今天收到的病毒信

今天收到海洋大學博士寄來的病毒信，看來他的yahoo帳號被盜:P
這隻病毒ClamAV、小紅傘與卡巴斯基、NOD32都掃不到，明顯是"經前三大掃毒軟體驗證合格"，於是丟到VirusTotal掃看看：

VirusTotal 是一款可疑檔案分析服務, 通過各種知名反病毒引擎, 對您所上傳的檔案進行偵測, 以判斷檔案是否被病毒, 蠕蟲, 木馬, 以及各類惡意軟體感染.

反病毒引擎	版本	最後更新	掃瞄結果
AhnLab-V3	2008.6.27.1	2008.06.30	-
AntiVir	7.8.0.59	2008.06.30	-
Authentium	5.1.0.4	2008.06.29	W32/Onlinegames.gen
Avast	4.8.1195.0	2008.06.28	Win32:Lmir-RH
AVG	7.5.0.516	2008.06.29	PSW.OnlineGames.BR
BitDefender	7.2	2008.06.30	-
CAT-QuickHeal	9.50	2008.06.28	-
ClamAV	0.93.1	2008.06.30	-
DrWeb	4.44.0.09170	2008.06.30	modification of Trojan.Nsanti.Packed
eSafe	7.0.17.0	2008.06.29	Suspicious File
eTrust-Vet	31.6.5911	2008.06.27	-
Ewido	4.0	2008.06.27	-
F-Prot	4.4.4.56	2008.06.29	W32/Onlinegames.gen
F-Secure	7.60.13501.0	2008.06.26	-
Fortinet	3.14.0.0	2008.06.30	-
GData	2.0.7306.1023	2008.06.30	Win32:Lmir-RH
Ikarus	T3.1.1.26.0	2008.06.30	Packer.Malware.NSAnti.AL
Kaspersky	7.0.0.125	2008.06.30	-
McAfee	5327	2008.06.27	PWS-OnlineGames.bd
Microsoft	1.3704	2008.06.30	TrojanSpy:Win32/OnLineGames.ZDR
NOD32v2	3225	2008.06.29	-
Norman	5.80.02	2008.06.27	-
Panda	9.0.0.4	2008.06.29	Suspicious file
Prevx1	V2	2008.06.30	-
Rising	20.51.00.00	2008.06.30	-
Sophos	4.30.0	2008.06.30	Mal/EncPk-CE
Sunbelt	3.0.1176.1	2008.06.26	-
Symantec	10	2008.06.30	-
TheHacker	6.2.96.364	2008.06.28	Trojan/Agent.adv
TrendMicro	8.700.0.1004	2008.06.30	TROJ_DROPPER.IWP
VBA32	3.12.6.8	2008.06.29	-
VirusBuster	4.5.11.0	2008.06.30	Trojan.Lineage.Gen!Pac.3
Webwasher-Gateway	6.6.2	2008.06.30	Win32.Malware.gen (suspicious)

附加訊息
File size: 328936 bytes
MD5...: 04fa9fb5956ee6b88ad49d94a65d49ae
SHA1..: f6ec10e2f1538e8182528676acc498234cf51e4e
SHA256: 51522b6a7a23c2b64eb31066e2108d0276b341e092767bb183a227b73d750a10
SHA512: 1f1de25888a4060b05c724e7c1825fef723943b2ba42522d21ab63a195b219d8 bb5b5a6a345cfc04a2b1f61db812467f6c4608ca3ae683b7ae6ec41ae4639b36
PEiD..: -
PEInfo: -
packers (Kaspersky): PE_Patch
packers (Authentium): RAR
packers (F-Prot): RAR