This Trojan (MD5: cae4cd615c4e83c3123dcaeaa84a7bd5) Destroy files from your drives.
-=[ ProtectionID v0.6.4.0 JULY]=-
(c) 2003-2010 CDKiLLER & TippeX
Build 07/08/10-17:57:05
Ready...
Scanning -> C:\Documents and Settings\Xylitol\Bureau\G.exe.vir
File Type : 32-Bit Exe (Subsystem : Win GUI / 2), Size : 352478 (0560DEh) Byte(s)
-> File has 222 (0DEh) bytes of appended data starting at offset 056000h
[File Heuristics] -> Flag : 00000000000000001100010000100110 (0x0000C426)
[!] ASProtect SKE v2.3 - v2.5 detected !
- Scan Took : 0.968 Second(s)
(c) 2003-2010 CDKiLLER & TippeX
Build 07/08/10-17:57:05
Ready...
Scanning -> C:\Documents and Settings\Xylitol\Bureau\G.exe.vir
File Type : 32-Bit Exe (Subsystem : Win GUI / 2), Size : 352478 (0560DEh) Byte(s)
-> File has 222 (0DEh) bytes of appended data starting at offset 056000h
[File Heuristics] -> Flag : 00000000000000001100010000100110 (0x0000C426)
[!] ASProtect SKE v2.3 - v2.5 detected !
- Scan Took : 0.968 Second(s)
Well the unpack was fun with VolX :þ
Original file - 20/42 >> 47.6%
http://www.virustotal.com/file-scan/report.html?id=5639defaba3600a1f2f99114ae1020dfa9883ba8bfc7103b4cd5f3607689d277-1305373798
Unpacked version - 8/43 >> 18.6%
https://www.virustotal.com/file-scan/report.html?id=0fc27eae1dd5b245e1e7105138a595627293b3a72a425a757b666a42c1bcd26b-1305377088
I've wanted to see how it proceed for deletes all files and.. i was disappointed.
It's powered by a 'Batch 2 exe'
Remember me this fail: DSC0912637.scr ? Don't Worry...
Another work of pure genius, LOL.
how can I download this to test?
ReplyDelete