VARIANTE DE RANSOMWARE CRYPTOWALL (alias TESLACRYPT y CROWTI) CAZADO POR LA HEURISTICA DEL ELISTARA

Otra muestra pedida por el ELISTARA pasa a ser controlada especificamente a partir del ELISTARA 33.07 de hoy

El preanalisis de virustotal ofrece el siguiente informe:

MD5 003fc153b561c10e68f784a907291e80
SHA1 83588a8895df9d6edfd1c847a79db68f8fa22cc8
File size 205.3 KB ( 210202 bytes )
SHA256: aa017391d41d275547f57af027f7bb3ef6381d88095fdceb98ab52fcb633ca8b
File name: 41A1D5AC.EXE.Muestra EliStartPage v33.04
Detection ratio: 32 / 56
Analysis date: 2015-10-05 08:07:45 UTC ( 3 minutes ago )

0 1
Antivirus Result Update
ALYac Trojan.GenericKD.2765931 20151005
AVG Inject3.HUM 20151005
AVware Trojan.Win32.Generic!BT 20151005
Ad-Aware Trojan.GenericKD.2765931 20151005
AhnLab-V3 Trojan/Win32.CryptoWall 20151004
Antiy-AVL Trojan/Win32.TSGeneric 20151005
Arcabit Trojan.Generic.D2A346B 20151005
Avira TR/Crypt.Xpack.287082 20151005
BitDefender Trojan.GenericKD.2765931 20151005
Bkav HW32.Packed.9E5E 20151003
CAT-QuickHeal Ransom.Tescrypt.MUE.A4 20151003
DrWeb Trojan.Encoder.514 20151005
ESET-NOD32 Win32/Filecoder.CO 20151005
Emsisoft Trojan.GenericKD.2765931 (B) 20151005
F-Secure Trojan:W32/TeslaCrypt.A 20151005
Fortinet W32/Filecoder.CO!tr 20151005
GData Trojan.GenericKD.2765931 20151005
Ikarus Trojan.Win32.Filecoder 20151005
K7AntiVirus Trojan ( 004b96871 ) 20151005
K7GW Trojan ( 004b96871 ) 20151005
Kaspersky UDS:DangerousObject.Multi.Generic 20151005
Malwarebytes Ransom.CryptoWall 20151005
McAfee Artemis!003FC153B561 20151005
McAfee-GW-Edition Artemis!Trojan 20151004
MicroWorld-eScan Trojan.GenericKD.2765931 20151005
Microsoft Ransom:Win32/Crowti.A 20151005
Panda Trj/CI.A 20151004
Qihoo-360 HEUR/QVM07.1.Malware.Gen 20151005
Sophos Mal/Tinba-O 20151005
Symantec Trojan.Cryptodefense 20151004
VIPRE Trojan.Win32.Generic!BT 20151005
nProtect Trojan.GenericKD.2765931 20151002

Dicha version del ELISTARA 33.07 que lo detecta y elimina, estará disponible en nuestra web a partir de las 19 h CEST de hoy

saludos

ms,5-10-2015