[Community-sigs] Win.Adware.Amonetize
Douglas Goddard
dgoddard at sourcefire.com
Fri May 15 11:23:40 EDT 2015
Thank you! This will be reviewed and FP checked today, and will likely be
published on Monday.
On Fri, May 15, 2015 at 11:07 AM, Arnaud Jacques / SecuriteInfo.com <
webmaster at securiteinfo.com> wrote:
> Hello,
>
> Win.Adware.Amonetize:1:EP+0:e8????
>
> 0000e995feffff8bff558bec83ec208b450856576a0859beb80442008d7de0f3a58945f88b450c5f8945fc5e85c0740cf600087407c745f4004099018d45f450ff75f0ff75e4ff75e0ff152c014200c9c20800cccccccccccccccccccc8b4c2404f7c10300000074248a0183c10184c0744ef7c10300000075ef05000000008da424000000008da424000000008b01bafffefe7e03d083f0ff33c283c104a90001018174e88b41fc84c0743284e47424a90000ff007413a9000000ff7402ebcd8d41ff8b4c
>
> Number of samples detected by the signature : 2150
>
> MD5 of detected samples (just a few) :
> b74be10ff3ddfb45000cb0fc060b5e4f
> a56bea610004ab9e99a9a5761b0a9249
> 4bae5dc94b7bbc8cf3818106c8ce5d6a
> ccf8c72eefcfe6b850e2d41c110754e2
> 125c66ce8b803ff16a0b0e5818c19e9b
> 613d8aabffdce897f1034853b8b20401
> 3b8ede64dcfccd4b4376c2e822bec532
> 9a89ace12e6c5c7f865e46c980349551
> ee937bd99fd055db746d805499f6f9f5
> 53505f0826a184a95d5d898682f3c512
> 1bd346a2b7687b98069961dee951bd99
> 95776a610dc763794b37b1eef6eae69c
> 5dc7f9f4fcc261945472ae33f386c149
> cfbe7edf9c55777e7ecb45a9d716c1a3
> 6457baec3c8c11b2f1a6021ab369b61e
> cecbb89690755ceae843e7d08bb1a35e
> c78e7c5fe0127d9576dbdedc33bd5ed8
> ab4c5a2bfac5eb3fa23d0c49eb64714d
> c093cc89481f3c86067673d673220ce6
> 783ba5ae7c74a8963b80051c21e2a754
> 53b3df4e8ef9b826708dbb4f632c8669
> 835a399e14f69a1bdfd350b36287e053
> 0b873a932887432914cd59a8f6b150ea
> 7705508c48fcd69795cc89e7f8018be1
> 7a00dda0487926de992e266e2c47af31
> f6ee8dbf4bb990bf8331fd6224a07633
> 1852567dcc5d5d9bf74089de55e0f606
> 68de2adf9a262c4ecd4bb68adcba2c98
> 4c812e9b5d257b7adba62d62e655edac
> 19a67f20a4bfbf38c91210dd9e56ac79
> 232b81a2b9cf5b94736cfe9c68a415dd
> 45d1771b05be5abd359f5a6a3244d170
> 01af23ef766bdaf5460cd416f3f0c2aa
> 73760e9fae6ee3fa1b26275be4002114
> 1f265667b3183f084d1b272e9f950f8a
> 58290189561ea43dd06b2146dabe8e8a
> c494c555f4bff8ca438edc0fd03220cc
> b45539047194848e343f41cb326209ce
> b18b03ed5e814a3cf2edc36b9f465c17
> ed6c0ed9af0f0b80d0555a0a983e9148
> f8229f35ef698b44e53b2a92dd24bab8
> 33e481b54cccde70502f539408e6b1fb
> f4bb3ac7621872f7d76aa0db284111e4
> e90d10bc2b025e2dce718a7e2e688d07
> e7b477f5c8cda2ddbc1e7327eae81662
> 2061ff1cfec095adbee1631ee7369342
> 52c96fda53783024535e55e3d7e0852e
> b83817f9e7f3c89109d1a9f743c588c0
> f9d6336f851fe130dceb304e43b4bd2f
> 7ce6b4dd4f137a312c4b87380b9bcb45
> ffc4b073488353ae843a6507c64b2ae6
> f4f4b1969a029057fb2528425a89171a
> 8ffe5428cb5d7c0244f0bea50c4f9ef2
> f46544d9017c6d22df31cb895448f25f
> cc512aaf1efadfbaba18663a9b993f7a
> 368e3029bb2d76240a6d3e6958bf3ace
> e9760007e4186214e8f7874aeeffa849
>
> --
> Best regards,
>
> Arnaud Jacques
> SecuriteInfo.com
>
> Facebook : https://www.facebook.com/pages/SecuriteInfocom/132872523492286
> Twitter : https://twitter.com/SecuriteInfoCom
> _______________________________________________
> Community-sigs mailing list
> Community-sigs at lists.clamav.net
> http://lists.clamav.net/cgi-bin/mailman/listinfo/community-sigs
>
> http://www.clamav.net/contact.html#ml
>
More information about the Community-sigs
mailing list