龟包 240318 22X

显示全部楼层 · 发表于 2024-3-18 23:16:20

t0kenzero 发表于 2024-3-18 22:49
cylance 21X
Miss TS-240318-15-MetaSploit-288b6e

那个是bat 私密马赛。。。

显示全部楼层 · 发表于 2024-3-18 23:16:56

384也7492374 发表于 2024-3-18 22:57
S1 静态19x 行为1x star补TS-240318-07-AgentTesla-256f2b.exe 余TS-240318-15-MetaSploit-288b6e无法运行
...

那个是bat 私密马赛。。。

显示全部楼层 · 发表于 2024-3-18 23:19:52

biue 发表于 2024-3-18 22:54

腾讯的老哥这么晚都还在测试，辛苦了

显示全部楼层 · 发表于 2024-3-19 09:44:40

本帖最后由 DisaPDB 于 2024-3-19 09:45 编辑

360(含自动机） 16x

分类准了（）

显示全部楼层 · 发表于 2024-3-19 09:45:46

ESET kill all

显示全部楼层 · 发表于 2024-3-19 10:00:19

Bitdefender exec+scan 22x

ATC疯狂连坐补刀

，文件夹都被删了。

显示全部楼层 · 发表于 2024-3-19 10:11:42

火绒6.0.0.9（打开启发式）
解压 KILL 14X
Scan KILL 6X
MISS 2X

显示全部楼层 · 发表于 2024-3-19 10:51:07

DisaPDB 发表于 2024-3-19 09:44
360(含自动机） 16x

显示全部楼层 · 发表于 2024-3-19 10:55:16

清空

显示全部楼层 · 发表于 2024-3-19 20:08:32

本帖最后由 tjsh 于 2024-3-19 20:11 编辑

河众21只 Miss TS-240318-15-MetaSploit-288b6e（.exe划掉）.bat

------------------------HEZHONG ANTIVIRUS SCAN LOG------------------------
开始于: 2024.3.19-20.7.21
病毒库版本: 522
软件版本: 6.27
引擎版本: 6.25.1580
记录病毒数量: 309994
------------------------HEZHONG ANTIVIRUS SCAN LOG------------------------
扫描文件：D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-01-Rhadamanthys-d28e1c.exe ......-> 发现了：HEUR:Trojan.Generic
扫描文件：D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-02-AgentTesla-60ef2a.exe ......-> 发现了：HEUR:Trojan.Generic
扫描文件：D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-03-AgentTesla-db66c0.exe ......-> 发现了：HEUR:Trojan.Generic
扫描文件：D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-04-AgentTesla-89d83b.exe ......-> 发现了：HEUR:Trojan.Generic
扫描文件：D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-05-AgentTesla-f70a66.exe ......-> 发现了：HEUR:Trojan.Generic
扫描文件：D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-06-AgentTesla-aca44b.exe ......-> 发现了：HEUR:Trojan.Generic
扫描文件：D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-07-AgentTesla-256f2b.exe ......-> 发现了：HEUR:Trojan.Generic
扫描文件：D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-08-AgentTesla-1f2693.exe ......-> 发现了：HEUR:Trojan.Generic
扫描文件：D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-09-AgentTesla-8db3b5.exe ......-> 发现了：HEUR:Trojan.Generic
扫描文件：D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-10-AgentTesla-8dc051.exe ......-> 发现了：HEUR:Trojan.Generic
扫描文件：D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-11-AgentTesla-67ea48.exe ......-> 发现了：HEUR:Trojan.Generic
扫描文件：D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-12-Eternity-f3dffa.exe ......-> 发现了：HEUR:Trojan.Generic
扫描文件：D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-13-Lumma-9d61cb.exe ......-> 发现了：DL.Trojan.a
扫描文件：D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-14-Lumma-d70c63.exe ......-> 发现了：HEUR:Trojan.Generic
扫描文件：D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-15-MetaSploit-288b6e.exe ......
扫描文件：D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-16-MetaSploit-7b85b1.exe ......-> 发现了：Trojan.Metasploit.c9773203
扫描文件：D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-17-Vidar-3a9a43.exe ......-> 发现了：DL.Trojan.a
扫描文件：D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-18-Vidar-ef9f94.exe ......-> 发现了：HEUR:Trojan.Generic
扫描文件：D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-19-ZGRAT-c9d54b.exe ......-> 发现了：HEUR:Trojan.Generic
扫描文件：D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-20-UnknownLoader-e16d7b.exe ......-> 发现了：HEUR:Trojan.Generic
扫描文件：D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-21-Redline-c8a026.exe ......-> 发现了：HEUR:Trojan.Generic
扫描文件：D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-22-UnknownRAT-ca0f5f.exe ......-> 发现了：HEUR:Trojan.Generic
扫描已经完成。耗时8.48秒钟，扫描22文件，扫描21个检测。

复制代码

吉祥物 8只

E:\kk\antivirus\clam>freshclam
ClamAV update process started at Tue Mar 19 20:04:28 2024
daily database available for update (local version: 27217, remote version: 27219)
Current database is 2 versions behind.
Downloading database patch # 27218...
Time: 5.9s, ETA: 0.0s [========================>] 14.10KiB/14.10KiB
Downloading database patch # 27219...
Time: 1.1s, ETA: 0.0s [========================>] 11.75KiB/11.75KiB
Testing database: 'E:\kk\antivirus\clam\database\tmp.50221e0dea\clamav-75d4b080cfb95f3c80b9e84441a6069e.tmp-daily.cld' ...
Database test passed.
daily.cld updated (version: 27219, sigs: 2055706, f-level: 90, builder: raynman)
main.cvd database is up-to-date (version: 62, sigs: 6647427, f-level: 90, builder: sigmgr)
bytecode.cld database is up-to-date (version: 335, sigs: 86, f-level: 90, builder: raynman)
E:\kk\antivirus\clam>clamscan D:\IDM\Compressed\6\TurtleSUSP-240318_2
Loading: 20s, ETA: 0s [========================>] 8.69M/8.69M sigs
Compiling: 4s, ETA: 0s [========================>] 41/41 tasks
D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-01-Rhadamanthys-d28e1c.exe: Win.Trojan.Misc-10023411-0 FOUND
D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-02-AgentTesla-60ef2a.exe: OK
D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-03-AgentTesla-db66c0.exe: OK
D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-04-AgentTesla-89d83b.exe: OK
D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-05-AgentTesla-f70a66.exe: Win.Packed.Pwsx-10023981-0 FOUND
D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-06-AgentTesla-aca44b.exe: Win.Packed.Pwsx-10023981-0 FOUND
D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-07-AgentTesla-256f2b.exe: OK
D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-08-AgentTesla-1f2693.exe: OK
D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-09-AgentTesla-8db3b5.exe: OK
D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-10-AgentTesla-8dc051.exe: OK
D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-11-AgentTesla-67ea48.exe: OK
D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-12-Eternity-f3dffa.exe: Win.Packed.Msilperseus-9956591-0 FOUND
D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-13-Lumma-9d61cb.exe: Win.Packer.pkr_ce1a-9980177-0 FOUND
D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-14-Lumma-d70c63.exe: Win.Packed.Zusy-10023527-0 FOUND
D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-15-MetaSploit-288b6e.exe: OK
D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-16-MetaSploit-7b85b1.exe: OK
D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-17-Vidar-3a9a43.exe: OK
D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-18-Vidar-ef9f94.exe: Win.Packed.Zusy-10023527-0 FOUND
D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-19-ZGRAT-c9d54b.exe: OK
D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-20-UnknownLoader-e16d7b.exe: OK
D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-21-Redline-c8a026.exe: Win.Packed.Zusy-10023527-0 FOUND
D:\IDM\Compressed\6\TurtleSUSP-240318_2\TS-240318-22-UnknownRAT-ca0f5f.exe: OK
----------- SCAN SUMMARY -----------
Known viruses: 8687559
Engine version: 1.3.0
Scanned directories: 1
Scanned files: 22
Infected files: 8
Data scanned: 48.10 MB
Data read: 35.14 MB (ratio 1.37:1)
Time: 61.129 sec (1 m 1 s)
Start Date: 2024:03:19 20:07:09
End Date: 2024:03:19 20:08:10

复制代码

[病毒样本] 龟包 240318 22X

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

评分

本帖子中包含更多资源