ClamAV Signature Publishing Notice
Datefile: daily
Version: 27236
Publisher: David Raynor
New Sigs: 163
Dropped Sigs: 10
Ignored Sigs: 240
New Detection Signatures:
* PUA.Win.Tool.NetSupport-10022498-8
* Win.Malware.Generic-10023964-1
* Js.Downloader.EarthLusca-10024047-1
* Lnk.Downloader.EarthLusca-10024048-1
* Win.Trojan.CobaltStrike-10024049-1
* Win.Ransomware.Mallox-10024386-5
* Win.Downloader.Mallox-10025241-0
* PUA.Win.Tool.Processhacker-10025555-0
* PUA.Win.Tool.Processhacker-10025557-0
* Vbs.Trojan.PasswordStealer-10025560-1
* PUA.Win.Tool.PasswordFox-10025561-2
* PUA.Win.Tool.BulletPassView-10025567-3
* PUA.Win.Tool.RemCom-10025568-0
* PUA.Win.Tool.ChromePass-10025569-3
* PUA.Win.Tool.RouterPassView-10025570-1
* PUA.Win.Tool.VncPassview-10025571-1
* PUA.Win.Tool.NetPass-10025605-1
* PUA.Win.Tool.Dialupass-10025606-2
* PUA.Win.Tool.Processhacker-10025608-1
* PUA.Win.Tool.Rdpv-10025609-1
* Win.Trojan.PassSniffer-10025610-0
* PUA.Win.Tool.WirelessKeyView-10025612-1
* PUA.Win.Tool.MailView-10025613-1
* Win.Trojan.HrsCleanup-10025940-0
* Win.Trojan.HrsInstall-10025941-0
* PUA.Win.Tool.HRSword-10025943-0
* Doc.Downloader.Confucious-10026043-0
* Doc.Downloader.Gozi-10026044-0
* Doc.Downloader.Sidecopy-10026045-0
* Doc.Downloader.Generic-10026047-0
* Doc.Downloader.Donot-10026071-0
* Doc.Downloader.Donot-10026072-0
* Lnk.Loader.XDealer-10026073-0
* Doc.Downloader.Emotet-10026074-0
* Win.Packed.LokiBot-10026226-0
* Win.Dropper.Raccoon-10026227-0
* Win.Dropper.NetWire-10026228-0
* Win.Dropper.NetWire-10026229-0
* Win.Dropper.LokiBot-10026230-0
* Win.Packed.CrySIS-10026231-0
* Win.Dropper.LokiBot-10026232-0
* Win.Packed.Msilmamut-10026233-0
* Win.Dropper.Tinba-10026234-0
* Win.Dropper.Tinba-10026235-0
* Win.Dropper.Tinba-10026236-0
* Win.Dropper.LokiBot-10026237-0
* Email.Malware.Agent-10026238-0
* Email.Malware.Agent-10026239-0
* Email.Malware.Agent-10026240-0
* Email.Malware.Agent-10026241-0
* Win.Packed.njRAT-10026242-0
* Win.Dropper.Nanocore-10026243-0
* Win.Dropper.Formbook-10026244-0
* Win.Packed.LokiBot-10026245-0
* Win.Packed.Agenttesla-10026246-0
* Win.Packed.Chapak-10026247-0
* Win.Packed.Nanocore-10026248-0
* Win.Trojan.Generic-10026249-0
* Win.Worm.Warezov-10026250-0
* Win.Packed.Fugrafa-10026251-0
* Win.Packed.Cerbu-10026252-0
* Win.Dropper.njRAT-10026253-0
* Win.Packed.njRAT-10026254-0
* Win.Dropper.Generic-10026255-0
* Win.Dropper.Remcos-10026256-0
* Win.Packed.Msilzilla-10026257-0
* Win.Malware.Porcupine-10026258-0
* Win.Packed.njRAT-10026259-0
* Win.Packed.LokiBot-10026260-0
* Win.Dropper.LokiBot-10026261-0
* Win.Exploit.Futurax-10026262-0
* Win.Dropper.LokiBot-10026263-0
* Win.Dropper.LokiBot-10026264-0
* Win.Dropper.Nanocore-10026265-0
* Win.Dropper.Nanocore-10026266-0
* Win.Dropper.Nanocore-10026267-0
* Win.Dropper.Nanocore-10026268-0
* Win.Dropper.Glupteba-10026270-0
* Win.Dropper.Glupteba-10026271-0
* Win.Dropper.njRAT-10026272-0
* Win.Dropper.njRAT-10026273-0
* Win.Dropper.njRAT-10026274-0
* Win.Dropper.LokiBot-10026275-0
* Win.Dropper.LokiBot-10026276-0
* Win.Packed.Zbot-10026277-0
* Win.Packed.Formbook-10026278-0
* Win.Packed.njRAT-10026279-0
* Win.Dropper.Zeus-10026280-0
* Win.Dropper.Glupteba-10026281-0
* Win.Packed.Nanocore-10026282-0
* Win.Packed.Nanocore-10026283-0
* Win.Packed.Nanocore-10026284-0
* Win.Exploit.Futurax-10026285-0
* Win.Dropper.Arcane-10026286-0
* Win.Dropper.Nanocore-10026287-0
* Win.Dropper.Glupteba-10026288-0
* Win.Dropper.Glupteba-10026289-0
* Win.Packed.njRAT-10026291-0
* Win.Packed.Zurgop-10026292-0
* Win.Trojan.Zusy-10026293-0
* Win.Dropper.Bunitu-10026294-0
* Win.Dropper.Bunitu-10026295-0
* Win.Dropper.Glupteba-10026296-0
* Win.Dropper.Glupteba-10026297-0
* Win.Dropper.Berbew-10026299-0
* Win.Packed.LokiBot-10026300-0
* Win.Exploit.Futurax-10026301-0
* Win.Packed.LokiBot-10026302-0
* Win.Packed.LokiBot-10026303-0
* Win.Packed.LokiBot-10026304-0
* Win.Dropper.Vundo-10026305-0
* Win.Dropper.LokiBot-10026307-0
* Win.Dropper.LokiBot-10026308-0
* Win.Dropper.LokiBot-10026309-0
* Win.Dropper.LokiBot-10026310-0
* Win.Packed.Agen-10026311-0
* Win.Packed.LokiBot-10026312-0
* Win.Malware.Pincav-10026313-0
* Win.Trojan.Zusy-10026314-0
* Win.Packed.Midie-10026315-0
* Win.Packed.Stealerc-10026316-0
* Win.Packed.Chapak-10026317-0
* Win.Packed.Stealerc-10026318-0
* Win.Adware.Glupteba-10026319-0
* Win.Adware.Glupteba-10026320-0
* Win.Packed.Glupteba-10026321-0
* Win.Packed.Ulpm-10026322-0
* Win.Dropper.Nanocore-10026323-0
* Win.Dropper.Nanocore-10026324-0
* Win.Dropper.Nanocore-10026325-0
* Win.Packed.Bayrob-10026326-0
* Win.Packed.Zusy-10026327-0
* Win.Malware.Zusy-10026328-0
* Win.Worm.Enigma-10026329-0
* Win.Malware.Zusy-10026330-0
* Win.Malware.Udnza5cbf-10026331-0
* Win.Malware.Udnza5cbf-10026332-0
* Win.Malware.Dacic-10026333-0
* Win.Dropper.NetWire-10026334-0
* Win.Packed.Generickdz-10026335-0
* Win.Packed.Generickdz-10026337-0
* Win.Malware.Upatre-10026338-0
* Win.Packed.Shipup-10026339-0
* Win.Packed.Fugrafa-10026340-0
* Win.Packed.Shipup-10026341-0
* Win.Malware.Shipup-10026342-0
* Win.Packed.Shipup-10026343-0
* Win.Packed.Shipup-10026344-0
* Win.Malware.Shipup-10026345-0
* Win.Packed.Shipup-10026346-0
* Win.Packed.Fugrafa-10026347-0
* Win.Packed.Shipup-10026348-0
* Win.Packed.Shipup-10026349-0
* Win.Packed.Fugrafa-10026350-0
* Win.Ransomware.Shade-10026351-0
* Win.Trojan.Sfuzuan-10026352-0
* Win.Dropper.LokiBot-10026353-0
* Win.Dropper.Formbook-10026354-0
* Win.Dropper.Glupteba-10026355-0
* Win.Packed.Generickdz-10026356-0
* Win.Dropper.Remcos-10026357-0
* Win.Dropper.Glupteba-10026358-0
* Win.Dropper.Glupteba-10026359-0
Dropped Detection Signatures:
* Win.Ransomware.Robin-7594233-0
* Win.Trojan.Lazy-10019982-0
* Win.Ransomware.Evdh-10021567-0
* Win.Dropper.LokiBot-10024146-0
* Win.Virus.Zard-10024397-0
* Win.Virus.Zard-10025128-0
* Win.Virus.Zard-10025134-0
* Win.Exploit.Marte-10025451-0
* Win.Dropper.Sykipot-10025660-0
* Win.Virus.Expiro-10025699-0
_______________________________________________
clamav-virusdb mailing list
clamav-virusdb@lists.clamav.net
https://lists.clamav.net/mailman/listinfo/clamav-virusdb
http://www.clamav.net/contact.html#ml
Datefile: daily
Version: 27236
Publisher: David Raynor
New Sigs: 163
Dropped Sigs: 10
Ignored Sigs: 240
New Detection Signatures:
* PUA.Win.Tool.NetSupport-10022498-8
* Win.Malware.Generic-10023964-1
* Js.Downloader.EarthLusca-10024047-1
* Lnk.Downloader.EarthLusca-10024048-1
* Win.Trojan.CobaltStrike-10024049-1
* Win.Ransomware.Mallox-10024386-5
* Win.Downloader.Mallox-10025241-0
* PUA.Win.Tool.Processhacker-10025555-0
* PUA.Win.Tool.Processhacker-10025557-0
* Vbs.Trojan.PasswordStealer-10025560-1
* PUA.Win.Tool.PasswordFox-10025561-2
* PUA.Win.Tool.BulletPassView-10025567-3
* PUA.Win.Tool.RemCom-10025568-0
* PUA.Win.Tool.ChromePass-10025569-3
* PUA.Win.Tool.RouterPassView-10025570-1
* PUA.Win.Tool.VncPassview-10025571-1
* PUA.Win.Tool.NetPass-10025605-1
* PUA.Win.Tool.Dialupass-10025606-2
* PUA.Win.Tool.Processhacker-10025608-1
* PUA.Win.Tool.Rdpv-10025609-1
* Win.Trojan.PassSniffer-10025610-0
* PUA.Win.Tool.WirelessKeyView-10025612-1
* PUA.Win.Tool.MailView-10025613-1
* Win.Trojan.HrsCleanup-10025940-0
* Win.Trojan.HrsInstall-10025941-0
* PUA.Win.Tool.HRSword-10025943-0
* Doc.Downloader.Confucious-10026043-0
* Doc.Downloader.Gozi-10026044-0
* Doc.Downloader.Sidecopy-10026045-0
* Doc.Downloader.Generic-10026047-0
* Doc.Downloader.Donot-10026071-0
* Doc.Downloader.Donot-10026072-0
* Lnk.Loader.XDealer-10026073-0
* Doc.Downloader.Emotet-10026074-0
* Win.Packed.LokiBot-10026226-0
* Win.Dropper.Raccoon-10026227-0
* Win.Dropper.NetWire-10026228-0
* Win.Dropper.NetWire-10026229-0
* Win.Dropper.LokiBot-10026230-0
* Win.Packed.CrySIS-10026231-0
* Win.Dropper.LokiBot-10026232-0
* Win.Packed.Msilmamut-10026233-0
* Win.Dropper.Tinba-10026234-0
* Win.Dropper.Tinba-10026235-0
* Win.Dropper.Tinba-10026236-0
* Win.Dropper.LokiBot-10026237-0
* Email.Malware.Agent-10026238-0
* Email.Malware.Agent-10026239-0
* Email.Malware.Agent-10026240-0
* Email.Malware.Agent-10026241-0
* Win.Packed.njRAT-10026242-0
* Win.Dropper.Nanocore-10026243-0
* Win.Dropper.Formbook-10026244-0
* Win.Packed.LokiBot-10026245-0
* Win.Packed.Agenttesla-10026246-0
* Win.Packed.Chapak-10026247-0
* Win.Packed.Nanocore-10026248-0
* Win.Trojan.Generic-10026249-0
* Win.Worm.Warezov-10026250-0
* Win.Packed.Fugrafa-10026251-0
* Win.Packed.Cerbu-10026252-0
* Win.Dropper.njRAT-10026253-0
* Win.Packed.njRAT-10026254-0
* Win.Dropper.Generic-10026255-0
* Win.Dropper.Remcos-10026256-0
* Win.Packed.Msilzilla-10026257-0
* Win.Malware.Porcupine-10026258-0
* Win.Packed.njRAT-10026259-0
* Win.Packed.LokiBot-10026260-0
* Win.Dropper.LokiBot-10026261-0
* Win.Exploit.Futurax-10026262-0
* Win.Dropper.LokiBot-10026263-0
* Win.Dropper.LokiBot-10026264-0
* Win.Dropper.Nanocore-10026265-0
* Win.Dropper.Nanocore-10026266-0
* Win.Dropper.Nanocore-10026267-0
* Win.Dropper.Nanocore-10026268-0
* Win.Dropper.Glupteba-10026270-0
* Win.Dropper.Glupteba-10026271-0
* Win.Dropper.njRAT-10026272-0
* Win.Dropper.njRAT-10026273-0
* Win.Dropper.njRAT-10026274-0
* Win.Dropper.LokiBot-10026275-0
* Win.Dropper.LokiBot-10026276-0
* Win.Packed.Zbot-10026277-0
* Win.Packed.Formbook-10026278-0
* Win.Packed.njRAT-10026279-0
* Win.Dropper.Zeus-10026280-0
* Win.Dropper.Glupteba-10026281-0
* Win.Packed.Nanocore-10026282-0
* Win.Packed.Nanocore-10026283-0
* Win.Packed.Nanocore-10026284-0
* Win.Exploit.Futurax-10026285-0
* Win.Dropper.Arcane-10026286-0
* Win.Dropper.Nanocore-10026287-0
* Win.Dropper.Glupteba-10026288-0
* Win.Dropper.Glupteba-10026289-0
* Win.Packed.njRAT-10026291-0
* Win.Packed.Zurgop-10026292-0
* Win.Trojan.Zusy-10026293-0
* Win.Dropper.Bunitu-10026294-0
* Win.Dropper.Bunitu-10026295-0
* Win.Dropper.Glupteba-10026296-0
* Win.Dropper.Glupteba-10026297-0
* Win.Dropper.Berbew-10026299-0
* Win.Packed.LokiBot-10026300-0
* Win.Exploit.Futurax-10026301-0
* Win.Packed.LokiBot-10026302-0
* Win.Packed.LokiBot-10026303-0
* Win.Packed.LokiBot-10026304-0
* Win.Dropper.Vundo-10026305-0
* Win.Dropper.LokiBot-10026307-0
* Win.Dropper.LokiBot-10026308-0
* Win.Dropper.LokiBot-10026309-0
* Win.Dropper.LokiBot-10026310-0
* Win.Packed.Agen-10026311-0
* Win.Packed.LokiBot-10026312-0
* Win.Malware.Pincav-10026313-0
* Win.Trojan.Zusy-10026314-0
* Win.Packed.Midie-10026315-0
* Win.Packed.Stealerc-10026316-0
* Win.Packed.Chapak-10026317-0
* Win.Packed.Stealerc-10026318-0
* Win.Adware.Glupteba-10026319-0
* Win.Adware.Glupteba-10026320-0
* Win.Packed.Glupteba-10026321-0
* Win.Packed.Ulpm-10026322-0
* Win.Dropper.Nanocore-10026323-0
* Win.Dropper.Nanocore-10026324-0
* Win.Dropper.Nanocore-10026325-0
* Win.Packed.Bayrob-10026326-0
* Win.Packed.Zusy-10026327-0
* Win.Malware.Zusy-10026328-0
* Win.Worm.Enigma-10026329-0
* Win.Malware.Zusy-10026330-0
* Win.Malware.Udnza5cbf-10026331-0
* Win.Malware.Udnza5cbf-10026332-0
* Win.Malware.Dacic-10026333-0
* Win.Dropper.NetWire-10026334-0
* Win.Packed.Generickdz-10026335-0
* Win.Packed.Generickdz-10026337-0
* Win.Malware.Upatre-10026338-0
* Win.Packed.Shipup-10026339-0
* Win.Packed.Fugrafa-10026340-0
* Win.Packed.Shipup-10026341-0
* Win.Malware.Shipup-10026342-0
* Win.Packed.Shipup-10026343-0
* Win.Packed.Shipup-10026344-0
* Win.Malware.Shipup-10026345-0
* Win.Packed.Shipup-10026346-0
* Win.Packed.Fugrafa-10026347-0
* Win.Packed.Shipup-10026348-0
* Win.Packed.Shipup-10026349-0
* Win.Packed.Fugrafa-10026350-0
* Win.Ransomware.Shade-10026351-0
* Win.Trojan.Sfuzuan-10026352-0
* Win.Dropper.LokiBot-10026353-0
* Win.Dropper.Formbook-10026354-0
* Win.Dropper.Glupteba-10026355-0
* Win.Packed.Generickdz-10026356-0
* Win.Dropper.Remcos-10026357-0
* Win.Dropper.Glupteba-10026358-0
* Win.Dropper.Glupteba-10026359-0
Dropped Detection Signatures:
* Win.Ransomware.Robin-7594233-0
* Win.Trojan.Lazy-10019982-0
* Win.Ransomware.Evdh-10021567-0
* Win.Dropper.LokiBot-10024146-0
* Win.Virus.Zard-10024397-0
* Win.Virus.Zard-10025128-0
* Win.Virus.Zard-10025134-0
* Win.Exploit.Marte-10025451-0
* Win.Dropper.Sykipot-10025660-0
* Win.Virus.Expiro-10025699-0
_______________________________________________
clamav-virusdb mailing list
clamav-virusdb@lists.clamav.net
https://lists.clamav.net/mailman/listinfo/clamav-virusdb
http://www.clamav.net/contact.html#ml