Ask Your Question

Revision history [back]

click to hide/show revision 1
initial version

asked 2018-09-05 10:50:32 +0000

lmt gravatar image

Trojan found by VirusTotal scan in Windows 64 bit installer

I ran a VirusTotal check on the latest downloader a few days ago and again today, alerted WireShark on Twitter, but not response or new file.

https://www.virustotal.com/#/file/40701d569f75ba08bd3fb9d79e6841095d6d3001e5d8f1e9f50c996bcf0657ff/detection

A user called PayloadSecurity on 2018-08-31 helpfully added this to the VirusTotal comments:

banker #ramnit

submitname:"40701d569f75ba08bd3fb9d79e6841095d6d3001e5d8f1e9f50c996bcf0657ff.exe.bin" falcon-threatscore:55/100 memurl:"Pattern match: http://nsis.sf.net/NSIS_Error,Pattern match: 8.NM/MaC=,Heuristic match: chmCssvK.AX,Heuristic match: h-oq?a.sk,Heuristic match: #Tk/hJ.mK,Heuristic match: 7M+zOm.gu" source:https://www.hybrid-analysis.com/sample/40701d569f75ba08bd3fb9d79e6841095d6d3001e5d8f1e9f50c996bcf0657ff?environmentId=120

Trojan found by VirusTotal scan in Windows 64 bit installer

I ran a VirusTotal check on the latest downloader a few days ago and again today, alerted WireShark on Twitter, but not response or new file.

https://www.virustotal.com/#/file/40701d569f75ba08bd3fb9d79e6841095d6d3001e5d8f1e9f50c996bcf0657ff/detection

A user called PayloadSecurity on 2018-08-31 helpfully added this to the VirusTotal comments:

banker #ramnit

submitname:"40701d569f75ba08bd3fb9d79e6841095d6d3001e5d8f1e9f50c996bcf0657ff.exe.bin" falcon-threatscore:55/100 memurl:"Pattern match: http://nsis.sf.net/NSIS_Error,Pattern match: 8.NM/MaC=,Heuristic match: chmCssvK.AX,Heuristic match: h-oq?a.sk,Heuristic match: #Tk/hJ.mK,Heuristic match: 7M+zOm.gu" source:https://www.hybrid-analysis.com/sample/40701d569f75ba08bd3fb9d79e6841095d6d3001e5d8f1e9f50c996bcf0657ff?environmentId=120