【开放测试】卡饭病毒样本包 20241110 第188期

玛姆库特

（EIS+智量）实机，EIS扫描剩下4x，双击


de2bd3a7db0809c713e38c810f4f8f88d5f226e6ff8add272d432b913ff6911a.hta 智量秒

76e537de6a1d4f58f4ae3a6b74939ee42e86ab26e88a405bb43d7fa9f5adc92d.hta 智量秒
0d654e474a7339c9624011011ec6549a153b765acaede2b79c14bac3e2e85a57.msi 弹窗提示已安装

33e186a73110c8e1200d615ee10d3d5bb044074d83e2ed6ff6bd44d56bcc00f8.xlsx  测不了

Nocria

IKARUS - Emptied

1. [10.11.2024 17:24:49] On-demand scan started: "TemporaryScan"
   
2. [10.11.2024 17:24:49] Found, 0.16s, SigName: "GT.VB.Downloader", SigId: 5564224, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241110\0d654e474a7339c9624011011ec6549a153b765acaede2b79c14bac3e2e85a57.msi"
   
3. [10.11.2024 17:24:49] Found, 0.53s, SigName: "Trojan.MSIL.Disabler", SigId: 5166786, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241110\23a340023468da84ed257865c293c4bdad80c1386356c970d5a0017e3161062b.exe"
   
4. [10.11.2024 17:24:49] Found, 0.43s, SigName: "Trojan.VBA.Agent", SigId: 516508260, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241110\33e186a73110c8e1200d615ee10d3d5bb044074d83e2ed6ff6bd44d56bcc00f8.xlsx"
   
5. [10.11.2024 17:24:49] Found, 0.63s, SigName: "Trojan.Win32.Themida", SigId: 516647044, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241110\0332b311a0f4dce4c6792cc5764acb2342a163e9f90009db10c020183757894a.exe"
   
6. [10.11.2024 17:24:49] Found, 0.65s, SigName: "Trojan.MSIL.Disabler", SigId: 5166786, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241110\09dc8ecfb83082d8048e479535a3f24aa192dd1e2d6ef76539984245e167084a.exe"
   
7. [10.11.2024 17:24:49] Found, 0.13s, SigName: "Trojan.Win32.Themida", SigId: 516647038, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241110\4f1410b75e73186bf8c09c84f48e84458ee1c151e7f254263ba13df3fc2beaf9.exe"
   
8. [10.11.2024 17:24:49] Found, 0.08s, SigName: "Trojan.Win32.Redline", SigId: 4612119, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241110\62b91610b008d8516e521afa32b983139dcf5a97b6f9fe1a78db2ee583b2e77f.exe"
   
9. [10.11.2024 17:24:49] Found, 0.08s, SigName: "Trojan.Win32.Azorult", SigId: 5649624, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241110\713f2eb7941060df0e5c971c3d922ad00f10ee7b4f01ea8ba9abb284a96e3a78.exe"
   
10. [10.11.2024 17:24:49] Found, 0.14s, SigName: "Trojan.Win32.Themida", SigId: 516643884, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241110\7666247d4f7b2528f6263b053e50d67b0ece64ea5d7e10d20129b42a5d65e875.exe"
    
11. [10.11.2024 17:24:49] Found, 0.15s, SigName: "Trojan.Crypt", SigId: 5275398, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241110\89f3a73d6c30b3b7ce9b1b5c1c1aba1091983ca7e391b1f81e0eb1e9e7eac5bf.exe"
    
12. [10.11.2024 17:24:49] Found, 0.10s, SigName: "Trojan.Win32.Azorult", SigId: 5649624, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241110\8a9d0e2c45e9bb11038f5844381731f87f91619409e607d9b2ec6c090300e501.exe"
    
13. [10.11.2024 17:24:49] Found, 0.04s, SigName: "Trojan.LNK.Agent", SigId: 516160484, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241110\8ad3cd125e6243ed5f018d75a39007f542880582db374aefbea96e27088477a1.lnk"
    
14. [10.11.2024 17:24:50] Found, 0.11s, SigName: "Trojan.Win32.Themida", SigId: 516650925, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241110\9b5a19b5881182e956feb0acb69f8fa8dc79cad29296359694e8cf458148d2ab.exe"
    
15. [10.11.2024 17:24:50] Found, 0.34s, SigName: "Trojan.PS.Agent", SigId: 5622892, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241110\76e537de6a1d4f58f4ae3a6b74939ee42e86ab26e88a405bb43d7fa9f5adc92d.hta"
    
16. [10.11.2024 17:24:50] Found, 0.18s, SigName: "Trojan.Win32.Themida", SigId: 516647040, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241110\a3d2857d91ef3e9c99f6934ebdab64a5ba3184cbd59bef72f8e0e1b040e7fa4a.exe"
    
17. [10.11.2024 17:24:50] Found, 0.13s, SigName: "Trojan.BAT.Obfuscated", SigId: 516454250, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241110\b31cb4790de4804d7320c1f9bbfb1ce2dd4017432ad1c216397dbb452b58dc05.bat"
    
18. [10.11.2024 17:24:50] Found, 0.46s, SigName: "Trojan.Win64.Agent", SigId: 5606177, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241110\8e08e826c7105e2ae3a77422072ffc1e12c085db02949329f5379c5b4b24bd40.msi"
    
19. [10.11.2024 17:24:50] Found, 0.38s, SigName: "Trojan.Crypt", SigId: 5275398, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241110\ba7a38b7579f3f3bea7a9a1759f6d3930f933a8d5cb652322623b5808f6a7d88.exe"
    
20. [10.11.2024 17:24:50] Found, 0.39s, SigName: "Trojan.Win32.Themida", SigId: 516643887, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241110\bd86925da14f3ea50ec4c989333ab710e71e93beefda89014e849d8afc492ae0.exe"
    
21. [10.11.2024 17:24:50] Found, 0.22s, SigName: "Trojan.Win32.Themida", SigId: 516650924, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241110\c0eb6f76f6d0cc5be39d882b248522eb78a1c04f1d51ac7c761b1574677cb6bf.exe"
    
22. [10.11.2024 17:24:50] Found, 0.28s, SigName: "Trojan.Crypt", SigId: 5275398, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241110\c2494f884675bda9996b5a1a777c345e73392eb6c0d0ed2eccaaaea0514a912d.exe"
    
23. [10.11.2024 17:24:50] Found, 0.23s, SigName: "Trojan-Downloader.PowerShell.Agent", SigId: 516472423, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241110\d37a78095312ca41053fc3e723a2378007527002b4be07da60e87fa4fbbe0036.bat"
    
24. [10.11.2024 17:24:51] Found, 1.84s, SigName: "Trojan-Downloader.Win64.Agent", SigId: 5606022, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241110\b4abf31b5103244cb31fbbb13521c8905abef90b1e018bd366fe42626cebd6f9.exe"
    
25. [10.11.2024 17:24:51] Found, 1.37s, SigName: "Trojan.MSIL.Crypt", SigId: 4839274, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241110\d685e0af0d48b44da4b9147e5739d4e8e543dde6783e685b2302787ece25e342.exe"
    
26. [10.11.2024 17:24:51] Found, 1.20s, SigName: "Trojan.Win32.Themida", SigId: 516650922, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241110\daf5ec940fde5a1df665a7240a0e27d3c39da5b62d4d1935579158fa2a095b00.exe"
    
27. [10.11.2024 17:24:52] Found, 0.05s, SigName: "Trojan.VBS.Agent", SigId: 5072133, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241110\eac0fc1901075a05e87655aac968b3b8595c771747340ad4cc79d4b0f3acdddb.hta"
    
28. [10.11.2024 17:24:52] Found, 2.10s, SigName: "Trojan.PS.Agent", SigId: 5622892, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241110\de2bd3a7db0809c713e38c810f4f8f88d5f226e6ff8add272d432b913ff6911a.hta"
    
29. [10.11.2024 17:24:53] On-demand scan FINISHED: "TemporaryScan"
    
30. [10.11.2024 17:24:53] ----------------------------------------------------
    
31. [10.11.2024 17:24:53] Directories scanned: 1
    
32. [10.11.2024 17:24:53] Files scanned: 51
    
33. [10.11.2024 17:24:53] Virus found: 27
    
34. [10.11.2024 17:24:53] ----------------------------------------------------

复制代码

__________________________

EMSISOFT - 16/27

2712711

Elastic 17x

裂空我爱杰

eset+avast 清空。
avast 23X，eset清空剩下的。为了防止冲突，avast打开监控，eset写入监控。
解压avast清除17X
然后心血来潮测试了一下金山卫士4.7.

果然是停止更新了。
有一说一，eset兼容性是真的好，就没有冲突的用的是官网下载的18版本

ongarabazanade

Avast清空

瓦里哇卡

第二页被感染了？？？什么鬼

1073328164

迈克菲扫描 kill 24x

miss以下

Aing

1073328164 发表于 2024-11-11 14:30
迈克菲扫描 kill 24x

miss以下

双击试试啊

1073328164

Aing 发表于 2024-11-11 23:33
双击试试啊

办公室的实机电脑，双击不了一点，不然老板打死我

皮卡丘-

SEP miss 6x
卡巴斯基miss 2x