exauthp2.dll (7/36)

显示全部楼层 · 发表于 2010-8-12 19:51:56

本帖最后由 wenbin 于 2010.8.12 22:12 编辑

相关病毒样本 http://bbs.kafan.cn/thread-767356-1-2.html

同样隐藏于 C:\Windows\SysWOW64

File information

File Name :	exauthp2.dll
File Size :	511542 byte
File Type :	PE32 executable for MS Windows (GUI) Intel 80386 32-bit
MD5 :	f8716733b898add4c631ef6defc6678e
SHA1 :	725efe4114f982e38ede56d2d812ef341b695e3f

Scanner results

Scanner results :	19% Scanner(s) (7/36) found malware!
Time :	2010/08/12 21:48:54 (EST)

Scanner	Engine Ver	Sig Ver	Sig Date	Scan result	Time
a-squared	5.0.0.18	20100812050507	2010-08-12	-	1.249
AhnLab V3	2010.08.07.00	2010.08.07	2010-08-07	-	2.723
AntiVir	8.2.4.34	7.10.10.155	2010-08-12	-	0.271
Antiy	2.0.18	20100810.4923669	2010-08-10	-	0.019
Arcavir	2009	201006281601	2010-06-28	-	0.004
Authentium	5.1.1	201008120825	2010-08-12	W32/Worm.AZHW (Exact)	1.243
AVAST!	4.7.4	100812-0	2010-08-12	-	0.039
AVG	8.5.793	271.1.1/3066	2010-08-12	-	1.542
BitDefender	7.90123.6144930	7.33317	2010-08-12	-	4.486
ClamAV	0.96.1	11536	2010-08-12	W32.Autoit.Obfus-3	0.098
Comodo	4.0	5714	2010-08-11	TrojWare.Win32.Autoit.~d01	3.006
CP Secure	1.3.0.5	2010.08.12	2010-08-12	-	0.098
Dr.Web	5.0.2.3300	2010.08.12	2010-08-12	-	9.303
F-Prot	4.4.4.56	20100812	2010-08-12	W32/Worm.AZHW (exact)	1.242
F-Secure	7.02.73807	2010.08.12.05	2010-08-12	-	0.295
Fortinet	4.1.143	12.237	2010-08-11	-	0.395
GData	21.658/21.252	20100812	2010-08-12	-	14.043
Ikarus	T3.	2010.08.12.76483	2010-08-12	-	5.373
JiangMin	13.0.900	2010.08.10	2010-08-10	-	1.332
Kaspersky	5.5.10	2010.08.11	2010-08-11	-	0.169
KingSoft	2009.2.5.15	2010.8.12.16	2010-08-12	-	0.681
McAfee	5400.1158	6071	2010-08-11	-	18.739
Microsoft	1.6004	2010.08.11	2010-08-11	-	6.725
Norman	6.05.11	6.05.00	2010-08-12	-	8.044
nProtect	20100808.01	8813262	2010-08-08	-	8.974
Panda	9.05.01	2010.08.11	2010-08-11	-	2.876
Quick Heal	11.00	2010.08.12	2010-08-12	Trojan.Agent.gen	3.515
Rising	20.0	22.60.02.04	2010-08-11	-	1.474
Sophos	3.10.0	4.56	2010-08-12	-	4.511
Sunbelt	3.9.2432.2	6720	2010-08-11	-	11.720
Symantec	1.3.0.24	20100811.002	2010-08-11	-	0.084
The Hacker	6.5.2.1	v00343	2010-08-11	-	0.352
Trend Micro	9.120-1004	7.378.07	2010-08-12	-	0.044
VBA32	3.12.14.0	20100811.0820	2010-08-11	Trojan.Autoit.F	6.095
ViRobot	20100811	2010.08.11	2010-08-11	-	0.835
VirusBuster	4.5.11.10	10.127.53/2033383	2010-08-12	Worm.Agent.VPAL	3.826

■Heuristic/Suspicious ■Exact

显示全部楼层 · 发表于 2010-8-12 19:54:27

mcafee Artemis!

显示全部楼层 · 发表于 2010-8-12 19:54:31

exauthp2.zip;已删除;Win32.Malware.Heur_Generic.A.(kcloud);2010-08-12 19: 54;

显示全部楼层 · 发表于 2010-8-12 20:47:24

启发，to xandora(panda)

显示全部楼层 · 发表于 2010-8-12 21:43:45

to eset via e-mail

显示全部楼层 · 发表于 2010-8-12 21:52:19

TO 紅傘

显示全部楼层 · 发表于 2010-8-12 22:10:30

to
ik

显示全部楼层 · 发表于 2010-8-13 00:43:05

网盾杀

显示全部楼层 · 发表于 2010-8-13 06:36:05

to eset

http://samples.eset.com.cn/index ... dd4c631ef6defc6678e

显示全部楼层 · 发表于 2010-8-13 07:32:06

to avast!

[病毒样本] exauthp2.dll (7/36)

浏览过的版块