New virus for the Grinder

system · December 3, 2010, 10:24pm

hxxp://rogueprojects.org/TRash/vslujqusk.zip
~450 Kb, WARNING: This IS a virus, do not open unless you are a virus collector or avast dev team

Infected user temp folder. Avast detected a threat(incoming) but failed to eliminate threat. After virus installed itself, disabled avast, changed proxy settings, disabled task manager.

Found virus in safe mode and placed here for the grinder. Note: after renaming, avast scanned the exe and found it clean. Read: This was a FAIL on Avast’s part to recognize the virus.

Virus Origin: piratebay.org(home search bar)

Pondus · December 3, 2010, 10:31pm

dont post download links to malware in the forum. please remove the link

next time send to virus@avast.com in a password protected zip.file with subject: undetected sample and password: infected

Pondus · December 3, 2010, 10:36pm

Samples detected by Malwarebytes as Trojan.FakeAV

VirusTotal - 00160711_old.exe - 3/43
http://www.virustotal.com/file-scan/report.html?id=9bcda6fb3a1705ba18c8f5823949deb59add5d9e987b80de617d99145dcc499e-1291415226

VirusTotal - vhmhkslaffm_old.exe - 3/43
http://www.virustotal.com/file-scan/report.html?id=9bcda6fb3a1705ba18c8f5823949deb59add5d9e987b80de617d99145dcc499e-1291415237

Samples are sendt to avast! …

misak · December 3, 2010, 11:19pm

thank you for samples… will be detected in VPS 101204-0

New virus for the Grinder

Announcements