Scribd Logo
Upload

Welcome to Scribd!

  • MALWARE Problem Sheet-1

    Uploaded by

    Vatsal CHOKSI
    5 views9 pages

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    5 views9 pages

    MALWARE Problem Sheet-1

    Uploaded by

    Vatsal CHOKSI

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 9

    BMU MALWARE Problem Sheet-1 2102020401005

    Bhagwan Mahavir University


    Bhagwan Mahavir College Of Computer Application
    T.Y.B.Sc. Cyber Security Sem-5
    MALWARE
    Practical Problem Sheet-1

    1. Generate a report of 5 malware files and generate it by using below mentioned

    tools.
    ■ VIRUS TOTAL
    Answer:-

    Tool :- VIRUSTOTAL
    VirusTotal aggregates many antivirus products and online scan engines called Contributors. In
    November, 2018, the Cyber National Mission Force, a unit subordinate to the U.S. Cyber
    Command became a Contributor. The aggregated data from these Contributors allows a user to
    check for viruses that the user's own antivirus software may have missed, or to verify against
    any false
    positives. Files up to 650 MB can be uploaded to the website, or sent via email (max. 32MB).
    Anti-virus software vendors can receive copies of files that were flagged by other scans but
    passed by their own engine, to help improve their software and, by extension, VirusTotal's own
    capability. Users can also scan suspect URLs and search through the VirusTotal dataset.
    VirusTotal uses the Cuckoo sandbox for dynamic analysis of malware. VirusTotal was selected
    by PC World as one of the best 100 products of 2007.

    Malware:- 01

    POINTS:-

    Point-1 The total number of VirusTotal partners who consider this file harmful (in this case, 44)
    out Of the total number of partners who reviewed the file.

    Answer:- 3
    Point-2 Community score
    Answer:- 1
    2

    Point-3 The total number of VirusTotal partners who consider this file harmful (in this case,
    44) out Of the total number of partners who reviewed the file

    Answer:- 2 security vendors and no sandboxes flagged this file as malicious


    Point-4 Sha- 254
    Answer:- fff71db83a124406933f2c10b2a60e490ca0c8c8c9443ea0ad60024a46557412
    Point-5 File name of last submission, and access to search by file names
    Answer:- 1.exe.zip
    Point-6 Tags

    Answer:- zip self-delete encrypted via-tor detect-debug-environment long-sleeps checks-user-input


    Point- 7 The date and time

    Answer:- Date: 2023-09-10


    Time: 09:18:54

    Point-8 Icon for the file.

    Answer:-

    Point-9 Button to reanalyse the file.


    Answer:-

    Point-10 Search for the similar files.


    Answer:-

    (Screenshot):-

    2
    3

    Malware:- 02

    POINTS:-

    Point-1 The total number of VirusTotal partners who consider this file harmful (in this case, 44) out Of
    the total number of partners who reviewed the file.

    Answer:- 1

    Point-2 Community score


    Answer:- 1

    Point-3 The total number of VirusTotal partners who consider this file harmful (in this case, 44) out Of
    the total number of partners who reviewed the file

    Answer:- 1 security vendor and no sandboxes flagged this file as malicious


    Point-4 Sha- 254
    Answer:- 78cb65344e391ac016cac2f0281256b63705cf397218de7613bf34d1cf06b0b5
    Point-5 File name of last submission, and access to search by file names
    Answer:- 340s.exe.zip
    Point-6 Tags

    3
    4

    Answer:- zip encrypted


    Point-7 The date and time
    Answer:- Date: 2023-09-10
    Time: 09:18:52

    Point-8 Icon for the file.

    Answer:-

    Point-9 Button to reanalyse the file.


    Answer:-

    Point-10 Search for the similar files.


    Answer:-

    (Screenshot):-

    4
    5

    Malware:- 03

    POINTS:-

    Point-1 The total number of VirusTotal partners who consider this file harmful (in this case, 44) out Of
    the total number of partners who reviewed the file.

    Answer:- 6
    Point-2 Community score
    Answer:- 1
    Point-3 The total number of VirusTotal partners who consider this file harmful (in this case, 44) out Of
    the total number of partners who reviewed the file

    Answer:- 1 security vendor and no sandboxes flagged this file as malicious


    Point-4 Sha- 254
    Answer:- 78cb65344e391ac016cac2f0281256b63705cf397218de7613bf34d1cf06b0b5
    Point-5 File name of last submission, and access to search by file names

    Answer:- 340s.exe.zip
    Point-6 Tags

    Answer:- zip encrypted


    Point-7 The date and time

    Answer:- Date: 2023-09-10


    Time: 09:18:52

    Point-8 Icon for the file.

    Answer:-

    Point-9 Button to reanalyse the file.


    Answer:-

    5
    6

    Point-10 Search for the similar files.


    Answer:-

    (Screenshot):-

    Malware:- 04

    POINTS:-

    Point-1 The total number of VirusTotal partners who consider this file harmful (in this case, 44)
    out Of the total number of partners who reviewed the file.
    Answer:- 1
    Point-2 Community score

    Answer:- 7
    Point-3 The total number of VirusTotal partners who consider this file harmful (in this case, 44) out Of
    the total number of partners who reviewed the file

    Answer:- 1 security vendor and 2 sandboxes flagged this file as malicious

    6
    7

    Point-4 Sha- 254


    Answer:- 4967fa8105bb39ff58c2ebd2dcb9e3767f7ccc8713f36f73627eaaeaad28a1f6
    Point-5 File name of last submission, and access to search by file names
    Answer:- 854137.exe.zip
    Point-6 Tags
    Answer:-

    • zip
    • encrypted
    • via-tor
    • detect-debug-environment
    • long-sleeps
    • checks-user-input
    Point-7 The date and time

    Answer:- Date: 2023-09-10

    Time: 09:18:52

    Point-8 Icon for the file.

    Answer:-

    Point-9 Button to reanalyse the file.


    Answer:-

    Point-10 Search for the similar files.


    Answer:-

    (Screenshot):-

    7
    8

    Malware:- 05

    POINTS:-

    Point-1 The total number of VirusTotal partners who consider this file harmful (in this case, 44) out Of
    the total number of partners who reviewed the file.

    Answer:- 6
    Point-2 Community score
    Answer:- 59
    Point-3 The total number of VirusTotal partners who consider this file harmful (in this case, 44) out Of
    the total number of partners who reviewed the file

    Answer:- 20 security vendors and detect as malicious.


    Point-4 Sha- 254

    Answer:- GODKMFeSY758BFHcT^8R%U
    Point-5 File name of last submission, and access to search by file names
    Answer:- 0.exe.zip
    Point-6 Tags

    8
    9

    Answer:- zip, encrypted, via-tor


    Point-7 The date and time
    Answer:- Date: 29-05-23
    Time: 05-25-30 UTC

    Point-8 Icon for the file.

    Answer:-

    Point-9 Button to reanalyse the file.


    Answer:-

    Point-10 Search for the similar files.


    Answer:-

    (Screenshot):-

    OVER:-
    9

    You might also like