Buenas Underc0de les dejo este tip para Mcaffe funcional , el crypter que use fue Indetectables Crypter
1.Primero abrimos el stub a modificar con HexWorkShop y buscamos masomenos esta parte(suele estar por vb5!)
2.Luego modificamos cualquier 0 por 90 , lo guardamos y listo!.:
Stub antes del Tip:Date and Time: 8/5/2013 5:47:40 PM
File Name:
Stub.dllFile Size: 114688 Bytes
MD5: 3bb524eacf000d10210c6afa89ec8274
SHA1: 2cdbfda1d472596670399836a0b0671c96648f3d
Detection:
20 of 35 (
57%)
Status:
INFECTEDAVG Free -
Not Found!ArcaVir -
Not Found!Avast -
Win32:VB-OQG [Drp]AntiVir (Avira) -
TR/Dropper.GenBitDefender -
Gen:[email protected]VirusBuster Internet Security -
Not Found!Clam Antivirus -
Not Found!COMODO Internet Security -
Not Found!Dr.Web -
Trojan.VbCrypt.68
eTrust-Vet -
Win32/VBInject.C!genericF-PROT Antivirus -
W32/VBanti.A.gen!Eldorado (generic, not disinfectable)F-Secure Internet Security -
Gen:[email protected]G Data -
Gen:[email protected], Win32:VB-OQG [Drp]IKARUS Security -
Virus.Win32.VBInjectKaspersky Antivirus -
Worm.Win32.VBNA.bMcAfee -
Generic Dropper.gi.genMS Security Essentials -
VirTool:Win32/VBInject.gen!DGESET NOD32 -
Trojan.Win32/Injector.DVJNorman -
Not Found!Norton Antivirus -
Trojan.Usuge!gen3Panda Security -
Not Found!A-Squared -
Virus.Win32.VBInject!IKQuick Heal Antivirus -
Not Found!Solo Antivirus -
Not Found!Sophos -
Not Found!Trend Micro Internet Security -
Not Found!VBA32 Antivirus -
infected Malware-Cryptor.VB.gen.1Zoner AntiVirus -
Not Found!Ad-Aware -
VirTool.Win32.VBInject.gen.dg (v)BullGuard -
Not Found!Immunet Antivirus -
Not Found!K7 Ultimate -
Riskware ( 6f6baba20 )NANO Antivirus -
Not Found!Panda CommandLine -
Suspicious fileVIPRE -
VirTool.Win32.VBInject.gen.dg (v)Report Generated by foromalware.coStub luego del Tip:Date and Time: 8/5/2013 5:57:50 PM
File Name:
Stub.dllFile Size: 114688 Bytes
MD5: 2bee1869717f081ac477d7e697faedae
SHA1: 3a05c21e449f66458a1fb968bac18dcdd43abb47
Detection:
19 of 35 (
54%)
Status:
INFECTEDAVG Free -
Not Found!ArcaVir -
Not Found!Avast -
Win32:VB-OQG [Drp]AntiVir (Avira) -
TR/Dropper.GenBitDefender -
Gen:Variant.Barys.866VirusBuster Internet Security -
Not Found!Clam Antivirus -
Not Found!COMODO Internet Security -
Not Found!Dr.Web -
Trojan.VbCrypt.68
eTrust-Vet -
Win32/VBInject.C!genericF-PROT Antivirus -
W32/VBanti.A.gen!Eldorado (generic, not disinfectable)F-Secure Internet Security -
Gen:Variant.Barys.866G Data -
Gen:Variant.Barys.866, Win32:VB-OQG [Drp]IKARUS Security -
Virus.Win32.VBInjectKaspersky Antivirus -
Worm.Win32.VBNA.bMcAfee -
Not Found!MS Security Essentials -
VirTool:Win32/VBInject.gen!DGESET NOD32 -
Trojan.Win32/Injector.DVJNorman -
Not Found!Norton Antivirus -
Trojan.Usuge!gen3Panda Security -
Not Found!A-Squared -
Virus.Win32.VBInject!IKQuick Heal Antivirus -
Not Found!Solo Antivirus -
Not Found!Sophos -
Not Found!Trend Micro Internet Security -
Not Found!VBA32 Antivirus -
infected Malware-Cryptor.VB.gen.1Zoner AntiVirus -
Not Found!Ad-Aware -
VirTool.Win32.VBInject.gen.dg (v)BullGuard -
Not Found!Immunet Antivirus -
Not Found!K7 Ultimate -
Riskware ( 6f6baba20 )NANO Antivirus -
Not Found!Panda CommandLine -
Suspicious fileVIPRE -
VirTool.Win32.VBInject.gen.dg (v)Report Generated by foromalware.coEncriptado antes del Tip:Date and Time: 8/5/2013 6:02:01 PM
File Name:
Encriptado.exeFile Size: 258382 Bytes
MD5: 6731b21ff3fa07f4e6bbc201db288ea1
SHA1: f4c11ec87e400f5e26f81cc8b9550ee8f4eaaf48
Detection:
21 of 35 (
60%)
Status:
INFECTEDAVG Free -
Trojan horse Injector.BAJArcaVir -
Not Found!Avast -
Win32:VB-OQG [Drp]AntiVir (Avira) -
TR/Dropper.GenBitDefender -
Gen:Trojan.Heur.ZGY.5VirusBuster Internet Security -
Not Found!Clam Antivirus -
Not Found!COMODO Internet Security -
Not Found!Dr.Web -
Trojan.VbCrypt.68
eTrust-Vet -
Win32/VBInject.C!genericF-PROT Antivirus -
W32/VBTrojan.9!MaximusF-Secure Internet Security -
Gen:Trojan.Heur.ZGY.5G Data -
Gen:Trojan.Heur.ZGY.5, Win32:VB-OQG [Drp]IKARUS Security -
Virus.Win32.VBInjectKaspersky Antivirus -
Worm.Win32.VBNA.bMcAfee -
Generic Dropper.gi.genMS Security Essentials -
VirTool:Win32/VBInject.DWESET NOD32 -
Trojan.Win32/Injector.DVJNorman -
Not Found!Norton Antivirus -
Trojan.Usuge!gen3Panda Security -
Not Found!A-Squared -
Virus.Win32.VBInject!IKQuick Heal Antivirus -
Not Found!Solo Antivirus -
Not Found!Sophos -
Not Found!Trend Micro Internet Security -
Not Found!VBA32 Antivirus -
infected Malware-Cryptor.VB.gen.1Zoner AntiVirus -
Not Found!Ad-Aware -
VirTool.Win32.VBInject.gen.dg (v)BullGuard -
Not Found!Immunet Antivirus -
Not Found!K7 Ultimate -
Riskware ( 6f6baba20 )NANO Antivirus -
Not Found!Panda CommandLine -
Suspicious fileVIPRE -
VirTool.Win32.VBInject.gen.dg (v)Report Generated by foromalware.coEncriptado luego del Tip:Date and Time: 8/5/2013 6:07:06 PM
File Name:
Encriptado.exeFile Size: 258382 Bytes
MD5: af97e0e181dccee693c80a8872aa19f6
SHA1: b0e2100c59f2b4ede3d185b6edf08b98b8a7f832
Detection:
20 of 35 (
57%)
Status:
INFECTEDAVG Free -
Trojan horse Injector.BAJArcaVir -
Not Found!Avast -
Win32:VB-OQG [Drp]AntiVir (Avira) -
TR/Dropper.GenBitDefender -
Gen:Trojan.Heur.ZGY.5VirusBuster Internet Security -
Not Found!Clam Antivirus -
Not Found!COMODO Internet Security -
Not Found!Dr.Web -
Trojan.VbCrypt.68
eTrust-Vet -
Win32/VBInject.C!genericF-PROT Antivirus -
W32/VBTrojan.9!MaximusF-Secure Internet Security -
Gen:Trojan.Heur.ZGY.5G Data -
Gen:Trojan.Heur.ZGY.5, Win32:VB-OQG [Drp]IKARUS Security -
Virus.Win32.VBInjectKaspersky Antivirus -
Worm.Win32.VBNA.bMcAfee -
Not Found!MS Security Essentials -
VirTool:Win32/VBInject.DWESET NOD32 -
Trojan.Win32/Injector.DVJNorman -
Not Found!Norton Antivirus -
Trojan.Usuge!gen3Panda Security -
Not Found!A-Squared -
Virus.Win32.VBInject!IKQuick Heal Antivirus -
Not Found!Solo Antivirus -
Not Found!Sophos -
Not Found!Trend Micro Internet Security -
Not Found!VBA32 Antivirus -
infected Malware-Cryptor.VB.gen.1Zoner AntiVirus -
Not Found!Ad-Aware -
VirTool.Win32.VBInject.gen.dg (v)BullGuard -
Not Found!Immunet Antivirus -
Not Found!K7 Ultimate -
Riskware ( 6f6baba20 )NANO Antivirus -
Not Found!Panda CommandLine -
Suspicious fileVIPRE -
VirTool.Win32.VBInject.gen.dg (v)Report Generated by foromalware.coPD: El tip no es mio , nose quien es el autor
Saludos.