Samples x14

显示全部楼层 · 发表于 2024-2-27 17:02:01

BD扫描 miss1x

显示全部楼层 · 发表于 2024-2-27 18:17:11

智量 9/14 其中2x报错（win7缺运行环境）

Time FilePath VirusName
2024-02-27 18:14:35 C:\Users\Administrator\Desktop\Mimicanny\eee9e567.exe Heur.ML.PE.A
2024-02-27 18:14:09 C:\Users\Administrator\Desktop\Mimicanny\d9c65102.exe WIBD:HEUR.ShellCode.E00
2024-02-27 18:13:17 C:\Windows\SysWOW64\IgSZOtYxUW.exe WIBD:HEUR.Trojan.FB
2024-02-27 18:13:15 C:\Users\Administrator\Desktop\Mimicanny\a3e36ac5.exe WIBD:HEUR.Trojan.FB
2024-02-27 18:12:50 C:\Users\Administrator\Desktop\Mimicanny\29ca3b1a.exe WIBD:HEUR.ShellCode.H
2024-02-27 18:12:48 C:\Users\Administrator\Desktop\Mimicanny\29ca3b1a.exe WIBD:HEUR.ShellCode.H
2024-02-27 18:12:44 C:\ProgramData\scandep\{oh488dG1P2gA3W6M9E41q}\log.dll WIBD:HEUR.ShellCode.H01
2024-02-27 18:10:35 C:\Users\Administrator\AppData\Local\Temp\7ZipSfx.000\Thread 威胁回滚(隔离)
2024-02-27 18:10:35 C:\Users\Administrator\AppData\Local\Temp\7ZipSfx.000\Painful 威胁回滚(隔离)
2024-02-27 18:10:35 C:\Users\Administrator\AppData\Local\Temp\7ZipSfx.000\Informed 威胁回滚(隔离)
2024-02-27 18:10:35 C:\Users\Administrator\AppData\Local\Temp\7ZipSfx.000\Incentive 威胁回滚(隔离)
2024-02-27 18:10:35 C:\Users\Administrator\AppData\Local\Temp\7ZipSfx.000\Getting 威胁回滚(隔离)
2024-02-27 18:10:35 C:\Users\Administrator\AppData\Local\Temp\7ZipSfx.000\Depends 威胁回滚(隔离)
2024-02-27 18:10:35 C:\Users\Administrator\AppData\Local\Temp\7ZipSfx.000\Collectibles 威胁回滚(隔离)
2024-02-27 18:10:31 C:\Users\Administrator\Desktop\Mimicanny\7d69f17f.exe WIBD:HEUR.MalAutoit.B
2024-02-26 22:40:07 C:\ProgramData\McAfeeTmpInstall_Common\x86\mfeavfk.sys Heur.ML.PE.B
2024-02-26 22:40:02 C:\ProgramData\McAfeeTmpInstall_Common\x86\mfeaack.sys Heur.ML.PE.B
2024-02-26 18:19:20 C:\Users\Administrator\Desktop\echo.exe WIBD:HEUR.ShellCode.H00

复制代码

Time FilePath VirusName
2024-02-27 18:09:00 C:\Users\Administrator\Desktop\Mimicanny\fff4fa76.exe Heur.ML.PE.C
2024-02-27 18:08:59 C:\Users\Administrator\Desktop\Mimicanny\df94ed52.exe Heur.ML.PE.A
2024-02-27 18:08:58 C:\Users\Administrator\Desktop\Mimicanny\cdb2f689.exe Trojan.Generic
2024-02-27 18:08:54 C:\Users\Administrator\Desktop\Mimicanny\6f597f09.exe Heur.ML.PE.A
2024-02-27 12:02:30 C:\Users\Administrator\Desktop\fty.exe Heur.ML.PE.A
2024-02-27 10:03:04 C:\Users\Administrator\Desktop\价格表.exe Heur.ML.PE.A
2024-02-27 09:51:36 C:\Users\Administrator\Desktop\价格表.exe Heur.ML.PE.A
2024-02-27 07:09:20 C:\Users\Administrator\Desktop\TurtleSUSP-240226\TS-240226-16-AutoIt-a22372.exe Heur.ML.PE.A
2024-02-27 07:09:19 C:\Users\Administrator\Desktop\TurtleSUSP-240226\TS-240226-13-Lumma-0aa2fa.exe Heur.ML.PE.C
2024-02-27 07:09:19 C:\Users\Administrator\Desktop\TurtleSUSP-240226\TS-240226-11-Vidar-8bafcae.exe Heur.ML.PE.A
2024-02-27 07:09:18 C:\Users\Administrator\Desktop\TurtleSUSP-240226\TS-240226-09-AgentTesla-bd0184.exe Heur.ML.PE.C
2024-02-27 07:09:18 C:\Users\Administrator\Desktop\TurtleSUSP-240226\TS-240226-07-AgentTesla-d28a90.exe Heur.ML.PE.C
2024-02-27 07:09:17 C:\Users\Administrator\Desktop\TurtleSUSP-240226\TS-240226-05-RisePro-e03a54.exe Heur.ML.PE.B
2024-02-27 07:09:17 C:\Users\Administrator\Desktop\TurtleSUSP-240226\TS-240226-04-UnknownStealer-6e0515.exe Heur.ML.PE.A

复制代码

显示全部楼层 · 发表于 2024-2-27 18:34:38

显示全部楼层 · 发表于 2024-2-27 19:09:11

Hibike 发表于 2024-2-27 16:40
因为症状过于明显且需要用户介入操作，所以你应该没有运行。

我连UAC都没弹（

显示全部楼层 · 发表于 2024-2-27 21:58:57

IKARUS - 11/14

显示全部楼层 · 发表于 2024-2-27 22:07:25

Nocria 发表于 2024-2-27 21:58
IKARUS - 11/14

这个三年多少钱

显示全部楼层 · 发表于 2024-2-27 22:59:39

显示全部楼层 · 发表于 2024-2-28 11:02:17

清空

显示全部楼层 · 发表于 2024-2-28 14:00:31

9d6034b2
Ikarus解除误报

The false positive was removed and should not occur any more after our next database update.

@anthonyqian

显示全部楼层 · 发表于 2024-2-28 14:27:28

Eset小粉絲发表于 2024-2-28 14:00
9d6034b2
Ikarus解除误报

Ikarus不是只要提交就大概率说解除误报的嘛

你再提交样本就拉黑

[病毒样本] Samples x14

本帖子中包含更多资源

本帖子中包含更多资源

评分

本帖子中包含更多资源

本帖子中包含更多资源

浏览过的版块