Buenas nenas, alguien puede analizar ese Rat?

Imagen


[Enlace externo eliminado para invitados]

Filename: stub.exe
Filesize: 611,00 kB
Date: 2016-06-30 17:08:43
MD5: efc17cda3dccd79bf17bf017ffb85ad8
SHA1: a1e27394d6e9c209f21b80b89b25383db325ec12
Status: Infected
Rate: 15/35

Details:
Ad-Aware - Gen:Variant.Graftor.189146
A-Squared - File is clean
Avast - Win32:BackDoor-ACX [Trj]
AVG Free - File is clean
AntiVir (Avira) - TR/Spy.Gen
BitDefender - Gen:Variant.Graftor.189146
BullGuard - Gen:Variant.Razy.73925
Clam Antivirus - File is clean
COMODO Internet Security - File is clean
Dr.Web - Trojan.DownLoader14.35508

ESET NOD32 - Backdoor.Win32/SchwarzeSonne.BM
eTrust-Vet - <virus> Gen:Variant.Graftor.189146
FortiClient - File is clean
F-PROT Antivirus - File is clean
F-Secure Internet Security - Gen:Variant.Graftor.189146
G Data - Gen:Variant.Graftor.189146
IKARUS Security - File is clean
K7 Ultimate - Trojan ( 7000000f1 )
Kaspersky Antivirus - File is clean
McAfee - New BackDoor1
MS Security Essentials - File is clean
NANO Antivirus - File is clean
Norman - Gen:Variant.Graftor.189146
Norton Antivirus - File is clean
Panda CommandLine - File is clean
Panda Security - File is clean
Quick Heal Antivirus - File is clean
Solo Antivirus - File is clean
Sophos - Mal/Behav-010
SUPERAntiSpyware - File is clean
Trend Micro Internet Security - File is clean
Twister Antivirus - File is clean
VBA32 Antivirus - is suspected of Backdoor.XiaoBird.52 (paranoid heu
VIPRE - File is clean
Zoner AntiVirus - File is clean

Scan Result: [Enlace externo eliminado para invitados]
[Enlace externo eliminado para invitados]
Imagen
 
"La posibilidad de realizar un sueño es lo que hace que la vida sea interesante"
En que esta programado?.net?
PD: No deberias postearlo en zona de analisis si quieres que alguien lo analice? que algun mod lo mueva
666699966999999996699966699999
666699966999999996699966969999
699999966999999996699966996999
666699966999999996699966999699
666699966999999996699966999699
699999996699999966999966996999
699999999669999669999966969999
699999999996666999999966699999
https://reversecodes.wordpress.com

http://indeseables.github.io/
Jefin_Silva escribió:entoces el rar esta infectado ?
si
abrelo ne virtual y busca en temporal el archivo original, en caso de que lleve bindeado algo
666699966999999996699966699999
666699966999999996699966969999
699999966999999996699966996999
666699966999999996699966999699
666699966999999996699966999699
699999996699999966999966996999
699999999669999669999966969999
699999999996666999999966699999
https://reversecodes.wordpress.com

http://indeseables.github.io/
guys, i don't understand spanish.. this back door is safety? it did not send my password or other information to his developer?
MrGt escribió:guys, i don't understand spanish.. this back door is safety? it did not send my password or other information to his developer?
No. This is not safety, use it on a virtual machine.
666699966999999996699966699999
666699966999999996699966969999
699999966999999996699966996999
666699966999999996699966999699
666699966999999996699966999699
699999996699999966999966996999
699999999669999669999966969999
699999999996666999999966699999
https://reversecodes.wordpress.com

http://indeseables.github.io/
Responder

Volver a “Zona de Análisis”