Avert Labs驚人的分析報告!!

显示全部楼层 · 发表于 2008-5-28 15:46:24

前幾天我寄了一封信給Avert Labs,請他們某些樣本分析速度快一點,今天剛收信,發現他們已經回覆我分析報告~~
以前從來沒收過喔~繼續等待下幾包樣本的分析結果~~
以下是回信內容~~感覺上McAfee最近真的有要提升偵測率的決心了~
-----
A.V.E.R.T. Sample Analysis
Issue Number: 4616467 4647264 4648417 4648421 4650770 4650775 4650778 4650838
Virus Research Engineer: Haowei Ren

Thank you for submiting these samples to us .
We already add the detection for the following files , and keep processing the other files .

4616467\25.int ... Found the Generic.dx trojan !!!
4616467\26.int ... Found trojan or variant Swizzor.gen.b !!!
4616467\27.int ... Found trojan or variant Swizzor.gen.b !!!
4616467\28.int ... Found the Swizzor.gen trojan !!!
4648417\1265.exe ... Found the Generic.dx trojan !!!
4648417\2008-5-20__28500.exe ... Found the Generic.dx trojan !!!
4648417\2008-5-20__684D6.exe ... Found trojan or variant New Malware.aj !!!
4648417\2008-5-20__6ED65.exe ... Found trojan or variant New Malware.aj !!!
4648417\2008-5-20__A0643.exe ... Found the PWS-Mmorpg.gen trojan !!!
4648417\2008-5-20__EF952.exe\2008-5-20__EF952.exe\00005294.EXE ... Found the Generic PWS.y trojan !!!
4648417\2008-5-20__EF952.exe\2008-5-20__EF952.exe\00002200.EXE ... Found the PWS-OnlineGames.s trojan !!!
4648417\csrss.exe ... Found the Generic.dx trojan !!!
4648417\ff.exe ... Found the Generic.dx trojan !!!
4648417\HavDrv32.sys ... Found the PWS-Mmorpg.gen trojan !!!
4648417\loveyou.exe ... Found the Generic.dx trojan !!!
4648417\ma.exe ... Found the Generic BackDoor trojan !!!
4648417\s.exe ... Found the Downloader.gen.a trojan !!!
4648417\upsphost.dll ... Found the Generic.dx trojan !!!
4648421\gnowmebk.dll ... Found the Generic.dx trojan !!!
4648421\nyps4.exe ... Found the Vundo trojan !!!
4648421\yayxwVNF.dll ... Found the Vundo trojan !!!
4650770\1.exe\1.exe ... Found the BackDoor-CKB trojan !!!
4650770\11.exe ... Found the Generic.dx trojan !!!
4650770\21.exe ... Found trojan or variant New Malware.bl !!!
4650770\a0.exe ... Found the Generic MSVC.f trojan !!!
4650770\a29.exe\a29.exe\00002200.EXE ... Found the PWS-OnlineGames.a trojan !!!
4650770\a34.exe\a34.exe\00004bfc.EXE ... Found the Generic PWS.y trojan !!!
4650770\a34.exe\a34.exe\00002200.EXE ... Found the PWS-OnlineGames.s trojan !!!
4650770\a36.exe ... Found the Generic MSVC.f trojan !!!
4650770\aa1.exe ... Found the Generic.dx trojan !!!
4650770\bless.exe ... Found the Generic.dx trojan !!!
4650770\cvshost.exe ... Found the Generic.dx trojan !!!
4650770\ekknmmnt.exe ... Found the Generic.dx trojan !!!
4650770\elsq.exe ... Found the Generic.dx trojan !!!
4650770\gnowmebk.dll ... Found the Generic.dx trojan !!!
4650775\msprint.exe ... Found the Generic Dropper trojan !!!
4650775\s.exe ... Found the Generic.dx trojan !!!
4650775\storm1iv.exe ... Found trojan or variant New Malware.d !!!
4650775\vip.EXE ... Found the BackDoor-AWQ.b trojan !!!
4650778\winlogon.exe ... Found the Generic.dx trojan !!!
4650778\XXXX.exe ... Found the Generic PWS.y trojan !!!
4650838\125.exe ... Found the PWS-Mmorpg.gen trojan !!!
4650838\484.exe ... Found the PWS-Mmorpg.gen trojan !!!
4650838\aa1.exe ... Found the Generic.dx trojan !!!
4650838\s.exe ... Found the Generic.dx trojan !!!

Regards,

Haowei Ren
Virus Research Engineer
McAfee AVERT (TM)
A division of McAfee, Inc.

[ 本帖最后由 sun88990 于 2008-5-28 15:50 编辑 ]

显示全部楼层 · 发表于 2008-5-28 16:35:27

不明白！

显示全部楼层 · 发表于 2008-5-28 16:54:00

LZ费心了

咖啡以前的态度。。。。。。。。

还麻烦，大家都不想上报了

显示全部楼层 · 发表于 2008-5-28 17:22:25

Haowei Ren
Virus Research Engineer

这个是亮点...

我曾经从WebImmune那儿上报了一堆样本，一律石沉大海，既没有被添加，也没回复....但愿现在mcafee要做出改变了...

显示全部楼层 · 发表于 2008-5-28 17:41:40

是啊，咖啡真是，石沉大海的不是一点点了，而且还要压缩zip带密码，rar发过去的不要。

显示全部楼层 · 发表于 2008-5-29 02:57:59

看起来给LZ回复的病毒分析工程师是一位华人呢

显示全部楼层 · 发表于 2008-6-1 00:23:05

早就该加强俄

[讨论] Avert Labs驚人的分析報告!!