收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 龟包 240110 30X
12下一页
返回列表 发新帖
查看: 1413|回复: 16
收起左侧

[病毒样本] 龟包 240110 30X

[复制链接]
神龟Turmi
发表于 2024-1-10 08:53:12 | 显示全部楼层 |阅读模式
https://turtlesusp.run/samples/0 ... rtleSUSP-240110.zip

Malwarebytes:

扫描27X 双击0X 合计27/30


本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x

评分

参与人数 1人气 +2 收起 理由
UNknownOoo + 2 qwq

查看全部评分

回复

举报

祸兮福所倚
头像被屏蔽
发表于 2024-1-10 09:05:49 | 显示全部楼层
本帖最后由 祸兮福所倚 于 2024-1-10 09:10 编辑

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

莒县小哥
发表于 2024-1-10 09:18:34 | 显示全部楼层

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

UNknownOoo
发表于 2024-1-10 09:31:57 | 显示全部楼层
火绒
扫描:27X
  1. 扫描文件:30
  2. 发现风险:27
  3. 已处理风险:0
  4. 病毒详情:
  5. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-05-Msfvenom-188094.exe, 病毒名:Backdoor/W64.Meterpreter.f, 病毒ID:19304ee10acc0bdf, 处理结果:暂不处理
  6. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-01-Rootkit-1cf197.sys, 病毒名:Rootkit/Agent.bq, 病毒ID:eeb13e452acee4ef, 处理结果:暂不处理
  7. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-18-NJRat-2ebd59.exe, 病毒名:Backdoor/Bladabindi.e, 病毒ID:b9ee43a9c2556cba, 处理结果:暂不处理
  8. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-04-Expiro-673255.exe, 病毒名:Virus/Expiro.q@U, 病毒ID:f9ca53445d898fbf, 处理结果:暂不处理
  9. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-06-RisePro-953cff.exe, 病毒名:HEUR:TrojanDownloader/Agent.bf, 病毒ID:7bec03d7fe2662cb, 处理结果:暂不处理
  10. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-20-Async-f27a1d.exe, 病毒名:Backdoor/MSIL.DcRat.a, 病毒ID:eb06897b83bd81bd, 处理结果:暂不处理
  11. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-12-CobaltStrike-785228.exe, 病毒名:Backdoor/W64.CobaltStrike.bp, 病毒ID:b7f74593ec22018c, 处理结果:暂不处理
  12. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-22-Redline-329a7e.exe, 病毒名:TrojanSpy/MSIL.PwStealer.o, 病毒ID:693c4b0d8ed98a02, 处理结果:暂不处理
  13. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-21-AgentTesla-8e3d02.exe, 病毒名:TrojanSpy/MSIL.AgentTesla.mq, 病毒ID:41467760e1a2a3a2, 处理结果:暂不处理
  14. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-23-UnknownRansom-d979d4.exe, 病毒名:Ransom/BTCware.d, 病毒ID:4c80c42ea2ca9ce0, 处理结果:暂不处理
  15. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-11-Gh0st-a5fa3e.exe, 病毒名:Virus/HDrop.a, 病毒ID:c1bfcd902f805d17, 处理结果:暂不处理
  16. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-19-CobaltStrike-dad85e.exe, 病毒名:Backdoor/W64.CobaltStrike.bp, 病毒ID:b7f74593ec22018c, 处理结果:暂不处理
  17. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-14-CobaltStrike-847efa.exe, 病毒名:Backdoor/W64.CobaltStrike.bp, 病毒ID:b7f74593ec22018c, 处理结果:暂不处理
  18. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-29-Berbew-d5cb8b.exe, 病毒名:Backdoor/Berbew.c, 病毒ID:c41b74bb15add7cf, 处理结果:暂不处理
  19. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-07-Sality-53135c.exe, 病毒名:TrojanSpy/JiKePDF.a, 病毒ID:f3636e4669fc249f, 处理结果:暂不处理
  20. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-02-Rootkit-c0b01e.sys, 病毒名:Rootkit/StartPage.bd, 病毒ID:d2045ecfe32bf7a4, 处理结果:暂不处理
  21. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-03-Rootkit-b92d52.sys, 病毒名:Rootkit/StartPage.bd, 病毒ID:d2045ecfe32bf7a4, 处理结果:暂不处理
  22. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-30-Berbew-ca51c6.exe, 病毒名:HVM:Trojan/MalBehav.gen!C, 病毒ID:4cfe3a5dda31054f, 处理结果:暂不处理
  23. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-10-ZGRat-287cdd.exe, 病毒名:TrojanDownloader/MSIL.Small.cg, 病毒ID:e931f9a5d993219c, 处理结果:暂不处理
  24. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-09-ZGRat-c729ff.exe, 病毒名:TrojanSpy/MSIL.PwStealer.cv, 病毒ID:9302ccd6672705ec, 处理结果:暂不处理
  25. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-26-UnknownStealer-c8617e.exe, 病毒名:TrojanSpy/Stealer.k, 病毒ID:d99313e79892afbb, 处理结果:暂不处理
  26. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-15-Msfvenom-ca0082.exe, 病毒名:HVM:Trojan/Swrort.gen!A, 病毒ID:d6e29035d2489e60, 处理结果:暂不处理
  27. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-28-Sfone-b70dff.exe, 病毒名:HVM:Trojan/MalBehav.gen!A, 病毒ID:90261321ca2450f9, 处理结果:暂不处理
  28. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-08-SmokeLoader-bd75e9.exe, 病毒名:VirTool/Obfuscator.fq, 病毒ID:87f0b01289503335, 处理结果:暂不处理
  29. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-13-AgentTesla-b59435.exe, 病毒名:HVM:VirTool/Obfuscator.gen!A, 病毒ID:b27d4294cde6a1ec, 处理结果:暂不处理
  30. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-16-AgentTesla-f83fae.exe, 病毒名:HVM:VirTool/Obfuscator.gen!A, 病毒ID:b27d4294cde6a1ec, 处理结果:暂不处理
  31. 风险路径:C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-27-UnknownBackdoor-9d0059.exe, 病毒名:Trojan/Malex.e, 病毒ID:68cef4ebbfb60530, 处理结果:暂不处理
复制代码



X-Sec
扫描:29X
  1. ---------------------
  2. 2024/01/10 09:30:19 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-01-Rootkit-1cf197.sys -- [xave-cloud] Trojan.Generic
  3. 2024/01/10 09:30:19 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-02-Rootkit-c0b01e.sys -- [xave-cloud] PUA.Generic
  4. 2024/01/10 09:30:19 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-03-Rootkit-b92d52.sys -- [xave-cloud] PUA.Generic
  5. 2024/01/10 09:30:20 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-05-Msfvenom-188094.exe -- [rame-tfe] Trojan.Meterpreter!8.E532
  6. 2024/01/10 09:30:21 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-06-RisePro-953cff.exe -- [rame-classic] Downloader.Agent!1.D93C
  7. 2024/01/10 09:30:21 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-08-SmokeLoader-bd75e9.exe -- [rame-classic] Trojan.SmokeLoader!1.EB63
  8. 2024/01/10 09:30:21 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-07-Sality-53135c.exe -- [rame-classic] Virus.Sality!1.A5BD
  9. 2024/01/10 09:30:23 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-09-ZGRat-c729ff.exe -- [rame-rdm.msil2] Malware.Obfus/MSIL@AI.80
  10. 2024/01/10 09:30:24 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-11-Gh0st-a5fa3e.exe -- [xave-heur] Heur:Backdoor.Generic
  11. 2024/01/10 09:30:25 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-12-CobaltStrike-785228.exe -- [rame-cloud] Trojan.Goshell!8.1818E
  12. 2024/01/10 09:30:26 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-13-AgentTesla-b59435.exe -- [rame-cloud] Spyware.AgentTesla!8.10E35
  13. 2024/01/10 09:30:26 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-10-ZGRat-287cdd.exe -- [rame-rdm.msil2] Malware.Obfus/MSIL@AI.100
  14. 2024/01/10 09:30:27 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-14-CobaltStrike-847efa.exe -- [rame-cloud] Trojan.Goshell!8.1818E
  15. 2024/01/10 09:30:27 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-15-Msfvenom-ca0082.exe -- [rame-cloud] Trojan.Rozena!8.6D
  16. 2024/01/10 09:30:28 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-16-AgentTesla-f83fae.exe -- [rame-cloud] Trojan.DorkBot!8.1295
  17. 2024/01/10 09:30:29 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-17-Quasar-09d275.exe -- [rame-rdm.msil2] Malware.Obfus/MSIL@AI.100
  18. 2024/01/10 09:30:28 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-18-NJRat-2ebd59.exe -- [rame-classic] Backdoor.njRAT!1.A096
  19. 2024/01/10 09:30:29 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-19-CobaltStrike-dad85e.exe -- [rame-cloud] Trojan.Goshell!8.1818E
  20. 2024/01/10 09:30:29 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-20-Async-f27a1d.exe -- [rame-classic] Backdoor.AsyncRAT!1.C678
  21. 2024/01/10 09:30:30 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-22-Redline-329a7e.exe -- [rame-classic] Stealer.Agent!1.DC63
  22. 2024/01/10 09:30:30 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-21-AgentTesla-8e3d02.exe -- [rame-rdm.msil2] Malware.Obfus/MSIL@AI.84
  23. 2024/01/10 09:30:31 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-23-UnknownRansom-d979d4.exe -- [xave-heur] Heur:Ransom.Generic
  24. 2024/01/10 09:30:32 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-25-Adware-41431a.exe -- [rame-cloud] Dropper.Agent!8.2F
  25. 2024/01/10 09:30:32 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-24-AutoIt-48986c.exe -- [rame-cloud] Dropper.Agent/Autoit!8.15DCB
  26. 2024/01/10 09:30:33 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-26-UnknownStealer-c8617e.exe -- [rame-classic] Trojan.Delf!1.E833
  27. 2024/01/10 09:30:33 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-27-UnknownBackdoor-9d0059.exe -- [rame-tfe] Worm.Autorun!8.50
  28. 2024/01/10 09:30:34 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-29-Berbew-d5cb8b.exe -- [rame-classic] Backdoor.Berbew!1.AE0A
  29. 2024/01/10 09:30:34 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-28-Sfone-b70dff.exe -- [rame-tfe] Worm.Agent!8.25
  30. 2024/01/10 09:30:35 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\TurtleSUSP-240110\TurtleSUSP-240110-30-Berbew-ca51c6.exe -- [rame-tfe] Backdoor.Padodor!8.118
复制代码


评分

参与人数 1人气 +3 收起 理由
神龟Turmi + 3 板栗!

查看全部评分

回复

举报

PYAS_Security
发表于 2024-1-10 09:34:40 | 显示全部楼层
PYAS Kill 27x

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

LovelyTim
发表于 2024-1-10 11:54:30 | 显示全部楼层
Kaspersky kill 29x
剩 TurtleSUSP-240110-01-Rootkit-1cf197.sys

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

DisaPDB
发表于 2024-1-10 12:07:19 | 显示全部楼层
360 28x
双击1x 合计29x

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

枣泥奶卷
发表于 2024-1-10 12:50:20 | 显示全部楼层
DisaPDB 发表于 2024-1-10 12:07
360 28x
双击1x 合计29x

这木马防护什么时候也有广告了?
回复

举报

GDHJDSYDH
发表于 2024-1-10 13:41:16 | 显示全部楼层
EIS清空

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

DisaPDB
发表于 2024-1-10 13:54:59 | 显示全部楼层
枣泥奶卷 发表于 2024-1-10 12:50
这木马防护什么时候也有广告了?

想  不  到  吧其实好像一直都有来着……



回复

举报

下一页 »
12下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-5-9 01:07 , Processed in 0.134598 second(s), 18 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表