Nuevas variantes del TROJAN KILL AV
Recibidas 4 variantes del troyano KILLAV pasamos a controlarlos a partir de la version de hoy del ELISTARA 23.42
Se postean a continuacion los cuatro informes de dichas variantes, cada una con su MD5:
File name:
NSPASS1.SYS.Muestra EliStartPage v23.41
Submission date:
2011-06-14 15:34:29 (UTC)
Current status:
finished
Result:
39 /42 (92.9%)
VT Community
not reviewed
Safety score: –
Compact
Print results
Antivirus Version Last Update Result
AhnLab-V3 2011.06.15.00 2011.06.14 Win-Trojan/Downloader.8320.G
AntiVir 7.11.9.189 2011.06.14 TR/Rootkit.Gen
Antiy-AVL 2.0.3.7 2011.06.14 Trojan/Win32.Small.gen
Avast 4.8.1351.0 2011.06.14 Win32:Perkesh
Avast5 5.0.677.0 2011.06.14 Win32:Perkesh
AVG 10.0.0.1190 2011.06.14 Agent.ATAT
BitDefender 7.2 2011.06.14 Rootkit.10747
CAT-QuickHeal 11.00 2011.06.14 Rootkit.Small.go
ClamAV 0.97.0.0 2011.06.14 Trojan.Agent-66850
Commtouch 5.3.2.6 2011.06.14 W32/Perkesh.A.gen!Eldorado
Comodo 9065 2011.06.14 TrojWare.Win32.Rootkit.Small.~V
DrWeb 5.0.2.03300 2011.06.14 Trojan.KillProc.1565
Emsisoft 5.1.0.8 2011.06.14 Rootkit.Win32.Small!IK
eSafe 7.0.17.0 2011.06.14 –
eTrust-Vet 36.1.8385 2011.06.14 Win32/SybuexA!generic
F-Prot 4.6.2.117 2011.06.14 W32/Perkesh.A.gen!Eldorado
Fortinet 4.2.257.0 2011.06.14 W32/Agent.HTL!tr
GData 22 2011.06.14 Rootkit.10747
Ikarus T3.1.1.104.0 2011.06.14 Rootkit.Win32.Small
Jiangmin 13.0.900 2011.06.14 Rootkit.Small.bc
K7AntiVirus 9.106.4807 2011.06.13 Riskware
Kaspersky 9.0.0.837 2011.06.14 Trojan-Downloader.Win32.Geral.myg
McAfee 5.400.0.1158 2011.06.14 Downloader-BNM
McAfee-GW-Edition 2010.1D 2011.06.13 Downloader-BNM
Microsoft 1.6903 2011.06.13 TrojanDownloader:Win32/Perkesh.gen!A
NOD32 6207 2011.06.14 Win32/Rootkit.Agent.NHG
Norman 6.07.10 2011.06.14 W32/DLoader.TNNM
nProtect 2011-06-14.01 2011.06.14 Trojan/W32.Rootkit.8320.B
Panda 10.0.3.5 2011.06.13 Adware/GoodSearchNow
PCTools 7.0.3.5 2011.06.10 Hacktool.Rootkit!sd6
Prevx 3.0 2011.06.14 –
Rising 23.62.01.03 2011.06.14 RootKit.Win32.NsPass.a
Sophos 4.66.0 2011.06.14 Troj/NtRootK-GB
SUPERAntiSpyware 4.40.0.1006 2011.06.14 –
Symantec 20111.1.0.186 2011.06.14 Hacktool.Rootkit
TheHacker 6.7.0.1.230 2011.06.14 Trojan/Downloader.Geral.myg
TrendMicro 9.200.0.1012 2011.06.14 RTKT_BUREY.A
TrendMicro-HouseCall 9.200.0.1012 2011.06.14 RTKT_BUREY.A
VBA32 3.12.16.1 2011.06.14 Rootkit.Win32.Agent.htl
VIPRE 9581 2011.06.14 Trojan.Win32.Generic!BT
ViRobot 2011.6.14.4511 2011.06.14 Trojan.Win32.RT-Small.8320.F
VirusBuster 14.0.79.0 2011.06.14 Rootkit.Small!dTsvDTNur+c
Additional information
MD5 : 1dc6b8a49d6be6e133f4ed90e6daf8a3
SHA1 : 7b3270cac0ac0bc3a45c7787dd56c106834831cd
File size : 8320 bytes
———————-
File name:
NSPASS2.SYS.Muestra EliStartPage v23.41
Submission date:
2011-06-14 14:58:00 (UTC)
Current status:
finished
Result:
39 /42 (92.9%)
VT Community
not reviewed
Safety score: –
Compact
Print results
Antivirus Version Last Update Result
AhnLab-V3 2011.06.15.00 2011.06.14 Win-Trojan/Downloader.8320.G
AntiVir 7.11.9.189 2011.06.14 TR/Rootkit.Gen
Antiy-AVL 2.0.3.7 2011.06.14 Trojan/Win32.Small.gen
Avast 4.8.1351.0 2011.06.14 Win32:Perkesh
Avast5 5.0.677.0 2011.06.14 Win32:Perkesh
AVG 10.0.0.1190 2011.06.14 Agent.ATAT
BitDefender 7.2 2011.06.14 Rootkit.10754
CAT-QuickHeal 11.00 2011.06.14 Rootkit.Small.go
ClamAV 0.97.0.0 2011.06.14 Trojan.Agent-66850
Commtouch 5.3.2.6 2011.06.14 W32/Perkesh.A.gen!Eldorado
Comodo 9065 2011.06.14 TrojWare.Win32.Rootkit.Small.~V
DrWeb 5.0.2.03300 2011.06.14 Trojan.KillProc.1565
Emsisoft 5.1.0.8 2011.06.14 Rootkit.Win32.Small!IK
eSafe 7.0.17.0 2011.06.14 –
eTrust-Vet 36.1.8385 2011.06.14 Win32/SybuexA!generic
F-Prot 4.6.2.117 2011.06.14 W32/Perkesh.A.gen!Eldorado
Fortinet 4.2.257.0 2011.06.14 W32/Agent.HTL!tr
GData 22 2011.06.14 Rootkit.10754
Ikarus T3.1.1.104.0 2011.06.14 Rootkit.Win32.Small
Jiangmin 13.0.900 2011.06.14 Rootkit.Small.bc
K7AntiVirus 9.106.4807 2011.06.13 Riskware
Kaspersky 9.0.0.837 2011.06.14 Trojan-Downloader.Win32.Geral.myg
McAfee 5.400.0.1158 2011.06.14 Downloader-BNM
McAfee-GW-Edition 2010.1D 2011.06.13 Downloader-BNM
Microsoft 1.6903 2011.06.13 TrojanDownloader:Win32/Perkesh.gen!A
NOD32 6207 2011.06.14 Win32/Rootkit.Agent.NHG
Norman 6.07.10 2011.06.14 W32/DLoader.TNNL
nProtect 2011-06-14.01 2011.06.14 Trojan/W32.Rootkit.8320.B
Panda 10.0.3.5 2011.06.13 Adware/GoodSearchNow
PCTools 7.0.3.5 2011.06.10 Hacktool.Rootkit!sd6
Prevx 3.0 2011.06.14 –
Rising 23.62.01.03 2011.06.14 RootKit.Win32.NsPass.a
Sophos 4.66.0 2011.06.14 Troj/NtRootK-GB
SUPERAntiSpyware 4.40.0.1006 2011.06.14 –
Symantec 20111.1.0.186 2011.06.14 Hacktool.Rootkit
TheHacker 6.7.0.1.230 2011.06.14 Trojan/Downloader.Geral.myg
TrendMicro 9.200.0.1012 2011.06.14 RTKT_BUREY.A
TrendMicro-HouseCall 9.200.0.1012 2011.06.14 RTKT_BUREY.A
VBA32 3.12.16.1 2011.06.14 Rootkit.Win32.Agent.htl
VIPRE 9581 2011.06.14 Trojan.Win32.Generic!BT
ViRobot 2011.6.14.4511 2011.06.14 Trojan.Win32.RT-Small.8320.F
VirusBuster 14.0.79.0 2011.06.14 Rootkit.Small!6Caa+E/DP/c
Additional information
MD5 : 75b1b7dd8af48269f6a08bcb0cdd9f14
SHA1 : 8a6345dc652e63ae7101385e47c2585341c203a9
File size : 8320 bytes
———————-
File name:
NSPASS3.SYS.Muestra EliStartPage v23.41
Submission date:
2011-06-14 15:01:37 (UTC)
Current status:
finished
Result:
39 /42 (92.9%)
VT Community
malware
Safety score: 0.0%
Compact
Print results
Antivirus Version Last Update Result
AhnLab-V3 2011.06.15.00 2011.06.14 Win-Trojan/Downloader.8320.G
AntiVir 7.11.9.189 2011.06.14 TR/Rootkit.Gen
Antiy-AVL 2.0.3.7 2011.06.14 Trojan/Win32.Small.gen
Avast 4.8.1351.0 2011.06.14 Win32:Perkesh
Avast5 5.0.677.0 2011.06.14 Win32:Perkesh
AVG 10.0.0.1190 2011.06.14 Agent.ATAT
BitDefender 7.2 2011.06.14 Rootkit.10791
CAT-QuickHeal 11.00 2011.06.14 Rootkit.Small.go
ClamAV 0.97.0.0 2011.06.14 Trojan.Agent-66850
Commtouch 5.3.2.6 2011.06.14 W32/Perkesh.A.gen!Eldorado
Comodo 9065 2011.06.14 TrojWare.Win32.Rootkit.Small.~V
DrWeb 5.0.2.03300 2011.06.14 Trojan.KillProc.1565
Emsisoft 5.1.0.8 2011.06.14 Rootkit.Win32.Small!IK
eSafe 7.0.17.0 2011.06.14 –
eTrust-Vet 36.1.8385 2011.06.14 Win32/SybuexA!generic
F-Prot 4.6.2.117 2011.06.14 W32/Perkesh.A.gen!Eldorado
Fortinet 4.2.257.0 2011.06.14 W32/Agent.HTL!tr
GData 22 2011.06.14 Rootkit.10791
Ikarus T3.1.1.104.0 2011.06.14 Rootkit.Win32.Small
Jiangmin 13.0.900 2011.06.14 Rootkit.Small.bc
K7AntiVirus 9.106.4807 2011.06.13 Riskware
Kaspersky 9.0.0.837 2011.06.14 Trojan-Downloader.Win32.Geral.myg
McAfee 5.400.0.1158 2011.06.14 Downloader-BNM
McAfee-GW-Edition 2010.1D 2011.06.13 Downloader-BNM
Microsoft 1.6903 2011.06.13 TrojanDownloader:Win32/Perkesh.gen!A
NOD32 6207 2011.06.14 Win32/Rootkit.Agent.NHG
Norman 6.07.10 2011.06.14 W32/DLoader.NSPJ
nProtect 2011-06-14.01 2011.06.14 Trojan/W32.Rootkit.8320.B
Panda 10.0.3.5 2011.06.13 Adware/GoodSearchNow
PCTools 7.0.3.5 2011.06.10 Hacktool.Rootkit!sd6
Prevx 3.0 2011.06.14 –
Rising 23.62.01.03 2011.06.14 RootKit.Win32.NsPass.a
Sophos 4.66.0 2011.06.14 Troj/NtRootK-GB
SUPERAntiSpyware 4.40.0.1006 2011.06.14 –
Symantec 20111.1.0.186 2011.06.14 Hacktool.Rootkit
TheHacker 6.7.0.1.230 2011.06.14 Trojan/Downloader.Geral.myg
TrendMicro 9.200.0.1012 2011.06.14 RTKT_BUREY.A
TrendMicro-HouseCall 9.200.0.1012 2011.06.14 RTKT_BUREY.A
VBA32 3.12.16.1 2011.06.14 Rootkit.Win32.Agent.htl
VIPRE 9581 2011.06.14 Trojan.Win32.Generic!BT
ViRobot 2011.6.14.4511 2011.06.14 Trojan.Win32.RT-Small.8320.F
VirusBuster 14.0.79.0 2011.06.14 Rootkit.Small!Cct9prm4pzg
Additional information
MD5 : 03ab4e9e4c3a09822341f9a89f07efce
SHA1 : 17455761650b8504fd1aca9d14413af017418604
File size : 8320 bytes
———————-
File name:
NSPASS4.SYS.Muestra EliStartPage v23.41
Submission date:
2011-06-14 15:43:26 (UTC)
Current status:
finished
Result:
39/ 42 (92.9%)
VT Community
not reviewed
Safety score: –
Compact
Print results
Antivirus Version Last Update Result
AhnLab-V3 2011.06.15.00 2011.06.14 Win-Trojan/Downloader.8320.G
AntiVir 7.11.9.189 2011.06.14 TR/Rootkit.Gen
Antiy-AVL 2.0.3.7 2011.06.14 Trojan/Win32.Small.gen
Avast 4.8.1351.0 2011.06.14 Win32:Perkesh
Avast5 5.0.677.0 2011.06.14 Win32:Perkesh
AVG 10.0.0.1190 2011.06.14 Agent.ATAT
BitDefender 7.2 2011.06.14 Rootkit.10951
CAT-QuickHeal 11.00 2011.06.14 Rootkit.Small.go
ClamAV 0.97.0.0 2011.06.14 Trojan.Agent-66850
Commtouch 5.3.2.6 2011.06.14 W32/Perkesh.A.gen!Eldorado
Comodo 9065 2011.06.14 TrojWare.Win32.Rootkit.Small.~V
DrWeb 5.0.2.03300 2011.06.14 Trojan.KillProc.1565
Emsisoft 5.1.0.8 2011.06.14 Rootkit.Win32.Small!IK
eSafe 7.0.17.0 2011.06.14 –
eTrust-Vet 36.1.8385 2011.06.14 Win32/SybuexA!generic
F-Prot 4.6.2.117 2011.06.14 W32/Perkesh.A.gen!Eldorado
Fortinet 4.2.257.0 2011.06.14 W32/Agent.HTL!tr
GData 22 2011.06.14 Rootkit.10951
Ikarus T3.1.1.104.0 2011.06.14 Rootkit.Win32.Small
Jiangmin 13.0.900 2011.06.14 Rootkit.Small.bc
K7AntiVirus 9.106.4807 2011.06.13 Riskware
Kaspersky 9.0.0.837 2011.06.14 Trojan-Downloader.Win32.Geral.myg
McAfee 5.400.0.1158 2011.06.14 Downloader-BNM
McAfee-GW-Edition 2010.1D 2011.06.13 Downloader-BNM
Microsoft 1.6903 2011.06.13 TrojanDownloader:Win32/Perkesh.gen!A
NOD32 6207 2011.06.14 Win32/Rootkit.Agent.NHG
Norman 6.07.10 2011.06.14 W32/DLoader.TNNN
nProtect 2011-06-14.01 2011.06.14 Trojan/W32.Rootkit.8320.B
Panda 10.0.3.5 2011.06.13 Adware/GoodSearchNow
PCTools 7.0.3.5 2011.06.10 Hacktool.Rootkit!sd6
Prevx 3.0 2011.06.14 –
Rising 23.62.01.03 2011.06.14 RootKit.Win32.NsPass.a
Sophos 4.66.0 2011.06.14 Troj/NtRootK-GB
SUPERAntiSpyware 4.40.0.1006 2011.06.14 –
Symantec 20111.1.0.186 2011.06.14 Hacktool.Rootkit
TheHacker 6.7.0.1.230 2011.06.14 Trojan/Downloader.Geral.myg
TrendMicro 9.200.0.1012 2011.06.14 RTKT_BUREY.A
TrendMicro-HouseCall 9.200.0.1012 2011.06.14 RTKT_BUREY.A
VBA32 3.12.16.1 2011.06.14 Rootkit.Win32.Agent.htl
VIPRE 9581 2011.06.14 Trojan.Win32.Generic!BT
ViRobot 2011.6.14.4511 2011.06.14 Trojan.Win32.RT-Small.8320.F
VirusBuster 14.0.79.0 2011.06.14 Rootkit.Agent!h6Ny7hgQCxw
Additional information
MD5 : 9a6a3939d9c299d29bd9fe9ab90a7046
SHA1 : a43c603de29dfa9baf1fa8bde0faf3983e25fe1b
File size : 8320 bytes
———————-
Dicha version del ELISTARA 23.42 que detecta y elimina estas cuatro variantes estar’a disponible en nuestra web a parttir de las 19 h CEST de hoy
saludos
ms, 14/6/2011
NOTA: Los interesados en información sobre contrato de soporte Asistencia Tecnica de SATINFO y/o licencia de uso/actualizaciones de sus utilidades, contacten con info@satinfo.es
__________
Este blog no se hace responsable de las opiniones y comentarios de los textos en los que se cita la Fuente, ofreciendo su contenido solo para facilitar el acceso a la información del mismo.
Puedes seguir cualquier respuesta a esta entrada mediante el canal RSS 2.0. Los comentarios y los pings están cerrados.
Los comentarios están cerrados.