NUEVA VARIANTE DE KEYLOGGER BLADABINDI

A partir del ELISTARA 32.64 de hoy pasamos a controlar esta nueva variante de keylogger

El preanalisis de virustotal ofrece el siguiente informe:

MD5 adf2ec2a52aa6d9445235f4fc924d8c8
SHA1 ede78f58f8e03d89be2a3c7bbc138a3b5cb2ce79
File size 139.0 KB ( 142336 bytes )

SHA256: e361565ac9aa39f4e49042c4e11bbc4283a4aedc734854282ce097b8ce33e857
File name: Confuser v1.9.0.0.exe
Detection ratio: 27 / 55
Analysis date: 2015-07-06 08:53:39 UTC ( 32 minutes ago )

0 1
Antivirus Result Update
AVG MSIL8.APAN 20150706
Ad-Aware Trojan.GenericKD.2540937 20150706
Antiy-AVL Trojan[:HEUR]/Win32.AGeneric 20150706
Arcabit Trojan.Generic.D26C589 20150706
Avast Win32:Malware-gen 20150706
Avira TR/Krypt.142336.49 20150706
Baidu-International Adware.MSIL.iBryte.BEW 20150706
BitDefender Trojan.GenericKD.2540937 20150706
Cyren W32/GenBl.ADF2EC2A!Olympus 20150706
DrWeb BackDoor.Bladabindi.1056 20150706
ESET-NOD32 a variant of MSIL/Kryptik.BEW 20150706
Emsisoft Trojan.MSIL.Kryptik (A) 20150706
F-Secure Trojan.GenericKD.2540937 20150706
Fortinet W32/Generic.BEW!tr 20150706
Ikarus Trojan.MSIL.Crypt 20150706
K7AntiVirus Trojan ( 004b6e9a1 ) 20150706
K7GW Trojan ( 004b6e9a1 ) 20150706
Kaspersky HEUR:Trojan.Win32.Generic 20150706
McAfee RDN/Generic.dx!d2q 20150706
McAfee-GW-Edition RDN/Generic.dx!d2q 20150705
MicroWorld-eScan Trojan.GenericKD.2540937 20150706
NANO-Antivirus Trojan.Win32.Bladabindi.dtnbju 20150706
Qihoo-360 HEUR/QVM03.0.Malware.Gen 20150706
Rising PE:Trojan.Win32.Generic.18D837B9!416823225 20150705
Sophos Mal/Generic-S 20150706
Symantec WS.Reputation.1 20150706
Tencent Win32.Trojan.Generic.Lsby 20150706

Dicha version del ELISTARA 32.64 que lo detecta y elimina, estará disponible en nuestra web a partir de las 18 h CEST de hoy
saludos

ms, 6-7-2015