【开放测试】卡饭病毒样本包 20241115 第189期

ninjagaocc

lajizandian 发表于 2024-11-15 10:56
istore

Times out!

夜未眠0601

费尔智能杀毒8 [8.1.7.6865]
测试



解压缩时候报毒



解压缩后扫描文件

2712711

360 miss 2x
avast miss 1x
avira miss 2x
EIS miss 1x
kav miss 3x
WD miss 14x
火绒 miss 9x 高级启发
elasitc miss 2x
drweb miss 16x
NPE miss 17x

ninjagaocc

安博士
剩余5x

King、暮光

1073328164 发表于 2024-11-15 11:43
北信源金甲防线！一个没杀出来，太优秀了我去，就这破玩意单位要求我们必须安装，你不如让我裸奔算了 ...

锁库1年！

ジ蓅暒划过づ

ESET 机学开具有攻击性扫描25X剩余1X。。奇安信扫描器引擎全开扫描22X剩余4X。。

xmt12

EIS 24/26（见图
360 24/26（见图
QAX 22/26（见图

西瓜杀毒 21/26（见图
自制 24/26

1. XAS扫描日志
   
2. 扫描开始时间:2024/11/15 17:18:38
   
3. 
   
4. 主程序版本:3.0.3 病毒库版本:17718(2024.11.14)
   
5. 特征库个数：17344
   
6. 黑md5个数：2332392
   
7. 白md5个数：150459
   
8. 
   
9. 危险文件:
   
10. ---------
    
11. 
    
12. D:/用户文件/2/桌面/infected20241115\027e381e30f3d14cd06742b585b5d2c6ffb80a9cf4d2283b801de979639c0b23.exe[特征引擎][Trojan.Generic!id=BFE4957E]
    
13. D:/用户文件/2/桌面/infected20241115\0a1608b4aa718e709e8238a423ce9000b19082bad96eff1778172cd5765c86f9.exe[XAS启发引擎][HEUR/Malicious(score=345)]
    
14. D:/用户文件/2/桌面/infected20241115\0b863912f72efc4e514d3165e6aec9e9ecfd9450821dfa56a1fd545dba5960f6.exe[ANK云引擎][Trojan(0.9998)]
    
15. D:/用户文件/2/桌面/infected20241115\3007343e1e9997e84c96fa78c6552f4377ba965ea6c87aff78db61feb5e4cb6f.exe[特征引擎][Trojan.Generic!id=BFE4957E]
    
16. D:/用户文件/2/桌面/infected20241115\383933ac4e62ba3e68f5f8dc90b8904f943138c17e0313967f9d91ca5a3bd545.exe[特征引擎][Trojan.Generic!id=BFE4957E]
    
17. D:/用户文件/2/桌面/infected20241115\44ca1daf2b2749aef8d133fa3216da9437292e4d51f78f9bc43bd07dd591a8b8.exe[特征引擎][Trojan.Generic!id=BFE4957E]
    
18. D:/用户文件/2/桌面/infected20241115\47cad489ed7b741695a2d2a3c14350078867de45368c94188343c9fb4d79980f.exe[ANK云引擎][Trojan(0.9964)]
    
19. D:/用户文件/2/桌面/infected20241115\4c2eb948eecb946e02d795c759c9a597ee72707295ed433cc27b71f242ca24cd.exe[特征引擎][Trojan.Generic!id=BFE4957E]
    
20. D:/用户文件/2/桌面/infected20241115\523c9f1743edbcfebdfc0f94a702ad730cf194a55ab10d519f0e9d85a07b3db5.exe[特征引擎][Trojan.Generic!id=BFE4957E]
    
21. D:/用户文件/2/桌面/infected20241115\5d6fb905a1342f8918c920673dca7770a5745600b21327de07b27c5eae5ea81e.exe[ANK云引擎][Trojan(0.999)]
    
22. D:/用户文件/2/桌面/infected20241115\6be7942114b5247d6f9d21eb732e3b19e4d58e3c59108587ccb77836ef119872.exe[特征引擎][Trojan.Generic!id=BFE4957E]
    
23. D:/用户文件/2/桌面/infected20241115\72befaf78a3dbba7713301082aec374017ac8b968777be10347ce749ce65835d.exe[特征引擎][Trojan.Generic!id=92849837]
    
24. D:/用户文件/2/桌面/infected20241115\72cb2a034fa8d61f8dd4f70ff4ee2fcd5915073accc10f544674a52c104f5238.bat[文档查杀引擎][virus.2]
    
25. D:/用户文件/2/桌面/infected20241115\8b80ca16e9aa37aa50ee75e31a40349eb9611c38548cdd81c4687bf1fdc3e8df.exe[特征引擎][Trojan.Generic!id=BFE4957E]
    
26. D:/用户文件/2/桌面/infected20241115\8c0892dfad6fa48e3dd07e90835fdd1c31bbf93cd2eb767ebebdbe5405b40f07.exe[特征引擎][Trojan.Generic!id=BFE4957E]
    
27. D:/用户文件/2/桌面/infected20241115\9a8e94ef18554015c162405660534aacb70cd374ded88a9b9125235dc5b11274.exe[特征引擎][Trojan.Generic!id=BFE4957E]
    
28. D:/用户文件/2/桌面/infected20241115\9c88b468e8edb17a274761341c23986a07f1a556b1ffff42dff5fd9728a8fd03.exe[特征引擎][Trojan.Generic!id=BFE4957E]
    
29. D:/用户文件/2/桌面/infected20241115\c0a75a13077750f55d6bb3c6f927f4a3fedc3c3421af1f967ccbc4062b982f6a.exe[特征引擎][Trojan.Generic!id=71D81FBE]
    
30. D:/用户文件/2/桌面/infected20241115\d131b451c86e3e3f98653993bbe3026a261ea007c305bd3519100e22f90a58b1.exe[特征引擎][Trojan.Generic!id=BFE4957E]
    
31. D:/用户文件/2/桌面/infected20241115\d419402e32842d0b282e41380100785b78c73b67b1ba73e27e52a038f17d90dd.exe[特征引擎][Trojan.Generic!id=BFE4957E]
    
32. D:/用户文件/2/桌面/infected20241115\e2854ae90acb367c2a8ff68c6966e36da6935d3c2ae0215d9696a9f331b3fbd5.exe[特征引擎][Trojan.Generic!id=BFE4957E]
    
33. D:/用户文件/2/桌面/infected20241115\e3583a17b76d808f772ad6f32ecb468edda7fce9a9ecbeb96b8c92bb0dfcf03c.exe[特征引擎][Trojan.Generic!id=BFE4957E]
    
34. D:/用户文件/2/桌面/infected20241115\e5cb387eca38166bef926d404fdd7dfbd2aebcaf3766adc7cb7582cbccfad612.exe[ANK云引擎][Trojan(0.9672)]
    
35. D:/用户文件/2/桌面/infected20241115\ffe7b7a94481baf07af71357c2eb9fe4da46168b4e050e649ab5a7fe8631568a.exe[XAS启发引擎][HEUR/Malicious(score=345)]
    
36. 
    
37. 总文件数:26
    
38. 病毒文件个数:24
    
39. 查杀率:92.31%
    
40. 扫描结束时间:2024/11/15 17:18:48

复制代码

15757454

安天杀毒 24X

Nocria

IKARUS - Emptied

1. [15.11.2024 20:04:49] On-demand scan started: "TemporaryScan"
   
2. [15.11.2024 20:04:50] Found, 0.20s, SigName: "Trojan.Win64.Krypt", SigId: 517121952, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241115\0a1608b4aa718e709e8238a423ce9000b19082bad96eff1778172cd5765c86f9.exe"
   
3. [15.11.2024 20:04:50] Found, 0.21s, SigName: "Trojan.LNK.Agent", SigId: 517026431, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241115\0d6049a23bc24a385997c0514ffc22a9c0c9ba681d1cac2f6cb5013bafeefe4f.lnk"
   
4. [15.11.2024 20:04:50] Found, 0.22s, SigName: "Trojan.Crypt", SigId: 5275398, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241115\027e381e30f3d14cd06742b585b5d2c6ffb80a9cf4d2283b801de979639c0b23.exe"
   
5. [15.11.2024 20:04:50] Found, 0.36s, SigName: "Trojan.Crypt", SigId: 5275398, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241115\3007343e1e9997e84c96fa78c6552f4377ba965ea6c87aff78db61feb5e4cb6f.exe"
   
6. [15.11.2024 20:04:50] Found, 0.60s, SigName: "Trojan.Win32", SigId: 5284621, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241115\0b863912f72efc4e514d3165e6aec9e9ecfd9450821dfa56a1fd545dba5960f6.exe"
   
7. [15.11.2024 20:04:50] Found, 0.14s, SigName: "Trojan.NSIS.Runner", SigId: 5618676, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241115\47cad489ed7b741695a2d2a3c14350078867de45368c94188343c9fb4d79980f.exe"
   
8. [15.11.2024 20:04:50] Found, 0.49s, SigName: "Trojan.Win32.LummaStealer", SigId: 5673241, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241115\44ca1daf2b2749aef8d133fa3216da9437292e4d51f78f9bc43bd07dd591a8b8.exe"
   
9. [15.11.2024 20:04:50] Found, 0.18s, SigName: "Trojan.Win32.Themida", SigId: 517121950, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241115\4c2eb948eecb946e02d795c759c9a597ee72707295ed433cc27b71f242ca24cd.exe"
   
10. [15.11.2024 20:04:50] Found, 0.13s, SigName: "Trojan.Win32.Themida", SigId: 517126045, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241115\523c9f1743edbcfebdfc0f94a702ad730cf194a55ab10d519f0e9d85a07b3db5.exe"
    
11. [15.11.2024 20:04:50] Found, 0.19s, SigName: "Trojan.Win32.Crypt", SigId: 517099329, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241115\5d6fb905a1342f8918c920673dca7770a5745600b21327de07b27c5eae5ea81e.exe"
    
12. [15.11.2024 20:04:50] Found, 0.14s, SigName: "Trojan.Win32.Themida", SigId: 517126589, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241115\6be7942114b5247d6f9d21eb732e3b19e4d58e3c59108587ccb77836ef119872.exe"
    
13. [15.11.2024 20:04:50] Found, 0.09s, SigName: "Trojan-Downloader.MSIL.Agent", SigId: 517126032, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241115\72befaf78a3dbba7713301082aec374017ac8b968777be10347ce749ce65835d.exe"
    
14. [15.11.2024 20:04:50] Found, 0.20s, SigName: "Trojan.Batch", SigId: 5623583, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241115\72cb2a034fa8d61f8dd4f70ff4ee2fcd5915073accc10f544674a52c104f5238.bat"
    
15. [15.11.2024 20:04:51] Found, 0.28s, SigName: "Trojan.Crypt", SigId: 5275398, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241115\8b80ca16e9aa37aa50ee75e31a40349eb9611c38548cdd81c4687bf1fdc3e8df.exe"
    
16. [15.11.2024 20:04:51] Found, 0.18s, SigName: "Trojan.Win32.Themida", SigId: 517121505, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241115\8c0892dfad6fa48e3dd07e90835fdd1c31bbf93cd2eb767ebebdbe5405b40f07.exe"
    
17. [15.11.2024 20:04:51] Found, 0.33s, SigName: "Trojan.Crypt", SigId: 5275398, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241115\9a8e94ef18554015c162405660534aacb70cd374ded88a9b9125235dc5b11274.exe"
    
18. [15.11.2024 20:04:51] Found, 1.42s, SigName: "Trojan.Crypt", SigId: 5294356, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241115\383933ac4e62ba3e68f5f8dc90b8904f943138c17e0313967f9d91ca5a3bd545.exe"
    
19. [15.11.2024 20:04:51] Found, 0.15s, SigName: "Trojan.Win32.AutoitInject", SigId: 517126586, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241115\c0a75a13077750f55d6bb3c6f927f4a3fedc3c3421af1f967ccbc4062b982f6a.exe"
    
20. [15.11.2024 20:04:51] Found, 0.18s, SigName: "Trojan.Crypt", SigId: 5275398, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241115\d131b451c86e3e3f98653993bbe3026a261ea007c305bd3519100e22f90a58b1.exe"
    
21. [15.11.2024 20:04:52] Found, 1.29s, SigName: "Trojan.Win32.LummaStealer", SigId: 5670805, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241115\9c88b468e8edb17a274761341c23986a07f1a556b1ffff42dff5fd9728a8fd03.exe"
    
22. [15.11.2024 20:04:52] Found, 1.01s, SigName: "Trojan.Win32.Themida", SigId: 517121506, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241115\e2854ae90acb367c2a8ff68c6966e36da6935d3c2ae0215d9696a9f331b3fbd5.exe"
    
23. [15.11.2024 20:04:52] Found, 1.17s, SigName: "Trojan.Win32.Themida", SigId: 3858507, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241115\d419402e32842d0b282e41380100785b78c73b67b1ba73e27e52a038f17d90dd.exe"
    
24. [15.11.2024 20:04:52] Found, 0.04s, SigName: "Trojan-Spy.Win32.LummaStealer", SigId: 5628489, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241115\e5cb387eca38166bef926d404fdd7dfbd2aebcaf3766adc7cb7582cbccfad612.exe"
    
25. [15.11.2024 20:04:52] Found, 0.31s, SigName: "Trojan.Win32.Themida", SigId: 517126459, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241115\e3583a17b76d808f772ad6f32ecb468edda7fce9a9ecbeb96b8c92bb0dfcf03c.exe"
    
26. [15.11.2024 20:04:52] Found, 1.97s, SigName: "Trojan-Downloader.Win64.Agent", SigId: 5606022, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241115\8a955633b93b27bc6c0751064a6ad5d6c0bf7b096d72779ced1a1a73b74cec31.exe"
    
27. [15.11.2024 20:04:52] Found, 0.09s, SigName: "Trojan.Win64.Krypt", SigId: 517121507, Type: "VIRUS", File: "C:\Users\promi\Desktop\infected20241115\ffe7b7a94481baf07af71357c2eb9fe4da46168b4e050e649ab5a7fe8631568a.exe"
    
28. [15.11.2024 20:04:52] On-demand scan FINISHED: "TemporaryScan"
    
29. [15.11.2024 20:04:52] ----------------------------------------------------
    
30. [15.11.2024 20:04:52] Directories scanned: 1
    
31. [15.11.2024 20:04:52] Files scanned: 52
    
32. [15.11.2024 20:04:52] Virus found: 26
    
33. [15.11.2024 20:04:52] ----------------------------------------------------

复制代码

___________________________________

EMSISOFT - (23+1)/26

PhozeAMTB

WD 病毒库1.421.307.0 第二次测试
kill all
结果（手打，如有错误还请见谅）
-----------------------------------------------------------------
Trojan:Win32/Vidar.CBB!MTB
  file:C:\Users\S1876\Desktop\新建文件夹\5d6fb905a1342f8918c920673dca7770a5745600b21327de07b27c5eae5ea81e.exe
Trojan:Win32/AutoitInject.HNA!MTB
  file:C:\Users\S1876\Desktop\新建文件夹\c0a75a13077750f55d6bb3c6f927f4a3fedc3c3421af1f967ccbc4062b982f6a.exe
Trojan:Win32/AgentTesla!ml
  file:C:\Users\S1876\Desktop\新建文件夹\72befaf78a3dbba7713301082aec374017ac8b968777be10347ce749ce65835d.exe
Trojan:Win32/Leonem
  file:C:\Users\S1876\Desktop\新建文件夹\0d6049a23bc24a385997c0514ffc22a9c0c9ba681d1cac2f6cb5013bafeefe4f.lnk
TrojanDownloader:BAT/Malgent!MSR
  file:C:\Users\S1876\Desktop\新建文件夹\72cb2a034fa8d61f8dd4f70ff4ee2fcd5915073accc10f544674a52c104f5238.bat
Backdoor:Win32/Bladabind!ml
  file:C:\Users\S1876\Desktop\新建文件夹\3007343e1e9997e84c96fa78c6552f4377ba965ea6c87aff78db61feb5e4cb6f.exe
  file:C:\Users\S1876\Desktop\新建文件夹\8b80ca16e9aa37aa50ee75e31a40349eb9611c38548cdd81c4687bf1fdc3e8df.exe
  file:C:\Users\S1876\Desktop\新建文件夹\d131b451c86e3e3f98653993bbe3026a261ea007c305bd3519100e22f90a58b1.exe
Trojan:Win32/Wacatac.H!ml
  file:C:\Users\S1876\Desktop\新建文件夹\0a1608b4aa718e709e8238a423ce9000b19082bad96eff1778172cd5765c86f9.exe
  file:C:\Users\S1876\Desktop\新建文件夹\0b863912f72efc4e514d3165e6aec9e9ecfd9450821dfa56a1fd545dba5960f6.exe
  file:C:\Users\S1876\Desktop\新建文件夹\47cad489ed7b741695a2d2a3c14350078867de45368c94188343c9fb4d79980f.exe
  file:C:\Users\S1876\Desktop\新建文件夹\8a955633b93b27bc6c0751064a6ad5d6c0bf7b096d72779ced1a1a73b74cec31.exe
  file:C:\Users\S1876\Desktop\新建文件夹\e5cb387eca38166bef926d404fdd7dfbd2aebcaf3766adc7cb7582cbccfad612.exe
  file:C:\Users\S1876\Desktop\新建文件夹\ffe7b7a94481baf07af71357c2eb9fe4da46168b4e050e649ab5a7fe8631568a.exe
Trojan:Win32/LummaStealer.RPI!MTB
  file:C:\Users\S1876\Desktop\新建文件夹\383933ac4e62ba3e68f5f8dc90b8904f943138c17e0313967f9d91ca5a3bd545.exe
  file:C:\Users\S1876\Desktop\新建文件夹\44ca1daf2b2749aef8d133fa3216da9437292e4d51f78f9bc43bd07dd591a8b8.exe
  file:C:\Users\S1876\Desktop\新建文件夹\4c2eb948eecb946e02d795c759c9a597ee72707295ed433cc27b71f242ca24cd.exe
  file:C:\Users\S1876\Desktop\新建文件夹\523c9f1743edbcfebdfc0f94a702ad730cf194a55ab10d519f0e9d85a07b3db5.exe
  file:C:\Users\S1876\Desktop\新建文件夹\6be7942114b5247d6f9d21eb732e3b19e4d58e3c59108587ccb77836ef119872.exe
  file:C:\Users\S1876\Desktop\新建文件夹\8c0892dfad6fa48e3dd07e90835fdd1c31bbf93cd2eb767ebebdbe5405b40f07.exe
  file:C:\Users\S1876\Desktop\新建文件夹\9c88b468e8edb17a274761341c23986a07f1a556b1ffff42dff5fd9728a8fd03.exe
  file:C:\Users\S1876\Desktop\新建文件夹\d419402e32842d0b282e41380100785b78c73b67b1ba73e27e52a038f17d90dd.exe
  file:C:\Users\S1876\Desktop\新建文件夹\e2854ae90acb367c2a8ff68c6966e36da6935d3c2ae0215d9696a9f331b3fbd5.exe
  file:C:\Users\S1876\Desktop\新建文件夹\e3583a17b76d808f772ad6f32ecb468edda7fce9a9ecbeb96b8c92bb0dfcf03c.exe
Trojan:MSIL/Disabler!rfn
  file:C:\Users\S1876\Desktop\新建文件夹\027e381e30f3d14cd06742b585b5d2c6ffb80a9cf4d2283b801de979639c0b23.exe
  file:C:\Users\S1876\Desktop\新建文件夹\9a8e94ef18554015c162405660534aacb70cd374ded88a9b9125235dc5b11274.exe