下载物12×

显示全部楼层 · 发表于 2010-8-11 10:18:12

本帖最后由蝉鸣时于 2010.8.11 11:00 编辑

008.exe - MD5: 8E69928D39AA0D0413444915467444F5　VirusTotal: 17/41 (41.5%)
72.exe - MD5: 0E8C8A44ECC8132B059C166BED3F36BB　VirusTotal: 12/40 (30.0%)
395.exe - MD5: E2C82CADD1272343292A3A1FA94A6B75　VirusTotal: 21/41 (51.2%)
10003.exe - MD5: 970447AD507B68D2CE473A39B78B64B3　VirusTotal: 30/41 (73.2%)
100010.exe - MD5: 0BF9DBEFA97A74CDD76101D61045766C　VirusTotal: 30/41 (73.2%)
alg.exe - MD5: 2531A16261DA28F9738F0BBE3E865AE3　VirusTotal: 19/41 (46.3%)
conime.exe - MD5: 980CBFD5A660A3D1D267DAE80E2AFC0E　VirusTotal: 22/39 (56.4%)
cpa25.exe - MD5: 7C8BDA8EBFD28A0891FA9AD710CBE9E7　VirusTotal: 25/41 (61.0%)
d.exe - MD5: 5E8E5D09E64D30291E7AD8F77DF46DCD　VirusTotal: 14/41 (34.1%)
hkcmd.exe - MD5: B1AD1574B2EBD283BC15A30790C989BE　VirusTotal: 8/41 (19.5%)
iexplorer.exe - MD5: 47B85F7D03AF81459B836F1C3A83B5F4　VirusTotal: 23/41 (56.1%)
tj4.exe - MD5: 96009318FE8D6A26D22FE33749DD1A1C　VirusTotal: 5/41 (12.2%)

ESET NOD32 missed 4×.
To ESET.
72.exe　395.exe　hkcmd.exe　iexplorer.exe

Kaspersky missed 2×, Heuristics detected 1×, KSN detected 1×.
To KL.

显示全部楼层 · 发表于 2010-8-11 10:45:20

5x to xandora(panda)

显示全部楼层 · 发表于 2010-8-11 10:46:48

1X TO AVIRA

显示全部楼层 · 发表于 2010-8-11 10:50:16

360sd报11个
C:\Documents and Settings\Administrator\桌面\下载物12×\下载物12×\008.exe Malware.QVM07.Gen 已删除
C:\Documents and Settings\Administrator\桌面\下载物12×\下载物12×\100010.exe 广告程序(Win32/Adware.gen) 已删除
C:\Documents and Settings\Administrator\桌面\下载物12×\下载物12×\10003.exe 下载者木马(TrojanDownloader/Win32.Agent.PXJ) 已删除
C:\Documents and Settings\Administrator\桌面\下载物12×\下载物12×\395.exe 木马(Trojan-Heur/Win32.RP.eeW@ayGBtWm) 已删除
C:\Documents and Settings\Administrator\桌面\下载物12×\下载物12×\72.exe Malware.QVM05.Gen 已删除
C:\Documents and Settings\Administrator\桌面\下载物12×\下载物12×\alg.exe 广告程序(Adware/Win32.WSearch.AK) 已删除
C:\Documents and Settings\Administrator\桌面\下载物12×\下载物12×\conime.exe 木马(Win32/Rootkit.CN) 已删除
C:\Documents and Settings\Administrator\桌面\下载物12×\下载物12×\cpa25.exe 木马(Trojan-Heur/Win32.ZDR.1) 已删除
C:\Documents and Settings\Administrator\桌面\下载物12×\下载物12×\d.exe 恶意浏览器插件(TrojanClicker/Win32.BHO.NCH) 已删除
C:\Documents and Settings\Administrator\桌面\下载物12×\下载物12×\hkcmd.exe Malware.QVM16.Gen 已删除
C:\Documents and Settings\Administrator\桌面\下载物12×\下载物12×\iexplore.exe 木马(TR/Crypt.ZPACK.Gen) 已删除

显示全部楼层 · 发表于 2010-8-11 10:50:36

本帖最后由 hj5abc 于 2010.8.11 10:56 编辑

3x to f-secure，1x启发fsample上报。

显示全部楼层 · 发表于 2010-8-11 11:11:29

瑞星Kill11

1 To Rising

（RS20100811110428421841）

显示全部楼层 · 发表于 2010-8-11 11:39:02

定义2个
submit to mcafee

显示全部楼层 · 发表于 2010-8-11 11:42:16

已检测：木马程序 Trojan-Downloader.Win32.Genome.ayhd 文件: D:\downloads\virus\下载物12×\下载物12×\008.exe
已检测：木马程序 Trojan.Win32.StartPage.acxl 文件: D:\downloads\virus\下载物12×\下载物12×\100010.exe//Petite
已检测：木马程序 Trojan-Dropper.Win32.Agent.cqie 文件: D:\downloads\virus\下载物12×\下载物12×\395.exe
已检测：木马程序 Trojan-Downloader.Win32.Agent.eewc 文件: D:\downloads\virus\下载物12×\下载物12×\10003.exe//YodaProt
已检测：病毒 HEUR:Trojan-Downloader.Win32.Generic (modification) 文件: D:\downloads\virus\下载物12×\下载物12×\72.exe
已检测：木马程序 Trojan-Downloader.Win32.Genome.aygu 文件: D:\downloads\virus\下载物12×\下载物12×\cpa25.exe
已检测：木马程序 Trojan.Win32.Swisyn.ajqq 文件: D:\downloads\virus\下载物12×\下载物12×\d.exe//PE_Patch.UPX//UPX
已检测：木马程序 Trojan-Downloader.Win32.Selvice.ajb 文件: D:\downloads\virus\下载物12×\下载物12×\iexplore.exe
已检测：木马程序 Trojan-Downloader.Win32.Murlo.hac 文件: D:\downloads\virus\下载物12×\下载物12×\tj4.exe

显示全部楼层 · 发表于 2010-8-11 11:52:08

9个todr 一个启发

显示全部楼层 · 发表于 2010-8-11 11:54:46

[病毒样本] 下载物12×

评分

浏览过的版块