Para ver Todo el contenido del foro es necesario estar Registrado! 
Miér Dic 22, 2010 11:07 am
Bueno les traigo este crypter que modeo K20, asi que creditos a el. espero lo disfruten!
------------------------------------------------------------------
INFO
Scans:
STUB ANTES:
File Info
Report date: 2010-12-20 21:29:36 (GMT 1)
File name: stub-original-exe
File size: 238080 bytes
MD5 Hash: 24dfb1a56372f69de63cfb58b108c019
SHA1 Hash: 2af876b95d08349582c025d904d07def94234ba9
Detection rate: 8 on 16 (50%)
Status: INFECTED
Detections
a-squared - Virus.Win32.CeeInject!IK
Avast -
AVG - Dropper.Generic2.BYHC
Avira AntiVir - TR/Spy.ZBot.PI
BitDefender - Backdoor.Bot.131780
ClamAV -
Comodo -
Dr.Web -
F-PROT6 - W32/Buzus.VD
Ikarus T3 - Virus.Win32.CeeInject
Kaspersky -
NOD32 -
Panda - Suspicious file
TrendMicro -
VBA32 -
VirusBuster - Trojan.Injector!fO3PEuj93nY
Scan report generated by
[Tienes que estar registrado y conectado para ver este vínculo]
STUB DESPUES:
File Info
Report date: 2010-12-22 00:07:05 (GMT 1)
File name: stub-exe
File size: 242176 bytes
MD5 Hash: 8682c0d0da1094bdc10fca2d23ff73be
SHA1 Hash: 7c2b26aa7a464257e4991697bccbaab06b8df228
Detection rate: 0 on 16 (0%)
Status: CLEAN
Detections
a-squared -
Avast -
AVG -
Avira AntiVir -
BitDefender -
ClamAV -
Comodo -
Dr.Web -
F-PROT6 -
Ikarus T3 -
Kaspersky -
NOD32 -
Panda -
TrendMicro -
VBA32 -
VirusBuster -
Scan report generated by
[Tienes que estar registrado y conectado para ver este vínculo]
SERVER SPY-NET 2.6 CRYPTED:
File Info
Report date: 2010-12-22 00:59:33 (GMT 1)
File name: spynet-exe
File size: 524855 bytes
MD5 Hash: f9a451c70a1987995bc7d8cccfa1ae25
SHA1 Hash: 2f56e622b275095ae33d9feea2f0373e6f5e9155
Detection rate: 0 on 16 (0%)
Status: CLEAN
Detections
a-squared -
Avast -
AVG -
Avira AntiVir -
BitDefender -
ClamAV -
Comodo -
Dr.Web -
F-PROT6 -
Ikarus T3 -
Kaspersky -
NOD32 -
Panda -
TrendMicro -
VBA32 -
VirusBuster -
Scan report generated by
[Tienes que estar registrado y conectado para ver este vínculo]
DESCARGA: [Tienes que estar registrado y conectado para ver este vínculo]
PASS:
*encriptación: ROT69 -> REVERSE -> RXBOT -> BINARY
Comentar es agradecer!
------------------------------------------------------------------
INFO
* Testeado en Windows 7 y en Windows XP SP3 y funcional
* Método de encriptación XOR y la opción "NO Sandbox & VM" no funcional, al menos a mi no me funcionaron
* El cambiador de icono lo probe con uno y me rompio asique no creo que funcione aunque podeis intentarlo
Scans:
STUB ANTES:
File Info
Report date: 2010-12-20 21:29:36 (GMT 1)
File name: stub-original-exe
File size: 238080 bytes
MD5 Hash: 24dfb1a56372f69de63cfb58b108c019
SHA1 Hash: 2af876b95d08349582c025d904d07def94234ba9
Detection rate: 8 on 16 (50%)
Status: INFECTED
Detections
a-squared - Virus.Win32.CeeInject!IK
Avast -
AVG - Dropper.Generic2.BYHC
Avira AntiVir - TR/Spy.ZBot.PI
BitDefender - Backdoor.Bot.131780
ClamAV -
Comodo -
Dr.Web -
F-PROT6 - W32/Buzus.VD
Ikarus T3 - Virus.Win32.CeeInject
Kaspersky -
NOD32 -
Panda - Suspicious file
TrendMicro -
VBA32 -
VirusBuster - Trojan.Injector!fO3PEuj93nY
Scan report generated by
[Tienes que estar registrado y conectado para ver este vínculo]
STUB DESPUES:
File Info
Report date: 2010-12-22 00:07:05 (GMT 1)
File name: stub-exe
File size: 242176 bytes
MD5 Hash: 8682c0d0da1094bdc10fca2d23ff73be
SHA1 Hash: 7c2b26aa7a464257e4991697bccbaab06b8df228
Detection rate: 0 on 16 (0%)
Status: CLEAN
Detections
a-squared -
Avast -
AVG -
Avira AntiVir -
BitDefender -
ClamAV -
Comodo -
Dr.Web -
F-PROT6 -
Ikarus T3 -
Kaspersky -
NOD32 -
Panda -
TrendMicro -
VBA32 -
VirusBuster -
Scan report generated by
[Tienes que estar registrado y conectado para ver este vínculo]
SERVER SPY-NET 2.6 CRYPTED:
File Info
Report date: 2010-12-22 00:59:33 (GMT 1)
File name: spynet-exe
File size: 524855 bytes
MD5 Hash: f9a451c70a1987995bc7d8cccfa1ae25
SHA1 Hash: 2f56e622b275095ae33d9feea2f0373e6f5e9155
Detection rate: 0 on 16 (0%)
Status: CLEAN
Detections
a-squared -
Avast -
AVG -
Avira AntiVir -
BitDefender -
ClamAV -
Comodo -
Dr.Web -
F-PROT6 -
Ikarus T3 -
Kaspersky -
NOD32 -
Panda -
TrendMicro -
VBA32 -
VirusBuster -
Scan report generated by
[Tienes que estar registrado y conectado para ver este vínculo]
DESCARGA: [Tienes que estar registrado y conectado para ver este vínculo]
PASS:
- Código:
011110110011000100110010001101110010110000111001001101100010
110000101101001110000011000100101100001110000011011100101100
001100110011001100101100001011010011100000110010001011000010
110100110001001100100011010000101100001100100011010000101100
001011010011010000110011001011000011100000110111001011000011
010100110010001011000010110100110010001101100010110000110001
001100010011011100101100001101110011001000101100001011010011
001000111000001011000010110100111001001110010010110000101101
001100010011011100101100001011010011100000110111001011000011
000100110001001101010010110000101101001101000011100000101100
001011010011000100101100001011010011000100110000001101000010
110000101101001100100011000000101100001100010011010000101100
001011010011000100110001001101110010110000110011001100000010
110000101101001100010011000100110101001011000010110100111001
0011000100101100001100000111110100111011
*encriptación: ROT69 -> REVERSE -> RXBOT -> BINARY
Comentar es agradecer!
