Samples x14

Hibike

https://we.tl/t-rusp9O7qmd


9d6034b2不确定是否恶意，采信了ESET的结果作为malware录入包中。

hhhq316

蜘蛛 2

Tant

QAX miss 6x复测：miss 2x 9d和d9开头文件

UNknownOoo

火绒
扫描：8x

1. 扫描文件：14
   
2. 发现风险：8
   
3. 已处理风险：0
   
4. 病毒详情：
   
5. 风险路径：C:\Users\UnknownOoo\Downloads\Compressed\Mimicanny\eee9e567.exe, 病毒名：TrojanDownloader/Lotok.n, 病毒ID：227db337779e9212, 处理结果：暂不处理
   
6. 风险路径：C:\Users\UnknownOoo\Downloads\Compressed\Mimicanny\cdb2f689.exe, 病毒名：TrojanSpy/MSIL.AgentTesla.mq, 病毒ID：ac3cb7ce3931cea3, 处理结果：暂不处理
   
7. 风险路径：C:\Users\UnknownOoo\Downloads\Compressed\Mimicanny\baed2001.exe, 病毒名：TrojanDownloader/MSIL.Agent.yd, 病毒ID：3c991775c6512f73, 处理结果：暂不处理
   
8. 风险路径：C:\Users\UnknownOoo\Downloads\Compressed\Mimicanny\792ead8a.exe, 病毒名：TrojanSpy/Python.PwStealer.j, 病毒ID：4d9179b6d8be9d1a, 处理结果：暂不处理
   
9. 风险路径：C:\Users\UnknownOoo\Downloads\Compressed\Mimicanny\7d69f17f.exe >> Depends, 病毒名：Trojan/BAT.Runner.i, 病毒ID：9096efb47ceb947b, 处理结果：暂不处理
   
10. 风险路径：C:\Users\UnknownOoo\Downloads\Compressed\Mimicanny\a3e36ac5.exe, 病毒名：Backdoor/Farfli.lt, 病毒ID：ab0a58bc903a7218, 处理结果：暂不处理
    
11. 风险路径：C:\Users\UnknownOoo\Downloads\Compressed\Mimicanny\6f597f09.exe, 病毒名：HVM:VirTool/Obfuscator.gen!A, 病毒ID：b27d4294cde6a1ec, 处理结果：暂不处理
    
12. 风险路径：C:\Users\UnknownOoo\Downloads\Compressed\Mimicanny\97ba64f2.exe, 病毒名：TrojanSpy/Python.PwStealer.j, 病毒ID：4d9179b6d8be9d1a, 处理结果：暂不处理

复制代码

X-Sec
扫描：10x

1. ---------------------
   
2. 2024/02/27 15:38:28 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\Mimicanny\6f597f09.exe -- [rame-cloud] Trojan.Injector!8.C4
   
3. 2024/02/27 15:38:28 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\Mimicanny\29ca3b1a.exe -- [rame-cloud] PUA.Agent!8.1B6B
   
4. 2024/02/27 15:38:29 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\Mimicanny\792ead8a.exe -- [rame-classic] Stealer.Agent/PYC!1.E497
   
5. 2024/02/27 15:38:30 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\Mimicanny\97ba64f2.exe -- [rame-classic] Stealer.Agent/PYC!1.E497
   
6. 2024/02/27 15:38:31 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\Mimicanny\a3e36ac5.exe -- [rame-tfe] Trojan.Agent!8.B1E
   
7. 2024/02/27 15:38:33 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\Mimicanny\baed2001.exe -- [rame-cloud] Ransom.Blocker!8.12A
   
8. 2024/02/27 15:38:33 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\Mimicanny\cdb2f689.exe -- [rame-rdm.msil2] Malware.Obfus/MSIL@AI.94
   
9. 2024/02/27 15:38:35 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\Mimicanny\9d6034b2.exe -- [rame-classic] Trojan.AntiAV!1.647B
   
10. 2024/02/27 15:38:36 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\Mimicanny\e7c64fcb.exe -- [rame-cloud] Trojan.Agent!8.B1E
    
11. 2024/02/27 15:38:37 Threat Detected: C:\Users\UnknownOoo\Downloads\Compressed\Mimicanny\fff4fa76.exe -- [rame-rdm.msil2] Malware.Obfus/MSIL@AI.100

复制代码

anxiety520

卡巴

9d6034b2.exe不报

真小读者

瑞星8X

GreatMOLA

Malwarebytes 扫描9x，

1. Generic.Malware.AI.DDS, C:\USERS\WANGL\DOWNLOADS\MIMICANNY\97BA64F2.EXE
   
2. Generic.Malware/Suspicious, C:\USERS\WANGL\DOWNLOADS\MIMICANNY\BAED2001.EXE
   
3. Malware.AI.1251694375, C:\USERS\WANGL\DOWNLOADS\MIMICANNY\792EAD8A.EXE
   
4. Malware.AI.1691281100, C:\USERS\WANGL\DOWNLOADS\MIMICANNY\CDB2F689.EXE
   
5. Trojan.Script, C:\USERS\WANGL\DOWNLOADS\MIMICANNY\6F597F09.EXE
   
6. Trojan.MalPack, C:\USERS\WANGL\DOWNLOADS\MIMICANNY\FFF4FA76.EXE
   
7. Generic.Malware.AI.DDS, C:\USERS\WANGL\DOWNLOADS\MIMICANNY\A3E36AC5.EXE
   
8. Spyware.PasswordStealer, C:\USERS\WANGL\DOWNLOADS\MIMICANNY\E7C64FCB.EXE
   
9. Trojan.MalPack.GS, C:\USERS\WANGL\DOWNLOADS\MIMICANNY\DF94ED52.EXE

复制代码

执行1x.

Tant

我不太确定我是否不慎运行了9d开头文件，是否可以给一个运行症状

Hibike

Tant 发表于 2024-2-27 16:18
我不太确定我是否不慎运行了9d开头文件，是否可以给一个运行症状

因为症状过于明显且需要用户介入操作，所以你应该没有运行。