Variante de keylogger Bladabindi que pasamos a controlar con ELISTARA

Otra variante de este Keylogger pasa a ser controlado a partir del ELISTARA 32.87 de hoy

El preanalisis de virustotal ofrece el siguiente informe:

MD5 7a81eb65b4e2067b29651c54d653a82a
SHA1 078421e61c18c7fe537e9df6c32f15df47f9116d
File size 231.5 KB ( 237056 bytes )
SHA256: f87577a2a02bd1f1d81c945c0572d709979245191672a6d7c23d2cfe8f660300
File name: javaaccept.exe
Detection ratio: 32 / 56
Analysis date: 2015-09-03 11:32:10 UTC ( 3 hours, 15 minutes ago )

0 1

Antivirus Result Update
ALYac Trojan.GenericKD.2624015 20150903
AVG MSIL8.BNRP 20150903
AVware Trojan.Win32.Generic!BT 20150901
Ad-Aware Trojan.GenericKD.2624015 20150903
Agnitum Backdoor.Androm!8eI2s33dbT4 20150901
Arcabit Trojan.Generic.D280A0F 20150903
Avast Win32:Malware-gen 20150903
Avira TR/Dropper.MSIL.180260 20150903
Baidu-International Trojan.MSIL.Injector.LEO 20150903
BitDefender Trojan.GenericKD.2624015 20150903
Cyren W32/Trojan.JBRP-5489 20150903
ESET-NOD32 a variant of MSIL/Injector.LEO 20150903
Emsisoft Trojan.GenericKD.2624015 (B) 20150903
F-Secure Trojan.GenericKD.2624015 20150903
Fortinet MSIL/LEO!tr 20150903
GData Trojan.GenericKD.2624015 20150903
Ikarus Trojan.MSIL.Injector 20150903
K7AntiVirus Trojan ( 004cca191 ) 20150903
K7GW Trojan ( 004cca191 ) 20150903
Kaspersky Backdoor.Win32.Androm.hyhu 20150903
Malwarebytes Trojan.Inj.LEO 20150903
McAfee Artemis!7A81EB65B4E2 20150903
McAfee-GW-Edition BehavesLike.Win32.BackdoorNJRat.dc 20150903
MicroWorld-eScan Trojan.GenericKD.2624015 20150903
Panda Generic Suspicious 20150902
Qihoo-360 HEUR/QVM03.0.Malware.Gen 20150903
Sophos Mal/Generic-S 20150903
Symantec Suspicious.Cloud.9 20150902
Tencent Msil.Trojan.Dropper.Ajlp 20150903
TrendMicro TROJ_GEN.R01TC0VHC15 20150903
VIPRE Trojan.Win32.Generic!BT 20150903
nProtect Trojan.GenericKD.2624015 20150902

Dicha version del ELISTARA 32.87 que lo detecta y elimina, estará disponible en nuestra web a partir de las 19 h CEST de hoy

saludos

ms, 3-9-2015