收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 1月31-Obfuscated X36 (新图标),附vt结果
12下一页
返回列表 发新帖
查看: 3461|回复: 11
收起左侧

[病毒样本] 1月31-Obfuscated X36 (新图标),附vt结果

[复制链接]
sam.to
发表于 2009-1-31 17:16:12 | 显示全部楼层 |阅读模式
c60fad91b1855ad628474059dd05c044  001-uninstall.exe_
c06b34505443ab929230cb83785e7ecc  002-uninstall.exe_
dcaf39f0aab93f85bd5fbcd1f8d422f3  003-uninstall.exe_
93db4576ba24abd960aab62626921db0  004-9kgen_up.int
0ec527b8332f423085cf6c5f5a10f1bc  005-9kgen_up.int
a50e409e4aaa9e3f8a3666dd3055d125  006-sn_pkz.int
efd4cf12083d380c50bb5d939458db31  007-upAYB.int
c9c85d673bfae3dab4a34cd3eaff7102  008-upAYB.int
c1167bc3cce3214438852d87363825f7  009-kr3.int
22fcdf0ee35291451b1a5ccf949b9459  010-kr3.int
4d9d7110ad12f6077d8814616e5104dc  011-np_pkz.int
4182220ff4da760d4b75077afbe14f1b  012-np_pkz.int
fb3685f77049c77839b2b39201a880bb  013-tp_map16.int
cecacf2399f335d01c80354dd2234643  014-tp_map16.int
345f794cc4339d51b89651838dbfaedd  015-7k19_msn.int
624bbb6b16b34eba95394a77ad4624fa  016-7k19_msn.int
236b602bcf417a6a3d8cee3c63e8d2c8  017-7k19_up.int
6589a178eaa19d5bef9d6ee492e8dccf  018-7k19_up.int
229e9a8766cf42e56a2256a143f97eb4  019-7k41_up.int
73b93148a6772f6b1c5f70d58af3652e  020-7k41_up.int
42bef4107707afeecdeb5e96aa363d7a  021-7k42_up.int
2ead46c436f25cfd1e4aded9d904b6b8  022-7k42_up.int
14cec1882ad98f21bdd1d3f5abd20cd8  023-7k43_up.int
7b7badd7f8816f20d01ac5b2f703197c  024-7k43_up.int
bd7afc8c61b6f3d961b27126e9955fbc  025-7k44_up.int
1db2c16b3030b7f08c109f601f515574  026-7k44_up.int
beeacb80e1cf96c573b3f7d6956558c7  027-7k45_up.int
acc0994776eac5db075961d8e7de69d5  028-7k45_up.int
577f738574001cf02b7f15ed43d91bef  029-7k50_up.int
3f86e5a48c42be357212880d7c406b07  030-7k50_up.int
68b9c626134457867600ece59ddba9dc  031-kr3_znp.int
0075e7c58010dd619485c5e3cfa214c8  032-kr3_znp.int
6a724d8237b4d35a05eaca2bcd8cd9ad  033-np_up.int
b51f53d2f6f5c3448d147121809d3d50  034-np_up.int
eaad6b27016df653bad0cd293d8e0c62  035-upd_admn.int
c9c85d673bfae3dab4a34cd3eaff7102  036-upd_admn.int

已上报卡巴


001-uninstall.exe_ - Trojan.Win32.Obfuscated.aahq,
002-uninstall.exe_ - Trojan.Win32.Obfuscated.aahr,
003-uninstall.exe_ - Trojan.Win32.Obfuscated.aahm,
004-9kgen_up.int - Trojan.Win32.Obfuscated.aahs,
005-9kgen_up.int - Trojan.Win32.Obfuscated.aaht,
006-sn_pkz.int - Trojan-Downloader.Win32.Obfuscated.iwx,
007-upAYB.int - Trojan.Win32.Obfuscated.aahu,
008-upAYB.int - Trojan.Win32.Obfuscated.aahv,
009-kr3.int - Trojan-Downloader.Win32.Swizzor.bpu,
010-kr3.int - Trojan-Downloader.Win32.Swizzor.bpt,
011-np_pkz.int - Trojan.Win32.Obfuscated.aahw,
012-np_pkz.int - Trojan-Downloader.Win32.Obfuscated.iwy
013-tp_map16.int - Trojan-Downloader.Win32.Agent.bfyr,
014-tp_map16.int - Trojan-Downloader.Win32.Agent.bfys,
015-7k19_msn.int - Trojan.Win32.Obfuscated.aahn,
016-7k19_msn.int - Trojan-Downloader.Win32.Agent.bfyt,
017-7k19_up.int - Trojan.Win32.Obfuscated.aaho,
018-7k19_up.int - Trojan.Win32.Obfuscated.aahp,
019-7k41_up.int - Trojan-Downloader.Win32.Agent.bfyu,
020-7k41_up.int - Trojan-Downloader.Win32.Obfuscated.iwz,
021-7k42_up.int - Trojan-Downloader.Win32.Obfuscated.ixa,
022-7k42_up.int - Trojan-Downloader.Win32.Agent.bfyv,
023-7k43_up.int - Trojan-Downloader.Win32.Agent.bfyw,
024-7k43_up.int - Trojan-Downloader.Win32.Agent.bfyx


最后一包:
Its detection will be included in the next update.

[ 本帖最后由 sam.to 于 2009-2-1 22:51 编辑 ]

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

xiaohai95
发表于 2009-1-31 17:46:03 | 显示全部楼层


本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

Palkia
发表于 2009-1-31 17:52:35 | 显示全部楼层
新基因??
回复

举报

nosferatu
头像被屏蔽
发表于 2009-1-31 18:26:55 | 显示全部楼层
Starting the file scan:

Begin scan in 'C:\Documents and Settings\Administrator\桌面\0131'
C:\Documents and Settings\Administrator\桌面\0131\003-uninstall.exe_
    [DETECTION] Is the TR/Dldr.Swizzor.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\0131\004-9kgen_up.int
    [DETECTION] Is the TR/Dldr.Swizzor.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\0131\005-9kgen_up.int
    [DETECTION] Is the TR/Dldr.Swizzor.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\0131\007-upAYB.int
    [DETECTION] Is the TR/Dldr.Swizzor.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\0131\012-np_pkz.int
    [DETECTION] Is the TR/Dldr.Swizzor.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\0131\015-7k19_msn.int
    [DETECTION] Is the TR/Dldr.Swizzor.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\0131\017-7k19_up.int
    [DETECTION] Is the TR/Dldr.Swizzor.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\0131\018-7k19_up.int
    [DETECTION] Is the TR/Dldr.Swizzor.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\0131\021-7k42_up.int
    [DETECTION] Is the TR/Dldr.Swizzor.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\0131\022-7k42_up.int
    [DETECTION] Is the TR/Dldr.Swizzor.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\0131\024-7k43_up.int
    [DETECTION] Is the TR/Dldr.Swizzor.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\0131\027-7k45_up.int
    [DETECTION] Is the TR/Dldr.Swizzor.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\0131\029-7k50_up.int
    [DETECTION] Is the TR/Dldr.Swizzor.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\0131\031-kr3_znp.int
    [DETECTION] Is the TR/Dldr.Swizzor.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\0131\034-np_up.int
    [DETECTION] Is the TR/Dldr.Swizzor.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\0131\035-upd_admn.int
    [DETECTION] Is the TR/Dldr.Swizzor.Gen Trojan
    [NOTE]      The file was deleted!


End of the scan: 星期六 2009年1月31日  18:25
Used time: 00:16 Minute(s)

The scan has been done completely.

      1 Scanning directories
     36 Files were scanned
     16 viruses and/or unwanted programs were found
      0 Files were classified as suspicious:
     16 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
     20 Files not concerned
      0 Archives were scanned
      0 Warnings
     16 Notes
剩余已全部上报

[ 本帖最后由 nosferatu 于 2009-1-31 18:32 编辑 ]
回复

举报

killloop
发表于 2009-1-31 18:29:23 | 显示全部楼层
卡巴8.0服务器版超卡,字打不出来
2个CPU站用百分之百
高启发7个
回复

举报

sbbdms
发表于 2009-1-31 18:35:01 | 显示全部楼层

回复 3楼 Palkia 的帖子

是的 千呼万唤终于出来了…………
正在收集大包 准备上报…………
回复

举报

luxiao200888
发表于 2009-1-31 18:42:29 | 显示全部楼层
TR/Dldr.Swizzor.Gen Trojan




我的一部分建议功劳~
回复

举报

luxiao200888
发表于 2009-1-31 18:45:21 | 显示全部楼层
继续建议红伞SW gen完善计划
回复

举报

popfather
头像被屏蔽
发表于 2009-1-31 18:50:33 | 显示全部楼层
趋势2009

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

wai0903
发表于 2009-1-31 18:51:02 | 显示全部楼层
很強
回复

举报

下一页 »
12下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2025-7-17 14:48 , Processed in 0.138041 second(s), 17 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表