Search found 86 matches

by Maxstar
Fri Feb 28, 2014 8:22 am
Forum: Completed Malware Requests
Topic: Melondrea [Sambreel Adware]
Replies: 1
Views: 1787

Melondrea [Sambreel Adware]

Hi, I'm looking for a sample of the Melondrea (Sambreel) adware. Filename: melondrea_0702-81cfb2ef.exe MD5 5783c9c37a5a3e87ea4bf77a38a77d2d SHA1 01dfc92e344e10cb6ca84a854d157a4bfe7ecb76 SHA256 f029080b2fa52ad05b107cb096198eb063bf3562f86352e7318eb3a6501b464a https://www.virustotal.com/nl/file/f029080...
by Maxstar
Fri Dec 06, 2013 3:24 pm
Forum: Completed Malware Requests
Topic: Rogue sample request
Replies: 1
Views: 1737

Rogue sample request

https://www.virustotal.com/en/file/c15809f78263b20afa694d90d99b9bf0714c98da71faf99dc94fd5bc201d54f2/analysis/ MD5 9b1911b299b564e7aa27127d7c94b91a SHA1 a418c8cda51abb0c0fa1037bb6c123940e72c24b SHA256 c15809f78263b20afa694d90d99b9bf0714c98da71faf99dc94fd5bc201d54f2 This must be a new rogue, Antivirus...
by Maxstar
Sat Jul 27, 2013 7:13 am
Forum: Malware
Topic: Rogue Antimalware (FakeAV, 2013 year)
Replies: 142
Views: 208120

FakeAV

I'm looking for the following sample.

MD5: 82c58b195fc854387e46893f32b026a6
https://www.virustotal.com/en/file/916c ... 374867056/

Thanks ;)
by Maxstar
Mon Mar 25, 2013 10:44 am
Forum: Malware
Topic: Backdoor Blackshades NET
Replies: 57
Views: 62060

Unknown scrambled file

I found some weird file, probably it is a scrambled file with dummy data to avoid detection. The file is zipped 850kb and unpacked 130MB. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SQLDriver] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="hmmm" "hkey"=...
by Maxstar
Sat Mar 16, 2013 7:57 am
Forum: Malware
Topic: Win32/Theola (Sinowal component)
Replies: 6
Views: 3380

Win32/Theola (Sinowal component)

I'm looking for a sample of Theola. Win32/Theola.F (CRX plugin): 0a74c1897a8a3a56cbc4bd433e100e63f448c136 Win32/Theola.D (dll module): 5591d013f38f64f2695366ff4cb4727c94a266e9 How Theola malware uses a Chrome plugin for banking fraud http://www.welivesecurity.com/2013/03/13/how-theola-malware-uses-a...
by Maxstar
Sat Feb 09, 2013 12:29 pm
Forum: Completed Malware Requests
Topic: Adware:Win32/FastSaveApp
Replies: 2
Views: 2130

Adware:Win32/FastSaveApp

I'm looking for one of the following samples.

Adware:Win32/FastSaveApp
MD5 : 5e852f7d4582a132f93ad6b201c7d332
MD5: a56bf5c81057f5a47da435400d44b757
MD5: ed34c434271178a76039f1d25e0473ff
MD5: 7efc898b2245856bd0efdf204d2f9acd
MD5: 74f7fe49ba927cfc306a635ff9110013

Thanks... ;)
by Maxstar
Sun Jan 27, 2013 11:27 am
Forum: General Discussion
Topic: Avast Bug Bounty Program
Replies: 0
Views: 3529

Avast Bug Bounty Program

The bounty program is designed for security-related bugs only. Sorry, we’re not paying for other types of issues like bugs in the UI, localization etc. (nevertheless, if you find such a bug, we will of course very much appreciate if you report it). We’re generally only interested in these types of b...
by Maxstar
Fri Dec 28, 2012 5:29 pm
Forum: Malware
Topic: Win32/Reveton
Replies: 149
Views: 171600

Re: Trojan:Win32/Reveton

New package C:\Windows\System32\rundll32.exe c:\users\jan\wgsdgsdgdsgsd.dll,H1N1 dsgsdgdsgdsgw.js : https://www.virustotal.com/file/8a33744b7fa27391562cda30a6b16ddbf115d5311e771a9f696cb3d795f2c50a/analysis/1356715269/ wgsdgsdgdsgsearch.dll : https://www.virustotal.com/file/d208c722ee233b735ecf3a3e6...
by Maxstar
Fri Dec 28, 2012 3:21 pm
Forum: Malware
Topic: Win32/Reveton
Replies: 149
Views: 171600

Re: Trojan:Win32/Reveton

I have not seen of heard that before, and so far as I know is this variant easy to kill. C:\Users\Steffi\wgsdgsdgdsgsd.dll (Trojan.FakeMS) -> Succesvol in quarantaine geplaatst en verwijderd. C:\ProgramData\dsgsdgdsgdsgw.pad (Exploit.Drop.GSA) -> Succesvol in quarantaine geplaatst en verwijderd. C:\...
by Maxstar
Fri Dec 28, 2012 2:46 pm
Forum: Malware
Topic: Win32/Reveton
Replies: 149
Views: 171600

Re: Trojan:Win32/Reveton

Tigzy wrote:Anyone got the latest version of H1N1?
I have requested some files in live topics on my forum, when I have the samples I will upload these here.
http://www.pcwebplus.nl/phpbb/viewforum.php?f=206