Tip para Mcaffe (Generic Dropper.gi.gen , varias)

Bloc · Agosto 11, 2013, 07:52:07 PM

Buenas Underc0de les dejo este tip para Mcaffe funcional , el crypter que use fue Indetectables Crypter

1.Primero abrimos el stub a modificar con HexWorkShop y buscamos masomenos esta parte(suele estar por vb5!)

2.Luego modificamos cualquier 0 por 90 , lo guardamos y listo!.:

Stub antes del Tip:

Date and Time: 8/5/2013 5:47:40 PM
File Name: Stub.dll
File Size: 114688 Bytes
MD5: 3bb524eacf000d10210c6afa89ec8274
SHA1: 2cdbfda1d472596670399836a0b0671c96648f3d
Detection: 20 of 35 (57%)
Status: INFECTED

AVG Free - Not Found!
ArcaVir - Not Found!
Avast - Win32:VB-OQG [Drp]
AntiVir (Avira) - TR/Dropper.Gen
BitDefender - Gen:Trojan.Heur.VP2.hm0@ameE7iN
VirusBuster Internet Security - Not Found!
Clam Antivirus - Not Found!
COMODO Internet Security - Not Found!
Dr.Web - Trojan.VbCrypt.68

eTrust-Vet - Win32/VBInject.C!generic
F-PROT Antivirus - W32/VBanti.A.gen!Eldorado (generic, not disinfectable)
F-Secure Internet Security - Gen:Trojan.Heur.VP2.hm0@ameE7iN
G Data - Gen:Trojan.Heur.VP2.hm0@ameE7iN, Win32:VB-OQG [Drp]
IKARUS Security - Virus.Win32.VBInject
Kaspersky Antivirus - Worm.Win32.VBNA.b
McAfee - Generic Dropper.gi.gen
MS Security Essentials - VirTool:Win32/VBInject.gen!DG
ESET NOD32 - Trojan.Win32/Injector.DVJ
Norman - Not Found!
Norton Antivirus - Trojan.Usuge!gen3
Panda Security - Not Found!
A-Squared - Virus.Win32.VBInject!IK
Quick Heal Antivirus - Not Found!
Solo Antivirus - Not Found!
Sophos - Not Found!
Trend Micro Internet Security - Not Found!
VBA32 Antivirus - infected Malware-Cryptor.VB.gen.1
Zoner AntiVirus - Not Found!
Ad-Aware - VirTool.Win32.VBInject.gen.dg (v)
BullGuard - Not Found!
Immunet Antivirus - Not Found!
K7 Ultimate - Riskware ( 6f6baba20 )
NANO Antivirus - Not Found!
Panda CommandLine - Suspicious file
VIPRE - VirTool.Win32.VBInject.gen.dg (v)

No tienes permitido ver los links. Registrarse o Entrar a mi cuenta

Stub luego del Tip:

Date and Time: 8/5/2013 5:57:50 PM
File Name: Stub.dll
File Size: 114688 Bytes
MD5: 2bee1869717f081ac477d7e697faedae
SHA1: 3a05c21e449f66458a1fb968bac18dcdd43abb47
Detection: 19 of 35 (54%)
Status: INFECTED

AVG Free - Not Found!
ArcaVir - Not Found!
Avast - Win32:VB-OQG [Drp]
AntiVir (Avira) - TR/Dropper.Gen
BitDefender - Gen:Variant.Barys.866
VirusBuster Internet Security - Not Found!
Clam Antivirus - Not Found!
COMODO Internet Security - Not Found!
Dr.Web - Trojan.VbCrypt.68

eTrust-Vet - Win32/VBInject.C!generic
F-PROT Antivirus - W32/VBanti.A.gen!Eldorado (generic, not disinfectable)
F-Secure Internet Security - Gen:Variant.Barys.866
G Data - Gen:Variant.Barys.866, Win32:VB-OQG [Drp]
IKARUS Security - Virus.Win32.VBInject
Kaspersky Antivirus - Worm.Win32.VBNA.b
McAfee - Not Found!
MS Security Essentials - VirTool:Win32/VBInject.gen!DG
ESET NOD32 - Trojan.Win32/Injector.DVJ
Norman - Not Found!
Norton Antivirus - Trojan.Usuge!gen3
Panda Security - Not Found!
A-Squared - Virus.Win32.VBInject!IK
Quick Heal Antivirus - Not Found!
Solo Antivirus - Not Found!
Sophos - Not Found!
Trend Micro Internet Security - Not Found!
VBA32 Antivirus - infected Malware-Cryptor.VB.gen.1
Zoner AntiVirus - Not Found!
Ad-Aware - VirTool.Win32.VBInject.gen.dg (v)
BullGuard - Not Found!
Immunet Antivirus - Not Found!
K7 Ultimate - Riskware ( 6f6baba20 )
NANO Antivirus - Not Found!
Panda CommandLine - Suspicious file
VIPRE - VirTool.Win32.VBInject.gen.dg (v)

No tienes permitido ver los links. Registrarse o Entrar a mi cuenta

Encriptado antes del Tip:

Date and Time: 8/5/2013 6:02:01 PM
File Name: Encriptado.exe
File Size: 258382 Bytes
MD5: 6731b21ff3fa07f4e6bbc201db288ea1
SHA1: f4c11ec87e400f5e26f81cc8b9550ee8f4eaaf48
Detection: 21 of 35 (60%)
Status: INFECTED

AVG Free - Trojan horse Injector.BAJ
ArcaVir - Not Found!
Avast - Win32:VB-OQG [Drp]
AntiVir (Avira) - TR/Dropper.Gen
BitDefender - Gen:Trojan.Heur.ZGY.5
VirusBuster Internet Security - Not Found!
Clam Antivirus - Not Found!
COMODO Internet Security - Not Found!
Dr.Web - Trojan.VbCrypt.68

eTrust-Vet - Win32/VBInject.C!generic
F-PROT Antivirus - W32/VBTrojan.9!Maximus
F-Secure Internet Security - Gen:Trojan.Heur.ZGY.5
G Data - Gen:Trojan.Heur.ZGY.5, Win32:VB-OQG [Drp]
IKARUS Security - Virus.Win32.VBInject
Kaspersky Antivirus - Worm.Win32.VBNA.b
McAfee - Generic Dropper.gi.gen
MS Security Essentials - VirTool:Win32/VBInject.DW
ESET NOD32 - Trojan.Win32/Injector.DVJ
Norman - Not Found!
Norton Antivirus - Trojan.Usuge!gen3
Panda Security - Not Found!
A-Squared - Virus.Win32.VBInject!IK
Quick Heal Antivirus - Not Found!
Solo Antivirus - Not Found!
Sophos - Not Found!
Trend Micro Internet Security - Not Found!
VBA32 Antivirus - infected Malware-Cryptor.VB.gen.1
Zoner AntiVirus - Not Found!
Ad-Aware - VirTool.Win32.VBInject.gen.dg (v)
BullGuard - Not Found!
Immunet Antivirus - Not Found!
K7 Ultimate - Riskware ( 6f6baba20 )
NANO Antivirus - Not Found!
Panda CommandLine - Suspicious file
VIPRE - VirTool.Win32.VBInject.gen.dg (v)

No tienes permitido ver los links. Registrarse o Entrar a mi cuenta

Encriptado luego del Tip:

Date and Time: 8/5/2013 6:07:06 PM
File Name: Encriptado.exe
File Size: 258382 Bytes
MD5: af97e0e181dccee693c80a8872aa19f6
SHA1: b0e2100c59f2b4ede3d185b6edf08b98b8a7f832
Detection: 20 of 35 (57%)
Status: INFECTED

AVG Free - Trojan horse Injector.BAJ
ArcaVir - Not Found!
Avast - Win32:VB-OQG [Drp]
AntiVir (Avira) - TR/Dropper.Gen
BitDefender - Gen:Trojan.Heur.ZGY.5
VirusBuster Internet Security - Not Found!
Clam Antivirus - Not Found!
COMODO Internet Security - Not Found!
Dr.Web - Trojan.VbCrypt.68

eTrust-Vet - Win32/VBInject.C!generic
F-PROT Antivirus - W32/VBTrojan.9!Maximus
F-Secure Internet Security - Gen:Trojan.Heur.ZGY.5
G Data - Gen:Trojan.Heur.ZGY.5, Win32:VB-OQG [Drp]
IKARUS Security - Virus.Win32.VBInject
Kaspersky Antivirus - Worm.Win32.VBNA.b
McAfee - Not Found!
MS Security Essentials - VirTool:Win32/VBInject.DW
ESET NOD32 - Trojan.Win32/Injector.DVJ
Norman - Not Found!
Norton Antivirus - Trojan.Usuge!gen3
Panda Security - Not Found!
A-Squared - Virus.Win32.VBInject!IK
Quick Heal Antivirus - Not Found!
Solo Antivirus - Not Found!
Sophos - Not Found!
Trend Micro Internet Security - Not Found!
VBA32 Antivirus - infected Malware-Cryptor.VB.gen.1
Zoner AntiVirus - Not Found!
Ad-Aware - VirTool.Win32.VBInject.gen.dg (v)
BullGuard - Not Found!
Immunet Antivirus - Not Found!
K7 Ultimate - Riskware ( 6f6baba20 )
NANO Antivirus - Not Found!
Panda CommandLine - Suspicious file
VIPRE - VirTool.Win32.VBInject.gen.dg (v)

No tienes permitido ver los links. Registrarse o Entrar a mi cuenta

PD: El tip no es mio , nose quien es el autor

Saludos.

Tip para Mcaffe (Generic Dropper.gi.gen , varias)

Bloc

Agosto 11, 2013, 07:52:07 PM