【开放测试】卡饭病毒样本包 20241205 第204期

显示全部楼层 · 发表于 2024-12-5 14:08:17

本帖最后由斗极明于 2024-12-5 14:16 编辑

大蜘蛛来啦

显示全部楼层 · 发表于 2024-12-5 14:08:22

本帖最后由 shulun743 于 2024-12-5 14:20 编辑

显示全部楼层 · 发表于 2024-12-5 14:25:47

本帖最后由 ninjagaocc 于 2024-12-5 14:32 编辑

EIS

右键扫描53x

样本已提交

Scan Log
Version of detection engine: 30329 (20241204)
Date: 12/5/2024 Time: 2:19:11 PM
Scanned disks, folders and files: C:\Users\WDAGUtilityAccount\Desktop\infected20241205\5e323399670cfbbf8b20f593acbc0af0092b57900c96b4cb168d87ae189e8058.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\5f083ca5b9742c819267b8a21fa8cd4d07f672073ab38d08171768eb257438f3.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\6a6ae76f4c85591295446a9b3f49e90160c66a68b6cf1755ec5ada524d4ce156.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\6da015a4d07aaa513f90f351e52f6789345826bf255e5ea616b2bfded6ed4477.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\08bb2064928b623b63065b6319ffdfdd1fc54d2e41e05c0f3305f7aad77bb5ea.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\009da59cac8ae7ea574215a17ed9bd673d2506481ea60eb9d198f047523a3ee3.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\9de7d2fac9f329b5c3c66187ba1918fdd9a5ea11d7c6fb81aeb2100c74c41efe.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\9e209e099c46c9b103f651910aa17fe13e86b5a416c4fdefcdfb423262b96e18.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\12d325c2093d5b17b5bd4dfc95247028b72998f1e6a7f4a7743b15edf652ac96.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\21dc740db5d2a51343530deaf4859d811ef3dbecbb7bb8394a5fb6355e7a852c.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\25f7d18b1d208208bd89b7d897fd47360b110ea5af54bb24449738087bc94a8f.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\29e237eb2a31461d74a6abd7edd62f154b45755bb1bc3727129cf8c968f896f5.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\36e409c298efa59e2062e44b5cefb8b445c18f98c5524de0ace1ccac27c41010.hta;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\45d0587403ec5e0caba5212231c99e9fa65fa22b6f6a2bfe4cbbbc5406432f9d.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\53ac35bbf22527b26dcf2eb5f18fcc2c796403341c312896df7e5d1d5482f077.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\63c64dd8eeeffcad0b37e07d0341eda4d717f1cb48a144d9c5865a82894ea4aa.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\67fdc1ef00f05315e7321004d1c12ee825174bcf3701991a019b6bcd1432f3bc.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\080d798f7ebfb05b33ea075b9cb9ebdffce54256c6b14bc598f3c72c66b5876f.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\80b77c9eb6dcf6dc2a80196125fd25ed50438cdba14056a6651a394c3ca39b9c.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\97f566493576623a0ba7aac087a2e4c9ce1fd6debc67d0f7bad1b493dd614016.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\200baf4c343c7bee6e39a39097fda685d33ba525ee1d7045ccafb97b3a22d1a7.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\514deaa8dd99468f1d8e6c750641a00b8aadf4c2171b3c1fa984ec4e2e6cd097.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\3591cadebdbbaee9e75158d085435cf81ba8cdfc5c92b050275f9b490ee60998.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\4070e55f941e4431561aca690e297856c9623dabdfefe678de674a152a30b292.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\6181c4a677fd9fc0bd604c357d49f2058fb494013a0d57dba65027e1c87d0bac.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\6195e8c6874addbfced9a9448f7a50c64ffc61b0445dcdf30f4000b9e0b5515c.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\6828cf0f979875c0ee3c058e657548746bee3c2e1e953ee19f332daf79443bef.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\84290b02941b82b78d16c311e067ed8d6850d48c8fb4b0da4db5c874a85c209a.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\463161b9fadfc8e981a4d30534122db23b67b9f510638c9e16100a61edbe4fe5.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\675290c045ad958ec71e15c3134b41c1e4aa8be8475b4ad46b8d4a323936d750.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\6098007d86bda32edb4dbeac787639b623cca631501eba60d29042d5dfbee3ff.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\8166009b5c17c2921fd794aee8b172cbb0e12c73ab59eb291bd4dc8578d60d10.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\a3f1ba6a38de8f4eb4ee0f2a75292adee59c326277f958f2c5bb683c8c2fdeaa.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\a8bf08d5b6bf577f7db86e048b026ad9b0478e3f663dd019bc009cb60af256e2.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\a9e92705e50c5ee6795eb54011a4e1f68bdc6f15dd5effc25abf3cf7ea5c35fe.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\a78dce50cb1ee3f623f83b9912147bac5ec1253f6cab7751e64bff821b7f0e12.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\a430915694f63b9ebafe5220e55fa0bdef52d73248637b2cb8a745c4f07e904c.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\b3bab1d09ce9738f8bcf2c838086eaf628715df4fe99ef26c7c85b6e9b9a6443.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\b9fdce90b71b584cc85d90027dc206949a6d92cf92159112e2f96f5578fc78b7.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\b8222f6543fdf97ddfc5ea57d691b737d2f58e299dbc83c469470db5639f7e83.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\ba902cb0c39e03af373b9bd1dcdc0751687e31c1c77a42dbc4a7cf24bb71a1f5.vbs;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\C0D5A68CDC4DAC1DA830D118102E888E6C14419A7B77D560AC7E666EB1FA47D9.msi;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\c14a6e9a7632cd3936d74adeb656b0d3147ec5233cc01c59a1e4bbd0e4d49b41.doc;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\ccd13fcd2302d16a0fd2d9cc2653869ce0551d464145bf264f75163f03f874bc.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\d3b259368f52b5efd485e8076b7cf77465fc8fd111fe6e3bbc24c13e11386e00.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\d90dc3e94ebc7ec7a9d1464e7e91a3356d42607beb85d25b780c61faf6d67421.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\d8548efc442f16ef983ed49314e80d9262f386960ebb885bab1df100642b76a3.doc;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\d36378629ef5f51513c360fb37d9c9863ff48d7cbd75410d6c0e7246d0889761.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\dc71955c6330cec834ececf0776af74c62c9e0ea6278e25d0719c781000914a6.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\e1bdbadb3c03238af26c510775bb0aa63f7221dd43eb6f02a16332e091718779.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\eb433e78acbf8dc7dfd0817a7699ebef2b44c5de873aa3cb9e950d7df895d49a.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\ec773dae6b78ff776b96ddb7b540004255ca1727efbf249acc81e6ebbf407b04.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\ef15530111872f9b1ea3754da1569b5379e54359c200ee0e97a990589b46bec1.ps1;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\f8f6069c106b01977f2a7c1d222d212d57041ae76ad1709bc7d51e2316f32110.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\f28b658b9b6445c348eb8a683d0aab68f1dc1b7c9904cfae90df6733f4f344e9.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\fa4e60b4175f84bb50446300942beb9d25b35b39c033b02bd14045cf0f2f01f6.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\fca30a38fd163248962d8213d77d8f1eac9939e9b76510eff064337e75639910.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\fca91937909c106e58a877eee6642441349b07515ec97726c577e34d13be716d.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\fe5929f96b7aa3c446141156ec7456d560a7a8b576d55bc7fbbd6b4c1201cf8a.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\03cff4f7e0f271b874ce06fde79ab39dc9113c415f7ccba48404b3e6e0629571.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\03fe3055e0b12aa4a2186a0a89ea58dfdf6a071679ba3950202204b3e62e7c8d.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\4b8ae3b0c2394a0f4294fede9d66d6e6c833b3bae011ba301c2ed0cfb80f4107.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\4cb1d6194fc2f5954812406c9e0a05925e59d60028001f3a31630aa3ad21f6cb.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\4dcf1cc20990dace1f3e7c5a4b94ea7b823f90eb6de639b2b1b6494838f1cc62.exe;C:\Users\WDAGUtilityAccount\Desktop\infected20241205\5d1a9be77f64b034b967213e1b70377bba1cd012ff75c4f171fab1f67968551e.exe
User: B60116FB-1190-4\WDAGUtilityAccount
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\009da59cac8ae7ea574215a17ed9bd673d2506481ea60eb9d198f047523a3ee3.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\03cff4f7e0f271b874ce06fde79ab39dc9113c415f7ccba48404b3e6e0629571.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\080d798f7ebfb05b33ea075b9cb9ebdffce54256c6b14bc598f3c72c66b5876f.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\03fe3055e0b12aa4a2186a0a89ea58dfdf6a071679ba3950202204b3e62e7c8d.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\12d325c2093d5b17b5bd4dfc95247028b72998f1e6a7f4a7743b15edf652ac96.exe - a variant of MSIL/Spy.RedLine.A trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\3591cadebdbbaee9e75158d085435cf81ba8cdfc5c92b050275f9b490ee60998.exe - a variant of MSIL/Kryptik.AMTU trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\08bb2064928b623b63065b6319ffdfdd1fc54d2e41e05c0f3305f7aad77bb5ea.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\36e409c298efa59e2062e44b5cefb8b445c18f98c5524de0ace1ccac27c41010.hta - VBS/TrojanDownloader.Agent.ZKQ trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\21dc740db5d2a51343530deaf4859d811ef3dbecbb7bb8394a5fb6355e7a852c.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\4070e55f941e4431561aca690e297856c9623dabdfefe678de674a152a30b292.exe - a variant of Win32/Packed.Themida.HWC trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\29e237eb2a31461d74a6abd7edd62f154b45755bb1bc3727129cf8c968f896f5.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\514deaa8dd99468f1d8e6c750641a00b8aadf4c2171b3c1fa984ec4e2e6cd097.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\4dcf1cc20990dace1f3e7c5a4b94ea7b823f90eb6de639b2b1b6494838f1cc62.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\5e323399670cfbbf8b20f593acbc0af0092b57900c96b4cb168d87ae189e8058.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\5d1a9be77f64b034b967213e1b70377bba1cd012ff75c4f171fab1f67968551e.exe - a variant of Win32/Packed.Themida.HVO trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\6181c4a677fd9fc0bd604c357d49f2058fb494013a0d57dba65027e1c87d0bac.exe - a variant of MSIL/AsyncRAT.A trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\5f083ca5b9742c819267b8a21fa8cd4d07f672073ab38d08171768eb257438f3.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\6098007d86bda32edb4dbeac787639b623cca631501eba60d29042d5dfbee3ff.exe - a variant of Win32/Packed.Themida.HUA trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\6195e8c6874addbfced9a9448f7a50c64ffc61b0445dcdf30f4000b9e0b5515c.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\63c64dd8eeeffcad0b37e07d0341eda4d717f1cb48a144d9c5865a82894ea4aa.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\675290c045ad958ec71e15c3134b41c1e4aa8be8475b4ad46b8d4a323936d750.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\6828cf0f979875c0ee3c058e657548746bee3c2e1e953ee19f332daf79443bef.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\6a6ae76f4c85591295446a9b3f49e90160c66a68b6cf1755ec5ada524d4ce156.exe - a variant of Win32/Packed.Themida.HUA trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\6da015a4d07aaa513f90f351e52f6789345826bf255e5ea616b2bfded6ed4477.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\80b77c9eb6dcf6dc2a80196125fd25ed50438cdba14056a6651a394c3ca39b9c.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\84290b02941b82b78d16c311e067ed8d6850d48c8fb4b0da4db5c874a85c209a.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\C0D5A68CDC4DAC1DA830D118102E888E6C14419A7B77D560AC7E666EB1FA47D9.msi » MSI » Binary._ - a variant of Win64/Agent.EXB trojan - action selection postponed until scan completion
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\97f566493576623a0ba7aac087a2e4c9ce1fd6debc67d0f7bad1b493dd614016.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\9e209e099c46c9b103f651910aa17fe13e86b5a416c4fdefcdfb423262b96e18.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\a3f1ba6a38de8f4eb4ee0f2a75292adee59c326277f958f2c5bb683c8c2fdeaa.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\a430915694f63b9ebafe5220e55fa0bdef52d73248637b2cb8a745c4f07e904c.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\a78dce50cb1ee3f623f83b9912147bac5ec1253f6cab7751e64bff821b7f0e12.exe - a variant of Win32/Packed.Themida.HVO trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\a8bf08d5b6bf577f7db86e048b026ad9b0478e3f663dd019bc009cb60af256e2.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\a9e92705e50c5ee6795eb54011a4e1f68bdc6f15dd5effc25abf3cf7ea5c35fe.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\c14a6e9a7632cd3936d74adeb656b0d3147ec5233cc01c59a1e4bbd0e4d49b41.doc - a variant of VBA/TrojanDownloader.Agent.OCM trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\b9fdce90b71b584cc85d90027dc206949a6d92cf92159112e2f96f5578fc78b7.exe - a variant of MSIL/Kryptik.AMTU trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\b3bab1d09ce9738f8bcf2c838086eaf628715df4fe99ef26c7c85b6e9b9a6443.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\d8548efc442f16ef983ed49314e80d9262f386960ebb885bab1df100642b76a3.doc - Win32/Exploit.CVE-2017-11882.BOR trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\d3b259368f52b5efd485e8076b7cf77465fc8fd111fe6e3bbc24c13e11386e00.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\ccd13fcd2302d16a0fd2d9cc2653869ce0551d464145bf264f75163f03f874bc.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\d36378629ef5f51513c360fb37d9c9863ff48d7cbd75410d6c0e7246d0889761.exe - a variant of Win32/Packed.Themida.HVO trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\d90dc3e94ebc7ec7a9d1464e7e91a3356d42607beb85d25b780c61faf6d67421.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\dc71955c6330cec834ececf0776af74c62c9e0ea6278e25d0719c781000914a6.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\ec773dae6b78ff776b96ddb7b540004255ca1727efbf249acc81e6ebbf407b04.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\ef15530111872f9b1ea3754da1569b5379e54359c200ee0e97a990589b46bec1.ps1 - PowerShell/Kryptik.IU trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\eb433e78acbf8dc7dfd0817a7699ebef2b44c5de873aa3cb9e950d7df895d49a.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\e1bdbadb3c03238af26c510775bb0aa63f7221dd43eb6f02a16332e091718779.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\f28b658b9b6445c348eb8a683d0aab68f1dc1b7c9904cfae90df6733f4f344e9.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\fa4e60b4175f84bb50446300942beb9d25b35b39c033b02bd14045cf0f2f01f6.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\f8f6069c106b01977f2a7c1d222d212d57041ae76ad1709bc7d51e2316f32110.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\fca30a38fd163248962d8213d77d8f1eac9939e9b76510eff064337e75639910.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\fe5929f96b7aa3c446141156ec7456d560a7a8b576d55bc7fbbd6b4c1201cf8a.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\fca91937909c106e58a877eee6642441349b07515ec97726c577e34d13be716d.exe - a variant of Win32/Packed.Themida.HZB trojan - cleaned by deleting [1]
C:\Users\WDAGUtilityAccount\Desktop\infected20241205\C0D5A68CDC4DAC1DA830D118102E888E6C14419A7B77D560AC7E666EB1FA47D9.msi » MSI » Binary._ - a variant of Win64/Agent.EXB trojan - deleted
Number of scanned objects: 112
Number of detections: 53
Number of cleaned objects: 53
Time of completion: 2:22:34 PM Total scanning time: 203 sec (00:03:23)

Notes:
[1] Object has been deleted as it only contained the virus body.

显示全部楼层 · 发表于 2024-12-5 14:27:32

测试

显示全部楼层 · 发表于 2024-12-5 14:43:10

斗极明发表于 2024-12-5 14:08
大蜘蛛来啦

大蜘蛛几个啊，我记录统计信息

显示全部楼层 · 发表于 2024-12-5 15:29:40

本帖最后由 likexcm 于 2024-12-5 15:39 编辑

AnhLab (AIS)
36e409c298efa59e2062e44b5cefb8b445c18f98c5524de0ace1ccac27c41010双击拦截网站访问

显示全部楼层 · 发表于 2024-12-5 17:24:18

本帖最后由蛊钺龙彡于 2024-12-5 17:29 编辑

解压后自动杀的剩下三个.

然后手动扫描，这三个都Miss.

显示全部楼层 · 发表于 2024-12-5 17:26:17

试试

显示全部楼层 · 发表于 2024-12-5 17:29:10

shulun743 发表于 2024-12-5 14:08

请问这个瑞星快手版是免费的？

显示全部楼层 · 发表于 2024-12-5 17:48:16

本帖最后由 mmmaoo 于 2024-12-5 18:01 编辑

江民 61/65

[病毒样本] 【开放测试】卡饭病毒样本包 20241205 第204期

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源