태터데스크 관리자

도움말
닫기
적용하기   첫페이지 만들기

태터데스크 메시지

저장하였습니다.

보안관련소식2011.03.04 20:51


어제부터 철야 비상 대응 근무를 하면서 "3.3 DDoS" 라는 용어를 처음 사용했는데, 다른 업체분들도 동일하게 사용하기 시작해 주시니 나름 뿌듯(?)하네요!  

자 그럼 각 업체별로 수집된 14개의 악성파일 진단(명) 내용을 나름대로 정리해 봅니다. (알파벳 순서)

Alyac Anti-Virus (http://alyac.altools.co.kr/SecurityCenter/Analysis/NoticeView.aspx?id=90)

01. bobo.exe Trojan.Downloader.Agent.33D
02. host.dll Trojan.Dropper.Agent.nthost
03. meitsvc.dll Backdoor.DllBot.gen
04. ntcm63.dll Trojan.Dropper.Agent.nthost
05. ntgg55.dll Trojan.Dropper.Agent.nthost 
06. rtdrvupr.exe Trojan.Agent.hosts
07. rtdrvupe_2.exe Trojan.Agent.hosts
08. SBUpdate.exe Trojan.Downloader.Agent.33D
09. SBUpdate_2.exe Trojan.Downloader.Agent.33D
10. setup.exe Trojan.Downloader.Agent.33D
11. sfofsvc.dll Trojan.Agent.docCrypt
12. stensvc.dll Trojan.Agent.docCrypt
13. wricsvc.dll Backdoor.Dllbot.gen
14. wsfcsvc.dll Backdoor.Dllbot.gen

Hauri Anti-Virus (http://hauri.co.kr/customer/security/alert_view.html?intSeq=82&page=1)

01. bobo.exe Trojan.Win32.Downloader.11776
02. host.dll Trojan.Win32.QHost.118784
03. meitsv.dll Trojan.Win32.Generic.71008
04. ntcm63.dll Trojan.Win32.QHost.131072
05. ntgg55.dll Trojan.Win32.QHost.126976
06. rtdrvupr.exe Trojan.Win32.QHost.16384
07. rtdrvupr_2.exe Trojan.Win32.QHost.16384
08. SBUpdate.exe Trojan.Win32.Downloader.10240
09. SBUpdate_2.exe Trojan.Win32.Downloader.11776
10. setup.exe Trojan.Win32.Downloader.20480
11. sfofsvc.dll Trojan.Win32.Generic.46432
12. stensvc.dll Trojan.Win32.Generic.46432
13. wricsvc.dll Trojan.Win32.Obfuscated.40960
14. wsfcsvc.dll Trojan.Win32.Obfuscated.40960

nProtect Anti-Virus (http://erteam.nprotect.com/131)

01. bobo.exe Trojan/W32.Agent.11776.OG
02. host.dll Trojan/W32.Agent.118784.ACE
03. meitsvc.dll Trojan/W32.Dllbot.71008
04. ntcm63.dll Trojan/W32.Agent.131072.YG
05. ntgg55.dll Trojan/W32.Agent.126976.XY
06. rtdrvupr.exe Trojan/W32.Agent.16384.ALF
07. rtdrvupr_2.exe Trojan/W32.Agent.16384.ALF
08. SBUpdate.exe Trojan/W32.Agent.10240.OO
09. SBUpdate_2.exe Trojan/W32.Agent.11776.OF
10. setup.exe Trojan/W32.Agent.20480.AZR
11. sfofsvc.dll Trojan/W32.Dllbot.46432
12. stensvc.dll Trojan/W32.Agent.46416.B
13. wricsvc.dll Trojan/W32.Agent.42320
14. wsfcsvc.dll Trojan/W32.Dllbot.40960

V3 Anti-Virus (http://blog.ahnlab.com/ahnlab/1059)

01. bobo.exe Win-Trojan/Agent.11776.VK
02. host.dll Win-Trojan/Agent.118784.AAU
03. meitsvc.dll Win-Trojan/Ddosagen.71008
04. ntcm63.dll Win-Trojan/Agent.131072.WL
05. ntgg55.dll Win-Trojan/Ddosagent.126976
06. rtdrvupr.exe Win-Trojan/Ddosagen.16384
07. rtdrvupe_2.exe Win-Trojan/Ddosagen.16384
08. SBUpdate.exe Win-Trojan/Npkon.10240
09. SBUpdate_2.exe Win-Trojan/Agent.11776.VJ
10. setup.exe Win-Trojan/Ddosagen.20480
11. sfofsvc.dll Win-Trojan/Agent.46432.D
12. stensvc.dll Win-Trojan/Ddosagen.46416
13. wricsvc.dll Win-Trojan/Ddosagen.42320
14. wsfcsvc.dll Win-Trojan/Agent.40960.BOH

사용자 삽입 이미지


Posted by viruslab

댓글을 달아 주세요