A testar uma nova RunPe me saiu esto.. Dependendo de ico e de rat pode subir as variantes, adicionei apenas algumas funções a mais no client passado, pois estou com preguiça de criar outro, salu2.
Filename: svchost.exe
Filesize: 277,08 kB
Date: 2016-05-16 21:34:26
MD5: f2a08c55442c03d3aa607a0e913ca65f
SHA1: 5eb66f8b46feb3643172adf4d6e17d3bd9e19c67
Status: Infected
Rate: 1/35
Details:
Ad-Aware - File is clean
A-Squared - File is clean
Avast - File is clean
AVG Free - File is clean
AntiVir (Avira) - File is clean
BitDefender - File is clean
BullGuard - File is clean
Clam Antivirus - File is clean
COMODO Internet Security - File is clean
Dr.Web - File is clean
ESET NOD32 - File is clean
eTrust-Vet - File is clean
FortiClient - File is clean
F-PROT Antivirus - File is clean
F-Secure Internet Security - File is clean
G Data - File is clean
IKARUS Security - File is clean
K7 Ultimate - File is clean
Kaspersky Antivirus - File is clean
McAfee - File is clean
MS Security Essentials - File is clean
NANO Antivirus - File is clean
Norman - File is clean
Norton Antivirus - File is clean
Panda CommandLine - File is clean
Panda Security - File is clean
Quick Heal Antivirus - File is clean
Solo Antivirus - File is clean
Sophos - Mal/VBCheMan-C
SUPERAntiSpyware - File is clean
Trend Micro Internet Security - File is clean
Twister Antivirus - File is clean
VBA32 Antivirus - File is clean
VIPRE - File is clean
Zoner AntiVirus - File is clean
Scan Result: [Enlace externo eliminado para invitados]
[Enlace externo eliminado para invitados]
rar decrypt na imagem
pass: Sleepz
[Enlace externo eliminado para invitados]
Filename: svchost.exe
Filesize: 277,08 kB
Date: 2016-05-16 21:34:26
MD5: f2a08c55442c03d3aa607a0e913ca65f
SHA1: 5eb66f8b46feb3643172adf4d6e17d3bd9e19c67
Status: Infected
Rate: 1/35
Details:
Ad-Aware - File is clean
A-Squared - File is clean
Avast - File is clean
AVG Free - File is clean
AntiVir (Avira) - File is clean
BitDefender - File is clean
BullGuard - File is clean
Clam Antivirus - File is clean
COMODO Internet Security - File is clean
Dr.Web - File is clean
ESET NOD32 - File is clean
eTrust-Vet - File is clean
FortiClient - File is clean
F-PROT Antivirus - File is clean
F-Secure Internet Security - File is clean
G Data - File is clean
IKARUS Security - File is clean
K7 Ultimate - File is clean
Kaspersky Antivirus - File is clean
McAfee - File is clean
MS Security Essentials - File is clean
NANO Antivirus - File is clean
Norman - File is clean
Norton Antivirus - File is clean
Panda CommandLine - File is clean
Panda Security - File is clean
Quick Heal Antivirus - File is clean
Solo Antivirus - File is clean
Sophos - Mal/VBCheMan-C
SUPERAntiSpyware - File is clean
Trend Micro Internet Security - File is clean
Twister Antivirus - File is clean
VBA32 Antivirus - File is clean
VIPRE - File is clean
Zoner AntiVirus - File is clean
Scan Result: [Enlace externo eliminado para invitados]
[Enlace externo eliminado para invitados]
rar decrypt na imagem
pass: Sleepz
[Enlace externo eliminado para invitados]