hicham

hicham's malware submissions

38 posts in this topic

http://www63.zippyshare.com/v/60818282/file.html

:) i hope to add this signatures

it's too dangers

i can't download it and upload because my isp too bad internet

but i help emsisoft what i can

0

Share this post


Link to post
Share on other sites

[url="http://www20.zippyshare.com/v/72479754/file.html"]http://www20.zippyshare.com/v/72479754/file.html[/url]

this 3 simple too

0

Share this post


Link to post
Share on other sites

http://www63.zippyshare.com/v/60818282/file.html

:) i hope to add this signatures

it's too dangers

i can't download it and upload because my isp too bad internet

but i help emsisoft what i can

There's no undetected malware. All files has been detected by EAM.

Again, please follow our guidelines. No need to password protected archive!

0

Share this post


Link to post
Share on other sites

i take it from bit defender forum

in virus total i see emsisoft don't detect it

at all all what i mean i need to help

thanks bro and good luck

0

Share this post


Link to post
Share on other sites

Yes we are very appreciate your help. But please read and follow our guidelines carefully.

0

Share this post


Link to post
Share on other sites

password unrar = sa3eka

good luck

this pass for new people may be they will download directly and their pc it will infected

because this kind of virus to danger

0

Share this post


Link to post
Share on other sites

Please read and follow our guidelines!

File is already detected. See this latest report:

https://www.virustotal.com/file/f75e3f2c4bab1cb642ce5087f126d28c733260ec4a997c6a09bd160cde626788/analysis/1341420373/

Your VT report is 2 days ago, you need to re-scan the file to make sure it's not detected by Emsisoft.

password unrar = sa3eka

good luck

this pass for new people may be they will download directly and their pc it will infected

because this kind of virus to danger

File is password protected!

Only experts member are able to download the file, so you don't need to worry about that.

0

Share this post


Link to post
Share on other sites

happy to hear that bro :) i was tryiing emsisoft detect it may be i don't do the updates

at all there's a trojan downloader im waiting my friend he will send me it

i hope to help me how to Test this malwares and trojans in good places secure no afraid from infected ?

virtual box with shadow deffender 100 Secure ?

0

Share this post


Link to post
Share on other sites

Thank you for your submission. A database update has already been issued and will be available via online update within the next minutes.

0

Share this post


Link to post
Share on other sites

2a38bf71936a1b7d211066a924bc85a6.png

i stop my internet now it will be normal

39f540cfc4d69ecbae126dd7654862ab.png

9e249ff1acf08d839a75597a522d7c05.png

7c749379b374e4eb36bf492923cabe52.png

using real player icon

d349d26ef5966763b3f3fb3dab211cbe.png

lol using system memory

c486bf642d777784895e5d35688703e7.png

bbb7eaca0f136ac571819d36a3980421.png

lol

d992193412e18625e1b6bfe170526431.png

lol he want injection with mozilla firefox

e750cb4bd06f099232126c9584e5dc17.png

injection with firefox

3944e31682b9c55451a09e6847e4c1d3.png

lol

8e9e2ebeecd3b29fe4d547d84a2d2f6e.png

lol his place injection

C:\WINDOWS\InstallDir

0

Share this post


Link to post
Share on other sites

there's a password in file so the file automatiquler from the paker it will unpack to system32 after 10 min from download

it's so danger file

we need Anti SFX password chifrax trojans

0

Share this post


Link to post
Share on other sites

the file is too danger

if it says password SFX unpacker Because this's the idea from the hacker to add a time to unpack automatiquler in your system32

and hack with hidden prossess

and getting a injection with svshost.exe and mozilla firefox.exe

good luck arief im sure u will get it :)

0

Share this post


Link to post
Share on other sites

No malware was detected in the download you linked to.

Nevertheless, if you suspect a URL to download malicious files onto a computer, then please attach a text file containing the link so nobody can accidentally click it and get infected that way. Also, as explained here, please try to attach the actual file together with a Virustotal scan. These rules were already pointed out to you several times, so please try to follow them. If they are not clear to you somehow, then please let us know which part you don't understand so we can clarify it.

0

Share this post


Link to post
Share on other sites

i scan the file of setup virus total says it's malware

go scan umplayer setup file and tell me what you see

0

Share this post


Link to post
Share on other sites

This is the VT scan of the URL you linked to: https://www.virustotal.com/url/cab7d62b7c5ea110d4a6266038b77ee885e8de7c1008755a7ab3579a6959e589/analysis/1341821329/

This is the VT scan of the downloaded file: https://www.virustotal.com/file/42bd491bb424857f539f815e0d7557942750b645b5aa5239bc613523a562fb04/analysis/1341821250/

On top of that I analysed the installer and nothing malicious or undesirable was dropped/installed.

0

Share this post


Link to post
Share on other sites

This file is Virtumonde virus!

This is Rogue.

#malware #drivebydownload

Posted 7 months, 2 weeks ago by anonymous

look in the comments in virus total

that anonymous he's from admins of virus total

always he says the truth

0

Share this post


Link to post
Share on other sites

#4 Elise

ok at all thanks for help i love romania :) i have a friend from There

named alex :)

0

Share this post


Link to post
Share on other sites

A malware back track web site to hack cookies and steal them from cookies

:)

i hope to see and add the suspious files on it in black list

We Trust you emsisoft

the Best

protect us

0

Share this post


Link to post
Share on other sites

Thank you for your submission. I will look into it as soon as possible.

0

Share this post


Link to post
Share on other sites

Yes, its indeed zbot and has been added to the database, thank you!

0

Share this post


Link to post
Share on other sites

Elise i will work in this Team soon :) i will try to submit all files which EAM don't detected them

:) Remember to help me to join this team :)

good luck bro

0

Share this post


Link to post
Share on other sites

File: linun.exe

CRC-32: 3b4cac9b

MD4: 078b854463c5c332884f6d3b5623c36d

MD5: 6c1995fdd1e90fb013e6390cf68c3ef4

SHA-1: 588ea8bad35166cb1b13dadcfed2ff2833968d46

lol with Fake Digitale signature

that file need to use internet explorer to download more malwares

this kind (Zbot) yasterday i submit it and update for it

but i see the file created too in application data with another hash and md5

so please add this new version too

14/42

https://www.virustotal.com/file/6c43dd38ca919091b09a75e635cd7f81bc951a9bf5e74d19c6bf57f8172a6e6c/analysis/1347360848/

0

Share this post


Link to post
Share on other sites

The file has been added to database since yesterday. You can scan the file to know whether the file already detected or not.

0

Share this post


Link to post
Share on other sites

arief Prabowo The problem not add it to database because the file has a auto md5 Changer

i was upload it in virustotal and get emsisoft already detect and catch it

but after that i see in appdata the same file with fake digital signature and another md5

scan with The emsisoft not detected

i sent it yasterday and you add it

i hope it's detected at all no change again :(

0

Share this post


Link to post
Share on other sites

Zeroday malware Trojan.(ZeroAccess)HT

File: malware.avi.exe

CRC-32: 1ac7f28a

MD4: 32b9bf964d6ab2f2dad448e48099177b

MD5: bbe20cd362b5b15ffc62fa9a8c1f9af9

SHA-1: 924ebcdea2fa9abba999bf78a1b88c519b4735c1

https://www.virustotal.com/file/82fd68a7155f8b0a818c05522682ad2b113618b861d23f3925bfd432363cad6f/analysis/1347460624/

0

Share this post


Link to post
Share on other sites

lol The same Zbot with another Md5 not detected

need to new Generation which detected the file if that change The informations

File: GjTagQc.exe

CRC-32: 8793f1be

MD4: 37d1a03c757ee560b82b20747991bc05

MD5: 29bf648581ce4e9d371701c487db22e5

SHA-1: b5380e132bbcfaf3c549aff3864d17ee6e6da6b5

https://www.virustotal.com/file/35f8ee4238f409ee42f8eee1578e9b1dc127d349bd900e56b70e472e3be7013c/analysis/1347461878/

0

Share this post


Link to post
Share on other sites

Thank you for your submission. A database update has already been issued and will be available via online update within the next minutes.

0

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now

  • Recently Browsing   0 members

    No registered users viewing this page.