b51343a9"
  15. [19.10.2021 13:30:26] Found, 0.16s, SigName: "Trojan.MSIL.Crypt", SigId: 339655141, Type: "VIRUS", File: "C:\Users\promi\Desktop\Samples\acf92f34a57d6a2a59374d55de9b7ccc"
  16. [19.10.2021 13:30:26] Found, 0.00s, SigName: "Trojan-Downloader.MSIL.Agent", SigId: 339642878, Type: "VIRUS", File: "C:\Users\promi\Desktop\Samples\c4cbaec203a03f718d5def0fe4047b54"
  17. [19.10.2021 13:30:26] Found, 0.172s, SigName: "Trojan-Downloader.Win32.Nymaim", SigId: 3032617, Type: "VIRUS", File: "C:\Users\promi\Desktop\Samples\4be9624bbf6df22079054eaba58fdb13"
  18. [19.10.2021 13:30:26] Found, 0.93s, SigName: "Trojan.Hijacker", SigId: 1237045, Type: "VIRUS", File: "C:\Users\promi\Desktop\Samples\c593e115d91065b47602e464851f6d13"
  19. [19.10.2021 13:30:26] Found, 0.15s, SigName: "Trojan.MSIL.Crypt", SigId: 339326393, Type: "VIRUS", File: "C:\Users\promi\Desktop\Samples\d3e3d4ada28dc35cb308567977fd9625"
  20. [19.10.2021 13:30:26] Found, 0.00s, SigName: "Trojan.Win32.CoinMiner", SigId: 4233382, Type: "VIRUS", File: "C:\Users\promi\Desktop\Samples\db9b25292068eecb923785d5e67df6e0"
  21. [19.10.2021 13:30:26] Found, 0.93s, SigName: "Trojan-Downloader.Win32.Nymaim", SigId: 3032617, Type: "VIRUS", File: "C:\Users\promi\Desktop\Samples\c58821e230703e9826eb8e0b80ed81ab"
  22. [19.10.2021 13:30:26] Found, 0.00s, SigName: "Virus.Win32.Vxidl", SigId: 1479016, Type: "VIRUS", File: "C:\Users\promi\Desktop\Samples\e4e549626d8b3073b1e69f873fd0f211"
  23. [19.10.2021 13:30:26] Found, 0.16s, SigName: "Trojan.Win32.Krypt", SigId: 4226854, Type: "VIRUS", File: "C:\Users\promi\Desktop\Samples\ec5702b803de813dbbcae69a2427d1fc"
  24. [19.10.2021 13:30:26] Found, 0.203s, SigName: "Trojan-Dropper.Win32.Rubat", SigId: 3564118, Type: "VIRUS", File: "C:\Users\promi\Desktop\Samples\1990a470a7dd44ba879da6cd0de625e5"
  25. [19.10.2021 13:30:26] Found, 0.00s, SigName: "Trojan.Win32.Agent", SigId: 339645715, Type: "VIRUS", File: "C:\Users\promi\Desktop\Samples\f3e817934124b256301df5796ca414c7"
  26. [19.10.2021 13:30:26] Found, 0.00s, SigName: "Trojan.Win32.Crypt", SigId: 339653811, Type: "VIRUS", File: "C:\Users\promi\Desktop\Samples\f5dba19f84bfd02418ca81c7906e41de"
  27. [19.10.2021 13:30:26] Found, 0.32s, SigName: "Trojan.MSIL.Vmprotect", SigId: 4211416, Type: "VIRUS", File: "C:\Users\promi\Desktop\Samples\e42c98e59eb44b5fa683ff814638ec06"
  28. [19.10.2021 13:30:26] Found, 0.532s, SigName: "Trojan-Dropper.Agent", SigId: 2656334, Type: "VIRUS", File: "C:\Users\promi\Desktop\Samples\ed3421dc872b0693137df6406cdc4a52"
  29. [19.10.2021 13:30:26] On-demand scan FINISHED: "user_defined"
  30. [19.10.2021 13:30:26] ----------------------------------------------------
  31. [19.10.2021 13:30:26] Directories scanned: 1
  32. [19.10.2021 13:30:26] Files scanned: 31
  33. [19.10.2021 13:30:26] Virus found: 27
  34. [19.10.2021 13:30:26] ----------------------------------------------------
复制代码



本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

Mod123xsd
发表于 2021-10-19 13:44:02 | 显示全部楼层
BD-GZ:扫描杀27,双击剩余样本,两个无法在Windows10下运行,两个主防杀,剩余一个运行无反应
回复

举报

小小糊涂虫
发表于 2021-10-19 15:05:28 | 显示全部楼层
下载不了  直接拦截了
回复

举报

11111111111445
发表于 2021-10-19 15:42:04 | 显示全部楼层
本帖最后由 11111111111445 于 2021-10-19 15:53 编辑

avast 30x,误报4x

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

心醉咖啡
发表于 2021-10-19 19:16:14 | 显示全部楼层
毒霸

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2025-5-4 19:59 , Processed in 0.142990 second(s), 18 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表