Hi, i’ve just found a virus which destroyed my operating system.
After running this virus, program activates payload (in command line)- downloads trojans and starts bypassing AV protection. System crashes and restarts- after restart i can’t any AV- antivirus isn’t working.
I’m sending virus to analysis.
Link to virus: https://1drv.ms/u/s!AjZg2Q9Ruignga01zou4neSs-oG_hA?e=emdBgo
Virustotal MD5: VirusTotal
Hello matrix72001,
Thank you for sharing this, we’ll chack and add detection for it.
Best regards,
FlorinG
Hi,
I’ve tested with CIS at Proactive Security setting - Containment set to Untrusted and file is Contained with no changes to the system.
You should test with the Cruelsister settings, CIS default configuration can be easily bypassed.
Ok, but anyway please add this virus to virus database to detect it faster.