收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 龟包 240109 25X
12
返回列表 发新帖
楼主: 神龟Turmi
 收起左侧

[病毒样本] 龟包 240109 25X

[复制链接]
UNknownOoo
发表于 2024-1-9 09:44:48 | 显示全部楼层
火绒
扫描:20X
  1. 扫描文件:25
  2. 发现风险:20
  3. 已处理风险:0
  4. 病毒详情:
  5. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-07-Async-375e34.exe, 病毒名:Backdoor/MSIL.DcRat.a, 病毒ID:eb06897b83bd81bd, 处理结果:暂不处理
  6. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-13-CobaltStrike-ed2194.exe, 病毒名:Backdoor/CobaltStrike.d, 病毒ID:9c6caf6b7979d2d0, 处理结果:暂不处理
  7. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-17-Berbew-3c92ee.exe, 病毒名:Worm/Mimail.a, 病毒ID:4e96b616a2af8041, 处理结果:暂不处理
  8. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-11-Miner-7ea146.exe, 病毒名:Trojan/W64.CoinMiner.by, 病毒ID:3fcb78e528f39e74, 处理结果:暂不处理
  9. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-06-Redline-d6e02d.exe, 病毒名:TrojanSpy/MSIL.PwStealer.o, 病毒ID:693c4b0d8ed98a02, 处理结果:暂不处理
  10. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-20-Berbew-136fa3.exe, 病毒名:Worm/Mimail.a, 病毒ID:4e96b616a2af8041, 处理结果:暂不处理
  11. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-19-Berbew-04da42.exe, 病毒名:Worm/Mimail.a, 病毒ID:4e96b616a2af8041, 处理结果:暂不处理
  12. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-18-Berbew-c9d3b3.exe, 病毒名:Worm/Mimail.a, 病毒ID:4e96b616a2af8041, 处理结果:暂不处理
  13. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-21-Berbew-498aca.exe, 病毒名:Worm/Mimail.a, 病毒ID:4e96b616a2af8041, 处理结果:暂不处理
  14. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-23-Berbew-99bc0c.exe, 病毒名:Worm/Mimail.a, 病毒ID:4e96b616a2af8041, 处理结果:暂不处理
  15. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-22-Berbew-d86648.exe, 病毒名:Worm/Mimail.a, 病毒ID:4e96b616a2af8041, 处理结果:暂不处理
  16. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-24-Miner-180a24.exe, 病毒名:Trojan/W64.CoinMiner.f, 病毒ID:aa4fcb8dd552d90c, 处理结果:暂不处理
  17. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-04-AgentTesla-9c558d.exe, 病毒名:TrojanSpy/MSIL.AgentTesla.mq, 病毒ID:41467760e1a2a3a2, 处理结果:暂不处理
  18. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-15-Expiro-91c486.exe, 病毒名:Trojan/VBClone.f, 病毒ID:56c3a48ef92a7f49, 处理结果:暂不处理
  19. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-01-Rootkit-df6135.sys, 病毒名:Rootkit/W64.StartPage.d, 病毒ID:1ca4c5b612fe7324, 处理结果:暂不处理
  20. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-25-Miner-620015.exe, 病毒名:Trojan/CoinMiner.iq, 病毒ID:e16bb13c81486220, 处理结果:暂不处理
  21. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-03-Rootkit-b0b989.sys, 病毒名:Rootkit/StartPage.bd, 病毒ID:d2045ecfe32bf7a4, 处理结果:暂不处理
  22. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-02-Rootkit-e80cfc.sys, 病毒名:Rootkit/StartPage.bd, 病毒ID:d2045ecfe32bf7a4, 处理结果:暂不处理
  23. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-09-Sectop-62081e.exe, 病毒名:HVM:Trojan/Injector.bo, 病毒ID:74f24d08342d5a5b, 处理结果:暂不处理
  24. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-10-AgentTesla-02328d.exe, 病毒名:HVM:VirTool/Obfuscator.gen!A, 病毒ID:b27d4294cde6a1ec, 处理结果:暂不处理
复制代码


X-Sec
扫描:ALL
  1. ---------------------
  2. 2024/01/09 09:43:54 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-02-Rootkit-e80cfc.sys -- [xave-cloud] Rootkit.Generic
  3. 2024/01/09 09:43:55 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-01-Rootkit-df6135.sys -- [xave-cloud] Rootkit.Generic
  4. 2024/01/09 09:43:55 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-03-Rootkit-b0b989.sys -- [xave-cloud] Rootkit.Generic
  5. 2024/01/09 09:43:55 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-04-AgentTesla-9c558d.exe -- [xave-cloud] Spyware.Generic
  6. 2024/01/09 09:43:59 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-05-AgentTesla-eecaa6.exe -- [xave-cloud] Spyware.Generic
  7. 2024/01/09 09:43:59 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-06-Redline-d6e02d.exe -- [xave-cloud] Stealer.Generic
  8. 2024/01/09 09:43:59 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-07-Async-375e34.exe -- [xave-cloud] Backdoor.Generic
  9. 2024/01/09 09:44:01 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-09-Sectop-62081e.exe -- [xave-cloud] Stealer.Generic
  10. 2024/01/09 09:44:02 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-10-AgentTesla-02328d.exe -- [xave-cloud] Spyware.Generic
  11. 2024/01/09 09:44:03 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-08-AgentTesla-1e72bf.exe -- [xave-cloud] Spyware.Generic
  12. 2024/01/09 09:44:03 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-11-Miner-7ea146.exe -- [xave-cloud] Trojan.Generic
  13. 2024/01/09 09:44:04 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-13-CobaltStrike-ed2194.exe -- [xave-cloud] Backdoor.Generic
  14. 2024/01/09 09:44:03 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-12-Unknown-f7966a.exe -- [xave-cloud] Trojan.Generic
  15. 2024/01/09 09:44:04 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-14-Redline-2db1c8.exe -- [xave-cloud] Stealer.Generic
  16. 2024/01/09 09:44:04 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-15-Expiro-91c486.exe -- [xave-cloud] Virus.Generic
  17. 2024/01/09 09:44:05 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-17-Berbew-3c92ee.exe -- [xave-cloud] Backdoor.Generic
  18. 2024/01/09 09:44:06 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-18-Berbew-c9d3b3.exe -- [xave-cloud] Backdoor.Generic
  19. 2024/01/09 09:44:06 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-16-CobaltStrike-ad8223.exe -- [xave-cloud] Backdoor.Generic
  20. 2024/01/09 09:44:07 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-19-Berbew-04da42.exe -- [xave-cloud] Backdoor.Generic
  21. 2024/01/09 09:44:07 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-20-Berbew-136fa3.exe -- [xave-cloud] Backdoor.Generic
  22. 2024/01/09 09:44:08 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-22-Berbew-d86648.exe -- [xave-cloud] Backdoor.Generic
  23. 2024/01/09 09:44:08 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-21-Berbew-498aca.exe -- [xave-cloud] Backdoor.Generic
  24. 2024/01/09 09:44:08 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-24-Miner-180a24.exe -- [xave-cloud] Trojan.Generic
  25. 2024/01/09 09:44:08 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-23-Berbew-99bc0c.exe -- [xave-cloud] Backdoor.Generic
  26. 2024/01/09 09:44:09 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240109-repkg\TurtleSUSP-240109-25-Miner-620015.exe -- [xave-cloud] Trojan.Generic
复制代码


回复

举报

GreatMOLA
发表于 2024-1-9 09:50:58 | 显示全部楼层
本帖最后由 GreatMOLA 于 2024-1-9 09:53 编辑

弹性 25x

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

IamAngry
发表于 2024-1-9 10:08:19 | 显示全部楼层
z80405789 发表于 2024-1-9 08:42
剩余3双击触发行为拦截2

行为检测还挺有存在感的
回复

举报

tony099
发表于 2024-1-9 10:57:55 | 显示全部楼层
BD 剩余6X
回复

举报

莒县小哥
发表于 2024-1-9 11:49:46 | 显示全部楼层

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

DisaPDB
发表于 2024-1-9 11:56:27 | 显示全部楼层
本帖最后由 DisaPDB 于 2024-1-9 12:00 编辑

360 24x
自动机 2x 报法下发1x

合计25/25


本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

Tant
发表于 2024-1-9 11:57:29 | 显示全部楼层
ESSP 24x
回复

举报

pengnengkai1989
发表于 2024-1-9 21:53:48 | 显示全部楼层
真小读者 发表于 2024-1-9 09:03
华为的弹窗还挺好看的

类似腾讯的电脑管家
回复

举报

biue
发表于 2024-1-9 21:54:49 | 显示全部楼层

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

yaokai815
发表于 2024-1-10 18:08:12 | 显示全部楼层
本帖最后由 yaokai815 于 2024-1-17 15:07 编辑

金山毒霸kill all

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

12
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-5-8 23:50 , Processed in 0.097172 second(s), 14 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表