收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 样本 8X
12下一页
返回列表 发新帖
查看: 1342|回复: 17
收起左侧

[病毒样本] 样本 8X

[复制链接]
wwwab
发表于 2023-7-13 13:30:57 | 显示全部楼层 |阅读模式

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

dght432
发表于 2023-7-13 13:36:59 | 显示全部楼层

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

1094947421
发表于 2023-7-13 13:37:14 | 显示全部楼层

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

UNknownOoo
发表于 2023-7-13 13:40:14 | 显示全部楼层
火绒
扫描&双击:MISS ALL

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

nikonikoni
发表于 2023-7-13 13:45:22 | 显示全部楼层
回复

举报

隔山打空气
发表于 2023-7-13 13:48:16 | 显示全部楼层
BEST 扫描3x

项目路径
威胁名称
最终状态
C:\Users\a1124\Downloads\1\Downloads\e2f45beb2e25ec3ba078d913d97b2d52626481d4454cc4cf0c478a5c3b751fa1
Gen:Variant.Lazy.171880
已删除
C:\Users\a1124\Downloads\1\Downloads\e81cafb69ed7c9f227ac0f2a5b6557462974d4598068e9d137bdf65b59d3abd8
Gen:Suspicious.Cloud.1.guW@aa4juXlj
已删除
C:\Users\a1124\Downloads\1\Downloads\a87a9a2294803b8390d700de4991cdca2729b1c89c86ee5c9c1eba226970048c
Gen:Suspicious.Cloud.2.guW@aO9bz9jj
已删除
回复

举报

tony099
发表于 2023-7-13 13:50:56 | 显示全部楼层
本帖最后由 tony099 于 2023-7-13 13:57 编辑

卡巴kill 4x,日志如下:

名称: HEUR:Backdoor.Win32.Farfli.gen
精确度: 启发式分析
威胁级别: 高
对象类型: 文件
对象名称: 187c9e4612b56672083f4c75948fd6863bb9d5572eb1d918096886d7158d0f4a
对象路径: C:\Users\Admin\Downloads\Downloads
对象的 MD5: 7A048CC04774A1249C117319B26FE835


名称: HEUR:Backdoor.Win32.Farfli.gen
精确度: 启发式分析
威胁级别: 高
对象类型: 文件
对象名称: a87a9a2294803b8390d700de4991cdca2729b1c89c86ee5c9c1eba226970048c
对象路径: C:\Users\Admin\Downloads\Downloads
对象的 MD5: 9CFEFA2D21915B6B7F44E3455B80E672


名称: UDS:Backdoor.Win32.Farfli.gen
精确度: 确切
威胁级别: 高
对象类型: 文件
对象名称: d0c58ebb2273206a8f46aaeaae60ed766dbb16e772babc8cea8dc2112dcc6ff6
对象路径: C:\Users\Admin\Downloads\Downloads
对象的 MD5: 705D1CE160E326C39E23B551FA23C1AA


名称: HEUR:Backdoor.Win32.Zegost.gen
精确度: 启发式分析
威胁级别: 高
对象类型: 文件
对象名称: e81cafb69ed7c9f227ac0f2a5b6557462974d4598068e9d137bdf65b59d3abd8
对象路径: C:\Users\Admin\Downloads\Downloads
对象的 MD5: B927911EFF9AF23C7DE64919423F850D

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

ikochina1
发表于 2023-7-13 14:02:20 | 显示全部楼层
本帖最后由 ikochina1 于 2023-7-13 14:09 编辑

mcafee全杀,4个rp,4个报ti!
{"timestamp":"2023-07-13T06:01:23.748Z","target_name":"\\\\?\\D:\\样本\\Downloads\\ab13dd47db554a2c8f177bc955dd387e719cc0725eaeafbc8aa0f912af09bbc2","initiator_name":"","sensor":"ods","target_hash":"c7e4f93d4e49bc788d1b27af598aded1d8547ec1","target_url":"","scan_id":"{AE86D5D2-D783-41AD-837E-F6C2063AA5BC}","detection_name":"Real Protect-LS!7f7ec4d01b6a","final_result":"infection quarantined","all":[{"final_detection_source":"rp-s","file_rep":0,"jcm_rep":1,"url_rep":0},{"detection_source":"cache","file_rep":0,"jcm_rep":0,"url_rep":0},{"detection_source":"signature","file_rep":0,"jcm_rep":50,"url_rep":0},{"detection_source":"trust-dat","file_rep":0,"jcm_rep":50,"url_rep":0},{"detection_source":"av","file_rep":0,"jcm_rep":50,"url_rep":0},{"detection_source":"hti","file_rep":0,"jcm_rep":50,"url_rep":0},{"detection_source":"rp-s","file_rep":0,"jcm_rep":1,"url_rep":0},{"detection_source":"neo","file_rep":0,"jcm_rep":50,"url_rep":0}]}
{"timestamp":"2023-07-13T06:01:23.787Z","target_name":"\\\\?\\D:\\样本\\Downloads\\a87a9a2294803b8390d700de4991cdca2729b1c89c86ee5c9c1eba226970048c","initiator_name":"","sensor":"ods","target_hash":"0ed93d83753e73df7f233f64a38ba63e2d62d815","target_url":"","scan_id":"{AE86D5D2-D783-41AD-837E-F6C2063AA5BC}","detection_name":"Real Protect-LS!9cfefa2d2191","final_result":"infection quarantined","all":[{"final_detection_source":"rp-s","file_rep":16,"jcm_rep":1,"url_rep":0},{"detection_source":"cache","file_rep":0,"jcm_rep":0,"url_rep":0},{"detection_source":"signature","file_rep":0,"jcm_rep":50,"url_rep":0},{"detection_source":"trust-dat","file_rep":16,"jcm_rep":50,"url_rep":0},{"detection_source":"av","file_rep":0,"jcm_rep":50,"url_rep":0},{"detection_source":"hti","file_rep":16,"jcm_rep":50,"url_rep":0},{"detection_source":"rp-s","file_rep":16,"jcm_rep":1,"url_rep":0},{"detection_source":"neo","file_rep":0,"jcm_rep":50,"url_rep":0}]}
{"timestamp":"2023-07-13T06:01:23.852Z","target_name":"\\\\?\\D:\\样本\\Downloads\\d0c58ebb2273206a8f46aaeaae60ed766dbb16e772babc8cea8dc2112dcc6ff6","initiator_name":"","sensor":"ods","target_hash":"257975fe9839fa2191b95ea293c619e249b76ff1","target_url":"","scan_id":"{AE86D5D2-D783-41AD-837E-F6C2063AA5BC}","detection_name":"Real Protect-LS!705d1ce160e3","final_result":"infection quarantined","all":[{"final_detection_source":"rp-s","file_rep":0,"jcm_rep":1,"url_rep":0},{"detection_source":"cache","file_rep":0,"jcm_rep":0,"url_rep":0},{"detection_source":"signature","file_rep":0,"jcm_rep":50,"url_rep":0},{"detection_source":"trust-dat","file_rep":0,"jcm_rep":50,"url_rep":0},{"detection_source":"av","file_rep":0,"jcm_rep":50,"url_rep":0},{"detection_source":"hti","file_rep":0,"jcm_rep":50,"url_rep":0},{"detection_source":"rp-s","file_rep":0,"jcm_rep":1,"url_rep":0},{"detection_source":"neo","file_rep":0,"jcm_rep":50,"url_rep":0}]}
{"timestamp":"2023-07-13T06:01:23.859Z","target_name":"\\\\?\\D:\\样本\\Downloads\\0d8685d5f7cf9c4972e12bec11d2ddd9f5532c8bacb85a8df4b22fc33637abb1","initiator_name":"","sensor":"ods","target_hash":"4d7664d7987a49ca95cac7d1aac4f4571866ce16","target_url":"","scan_id":"{AE86D5D2-D783-41AD-837E-F6C2063AA5BC}","detection_name":"Real Protect-LS!64e7f36d1857","final_result":"infection quarantined","all":[{"final_detection_source":"rp-s","file_rep":0,"jcm_rep":1,"url_rep":0},{"detection_source":"cache","file_rep":0,"jcm_rep":0,"url_rep":0},{"detection_source":"signature","file_rep":0,"jcm_rep":50,"url_rep":0},{"detection_source":"trust-dat","file_rep":0,"jcm_rep":50,"url_rep":0},{"detection_source":"av","file_rep":0,"jcm_rep":50,"url_rep":0},{"detection_source":"hti","file_rep":0,"jcm_rep":50,"url_rep":0},{"detection_source":"rp-s","file_rep":0,"jcm_rep":1,"url_rep":0},{"detection_source":"neo","file_rep":0,"jcm_rep":50,"url_rep":0}]}
{"timestamp":"2023-07-13T06:01:23.921Z","target_name":"\\\\?\\D:\\样本\\Downloads\\e81cafb69ed7c9f227ac0f2a5b6557462974d4598068e9d137bdf65b59d3abd8","initiator_name":"","sensor":"ods","target_hash":"30455cc15b59a1d1ae099c6c7560b539839d6e6a","target_url":"","scan_id":"{AE86D5D2-D783-41AD-837E-F6C2063AA5BC}","detection_name":"ti!E81CAFB69ED7","final_result":"infection quarantined","all":[{"final_detection_source":"hti","file_rep":8,"jcm_rep":1,"url_rep":0},{"detection_source":"cache","file_rep":0,"jcm_rep":0,"url_rep":0},{"detection_source":"signature","file_rep":0,"jcm_rep":50,"url_rep":0},{"detection_source":"trust-dat","file_rep":8,"jcm_rep":50,"url_rep":0},{"detection_source":"av","file_rep":0,"jcm_rep":50,"url_rep":0},{"detection_source":"hti","file_rep":8,"jcm_rep":1,"url_rep":0},{"detection_source":"rp-s","file_rep":8,"jcm_rep":1,"url_rep":0},{"detection_source":"neo","file_rep":0,"jcm_rep":50,"url_rep":0}]}
{"timestamp":"2023-07-13T06:01:23.938Z","target_name":"\\\\?\\D:\\样本\\Downloads\\e2f45beb2e25ec3ba078d913d97b2d52626481d4454cc4cf0c478a5c3b751fa1","initiator_name":"","sensor":"ods","target_hash":"92b75f104c5115a9e8c3de647d8c99a783a622b9","target_url":"","scan_id":"{AE86D5D2-D783-41AD-837E-F6C2063AA5BC}","detection_name":"ti!E2F45BEB2E25","final_result":"infection quarantined","all":[{"final_detection_source":"rp-s","file_rep":0,"jcm_rep":1,"url_rep":0},{"detection_source":"cache","file_rep":0,"jcm_rep":0,"url_rep":0},{"detection_source":"signature","file_rep":0,"jcm_rep":50,"url_rep":0},{"detection_source":"trust-dat","file_rep":0,"jcm_rep":50,"url_rep":0},{"detection_source":"av","file_rep":0,"jcm_rep":50,"url_rep":0},{"detection_source":"hti","file_rep":0,"jcm_rep":50,"url_rep":0},{"detection_source":"rp-s","file_rep":0,"jcm_rep":1,"url_rep":0},{"detection_source":"neo","file_rep":0,"jcm_rep":50,"url_rep":0}]}
{"timestamp":"2023-07-13T06:01:23.940Z","target_name":"\\\\?\\D:\\样本\\Downloads\\c4bb3eac51dbb9adbe3081a24340f954a75350feb9873022c0a327926b2f160c","initiator_name":"","sensor":"ods","target_hash":"8cd7d868323c779e2d184c6c37fe248ced074856","target_url":"","scan_id":"{AE86D5D2-D783-41AD-837E-F6C2063AA5BC}","detection_name":"ti!C4BB3EAC51DB","final_result":"infection quarantined","all":[{"final_detection_source":"rp-s","file_rep":0,"jcm_rep":1,"url_rep":0},{"detection_source":"cache","file_rep":0,"jcm_rep":0,"url_rep":0},{"detection_source":"signature","file_rep":0,"jcm_rep":50,"url_rep":0},{"detection_source":"trust-dat","file_rep":0,"jcm_rep":50,"url_rep":0},{"detection_source":"av","file_rep":0,"jcm_rep":50,"url_rep":0},{"detection_source":"hti","file_rep":0,"jcm_rep":50,"url_rep":0},{"detection_source":"rp-s","file_rep":0,"jcm_rep":1,"url_rep":0},{"detection_source":"neo","file_rep":0,"jcm_rep":50,"url_rep":0}]}
{"timestamp":"2023-07-13T06:01:23.976Z","target_name":"\\\\?\\D:\\样本\\Downloads\\187c9e4612b56672083f4c75948fd6863bb9d5572eb1d918096886d7158d0f4a","initiator_name":"","sensor":"ods","target_hash":"37d9a4ce0bf6f89d0ffe23215be94d75297f281a","target_url":"","scan_id":"{AE86D5D2-D783-41AD-837E-F6C2063AA5BC}","detection_name":"ti!187C9E4612B5","final_result":"infection quarantined","all":[{"final_detection_source":"rp-s","file_rep":0,"jcm_rep":1,"url_rep":0},{"detection_source":"cache","file_rep":0,"jcm_rep":0,"url_rep":0},{"detection_source":"signature","file_rep":0,"jcm_rep":50,"url_rep":0},{"detection_source":"trust-dat","file_rep":0,"jcm_rep":50,"url_rep":0},{"detection_source":"av","file_rep":0,"jcm_rep":50,"url_rep":0},{"detection_source":"hti","file_rep":0,"jcm_rep":50,"url_rep":0},{"detection_source":"rp-s","file_rep":0,"jcm_rep":1,"url_rep":0},{"detection_source":"neo","file_rep":0,"jcm_rep":50,"url_rep":0}]}

回复

举报

ytysh
发表于 2023-7-13 14:10:21 | 显示全部楼层
Ahnlab V3 Lite Miss ALL
回复

举报

syswow64
发表于 2023-7-13 14:36:20 | 显示全部楼层
ESET


C:\Users\98\Downloads\1\9490.exe - Win64/ShellcodeRunner.NI 特洛伊木马 - 已通过删除清除 [1]
回复

举报

下一页 »
12下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-11-2 04:33 , Processed in 0.137525 second(s), 17 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表