FORM1 CRYPTER [[99% FUD]] - Updated {20.05.16} [[1/35]]

Sleepz · Mensajes: 122 Registrado: 08 Feb 2016, 21:16

por Sleepz Delirios esporádicos

Olá,, a testar algunas tips desde código para nod32 e bit desde source, mas me voltava kav, então tive que mudar info mas nada de mais, me saiu esto.. Espero que los sirvam.

Filename: .exe
Filesize: 59,50 kB
Date: 2016-05-20 22:18:54
MD5: 275ed0e5bee60b5387bb6c2e6acd103e
SHA1: 1aa0972bb1410b484641747e6fe3d6b65ec7ac72
Status: Infected
Rate: 1/35

Details:
Ad-Aware - File is clean
A-Squared - File is clean
Avast - File is clean
AVG Free - File is clean
AntiVir (Avira) - File is clean
BitDefender - File is clean
BullGuard - File is clean
Clam Antivirus - File is clean
COMODO Internet Security - File is clean
Dr.Web - File is clean
ESET NOD32 - File is clean
eTrust-Vet - File is clean
FortiClient - File is clean
F-PROT Antivirus - File is clean
F-Secure Internet Security - File is clean
G Data - File is clean
IKARUS Security - Worm.Win32.Carrier
K7 Ultimate - File is clean
Kaspersky Antivirus - File is clean
McAfee - File is clean
MS Security Essentials - File is clean
NANO Antivirus - File is clean
Norman - File is clean
Norton Antivirus - File is clean
Panda CommandLine - File is clean
Panda Security - File is clean
Quick Heal Antivirus - File is clean
Solo Antivirus - File is clean
Sophos - File is clean
SUPERAntiSpyware - File is clean
Trend Micro Internet Security - File is clean
Twister Antivirus - File is clean
VBA32 Antivirus - File is clean
VIPRE - File is clean
Zoner AntiVirus - File is clean

Scan Result: [Enlace externo eliminado para invitados]
[Enlace externo eliminado para invitados]

Filename: _Bozok_.exe
Filesize: 92,00 kB
Date: 2016-05-20 22:18:46
MD5: fecaabb38f6fd1c63022feb6126ca0e0
SHA1: fe85ebf32a5e6c3c9b48fde1aae144d94d315da7
Status: Infected
Rate: 1/35

Details:
Ad-Aware - File is clean
A-Squared - File is clean
Avast - File is clean
AVG Free - File is clean
AntiVir (Avira) - File is clean
BitDefender - File is clean
BullGuard - File is clean
Clam Antivirus - File is clean
COMODO Internet Security - File is clean
Dr.Web - File is clean
ESET NOD32 - File is clean
eTrust-Vet - File is clean
FortiClient - File is clean
F-PROT Antivirus - File is clean
F-Secure Internet Security - File is clean
G Data - File is clean
IKARUS Security - Worm.Win32.Carrier
K7 Ultimate - File is clean
Kaspersky Antivirus - File is clean
McAfee - File is clean
MS Security Essentials - File is clean
NANO Antivirus - File is clean
Norman - File is clean
Norton Antivirus - File is clean
Panda CommandLine - File is clean
Panda Security - File is clean
Quick Heal Antivirus - File is clean
Solo Antivirus - File is clean
Sophos - File is clean
SUPERAntiSpyware - File is clean
Trend Micro Internet Security - File is clean
Twister Antivirus - File is clean
VBA32 Antivirus - File is clean
VIPRE - File is clean
Zoner AntiVirus - File is clean

Scan Result: [Enlace externo eliminado para invitados]
[Enlace externo eliminado para invitados]

Filename: _Bolita_.exe
Filesize: 84,48 kB
Date: 2016-05-20 22:18:23
MD5: f1d894c760d7d7a105603f88c8391437
SHA1: dc0446fa8dec0b4fe1136202ade98c63bfb72d59
Status: Infected
Rate: 1/35

Details:
Ad-Aware - File is clean
A-Squared - File is clean
Avast - File is clean
AVG Free - File is clean
AntiVir (Avira) - File is clean
BitDefender - File is clean
BullGuard - File is clean
Clam Antivirus - File is clean
COMODO Internet Security - File is clean
Dr.Web - File is clean
ESET NOD32 - File is clean
eTrust-Vet - File is clean
FortiClient - File is clean
F-PROT Antivirus - File is clean
F-Secure Internet Security - File is clean
G Data - File is clean
IKARUS Security - Worm.Win32.Carrier
K7 Ultimate - File is clean
Kaspersky Antivirus - File is clean
McAfee - File is clean
MS Security Essentials - File is clean
NANO Antivirus - File is clean
Norman - File is clean
Norton Antivirus - File is clean
Panda CommandLine - File is clean
Panda Security - File is clean
Quick Heal Antivirus - File is clean
Solo Antivirus - File is clean
Sophos - File is clean
SUPERAntiSpyware - File is clean
Trend Micro Internet Security - File is clean
Twister Antivirus - File is clean
VBA32 Antivirus - File is clean
VIPRE - File is clean
Zoner AntiVirus - File is clean

Scan Result: [Enlace externo eliminado para invitados]
[Enlace externo eliminado para invitados]

[Enlace externo eliminado para invitados]

Skype: mh1tzzz

australopiteco

por australopiteco Se medica

gracias sleepz gran trabajo

there's no place like 127.0.0.1

Sleepz · Mensajes: 122 Registrado: 08 Feb 2016, 21:16

por Sleepz Delirios esporádicos

Olá vejo que uns e otros não gostaram que encryptado tens de executar como ADM, então modifiquei a stub, continua com mesmo resultado, só não executa como administrator.

Scan Stub:

Filename: .exe
Filesize: 59,50 kB
Date: 2016-05-21 00:48:37
MD5: 08acecda8f8d7286bbb5d9758eeb5003
SHA1: 90e886613346f2d744e1fd85d2043b39619630f3
Status: Infected
Rate: 1/35

Details:
Ad-Aware - File is clean
A-Squared - File is clean
Avast - File is clean
AVG Free - File is clean
AntiVir (Avira) - File is clean
BitDefender - File is clean
BullGuard - File is clean
Clam Antivirus - File is clean
COMODO Internet Security - File is clean
Dr.Web - File is clean
ESET NOD32 - File is clean
eTrust-Vet - File is clean
FortiClient - File is clean
F-PROT Antivirus - File is clean
F-Secure Internet Security - File is clean
G Data - File is clean
IKARUS Security - Worm.Win32.Carrier
K7 Ultimate - File is clean
Kaspersky Antivirus - File is clean
McAfee - File is clean
MS Security Essentials - File is clean
NANO Antivirus - File is clean
Norman - File is clean
Norton Antivirus - File is clean
Panda CommandLine - File is clean
Panda Security - File is clean
Quick Heal Antivirus - File is clean
Solo Antivirus - File is clean
Sophos - File is clean
SUPERAntiSpyware - File is clean
Trend Micro Internet Security - File is clean
Twister Antivirus - File is clean
VBA32 Antivirus - File is clean
VIPRE - File is clean
Zoner AntiVirus - File is clean

Scan Result: [Enlace externo eliminado para invitados]
[Enlace externo eliminado para invitados]

Scan Server encryptado:

Filename: jj.exe
Filesize: 92,00 kB
Date: 2016-05-21 00:46:52
MD5: f2c4702333a5c156a34fb72ada9e4b93
SHA1: 21e8b27780fb49e3d20994b534967d709b1e5d01
Status: Infected
Rate: 1/35

Details:
Ad-Aware - File is clean
A-Squared - File is clean
Avast - File is clean
AVG Free - File is clean
AntiVir (Avira) - File is clean
BitDefender - File is clean
BullGuard - File is clean
Clam Antivirus - File is clean
COMODO Internet Security - File is clean
Dr.Web - File is clean
ESET NOD32 - File is clean
eTrust-Vet - File is clean
FortiClient - File is clean
F-PROT Antivirus - File is clean
F-Secure Internet Security - File is clean
G Data - File is clean
IKARUS Security - Worm.Win32.Carrier
K7 Ultimate - File is clean
Kaspersky Antivirus - File is clean
McAfee - File is clean
MS Security Essentials - File is clean
NANO Antivirus - File is clean
Norman - File is clean
Norton Antivirus - File is clean
Panda CommandLine - File is clean
Panda Security - File is clean
Quick Heal Antivirus - File is clean
Solo Antivirus - File is clean
Sophos - File is clean
SUPERAntiSpyware - File is clean
Trend Micro Internet Security - File is clean
Twister Antivirus - File is clean
VBA32 Antivirus - File is clean
VIPRE - File is clean
Zoner AntiVirus - File is clean

Scan Result: [Enlace externo eliminado para invitados]
[Enlace externo eliminado para invitados]

download:

[Enlace externo eliminado para invitados]

Skype: mh1tzzz

Geronimo · Mensajes: 286 Registrado: 09 Jul 2014, 13:48

por Geronimo Paranóico

Tezii1997 · Mensajes: 176 Registrado: 22 Feb 2015, 22:50 Ubicación: RunPE

por Tezii1997 Se medica

Gracias bro

Antivirus? haha, nice joke!

leo-johnlenon

por leo-johnlenon Delirios esporádicos

Nanaya2926 · Mensajes: 7 Registrado: 10 May 2016, 11:28

por Nanaya2926 Sin síntomas

Gracias por esto. Excelente :)

comand

por comand Usa camisa de fuerza

"Concentrarse en las fortalezas, reconocer las debilidades, las oportunidades y tomar la guardia contra las amenazas."

―Sun Tzu

Jefin_Silva

por Jefin_Silva Se conecta desde un manicomio

gracias buenooo aporte ..

maxz1n

por maxz1n Sin síntomas

Muchas Gracias Sleepz, gran trabajo.

FORM1 CRYPTER [[99% FUD]] - Updated {20.05.16} [[1/35]]

Temas similares

Links sobre el tema

Variantes de tema

FORM1 CRYPTER [[99% FUD]] - Updated {20.05.16} [[1/35]]

Mostrar mensajes previos

Ordenar por

Temas similares

Links sobre el tema

Variantes de tema