Source of Malware

Forum for analysis and discussion about malware.
User avatar
Blaze
Posts: 198
Joined: Fri Aug 27, 2010 7:35 am
Contact:

Re: Source of Malware

Post by Blaze » Thu Oct 20, 2011 9:07 am

Yeah, just noticed it too. Please ignore that post ;) .

Tesk
Posts: 19
Joined: Mon Mar 29, 2010 8:18 pm

Re: Source of Malware

Post by Tesk » Thu Oct 20, 2011 12:47 pm

Xylitol wrote:i've found this one http://www.malwaredump.com/
Anyone who got an update on how MalwareDump is doing? They have not brought any update for a lot of time.

User avatar
CloneRanger
Posts: 124
Joined: Sat Aug 14, 2010 11:54 pm

Re: Source of Malware

Post by CloneRanger » Fri Oct 21, 2011 12:15 am

Here's a few more for you that "might" prove useful ;)
Welcome to the Cyber-TA

SRI Honeynet and BotHunter Malware Analysis
Automatic Summary Analysis Table

PUBLIC PAGE

Welcome: The malware infections displayed in our daily infection log summaries were harvested live from the SRI high-interaction honeynet. The daily infection logs (right) present each day's infection summary, and are 100% autogenerated and posted each morning (PT).

http://www.cyber-ta.org/releases/malwar ... sis/public
Emerging Threats

Emerging Threats is an open source community project now backed by Emerging Threats Pro. Through the support of our community we are able to produce the fastest moving and most diverse Suricata and Snort Rulesets and firewall rules available.

http://www.emergingthreats.net/index.ph ... e&Itemid=1

http://www.emergingthreats.net/index.ph ... &Itemid=38

http://rules.emergingthreats.net/blockrules
alliance.mwcollect.org

Since the mwcollect Alliance gives its members access to a huge amount of critical and sensitive data, registration is not open to anyone. Members do not only get access to a huge repository of malicious code, but they can also obtain sensitive information such as the addresses of other member's honeypots.

https://alliance.mwcollect.org/public/join_requirements
Malware = If your names not down, you're Not coming in !

User avatar
Dashke
Posts: 4
Joined: Sat Jul 24, 2010 9:42 pm
Contact:

Re: Source of Malware

Post by Dashke » Sun Jan 22, 2012 12:33 pm

You can check my blog with latest FakeAVs.
http://dashke.blogspot.com/

User avatar
mwilson
Posts: 1
Joined: Tue Jan 24, 2012 4:35 pm

Re: Source of Malware

Post by mwilson » Tue Jan 24, 2012 5:03 pm

CloneRanger wrote:Here's a few more for you that "might" prove useful ;)
Welcome to the Cyber-TA

SRI Honeynet and BotHunter Malware Analysis
Automatic Summary Analysis Table

PUBLIC PAGE

Welcome: The malware infections displayed in our daily infection log summaries were harvested live from the SRI high-interaction honeynet. The daily infection logs (right) present each day's infection summary, and are 100% autogenerated and posted each morning (PT).

http://www.cyber-ta.org/releases/malwar ... sis/public
Whats cool about Cyber-TA is even though, they don't allow you to pull the MD5 or PCAP normally. you can find the MD5 from the Data-Strings URL [Second to last URL]

User avatar
CloneRanger
Posts: 124
Joined: Sat Aug 14, 2010 11:54 pm

Re: Source of Malware

Post by CloneRanger » Wed Jan 25, 2012 8:21 pm

@ mwilson

Hi, Thanks for the feedback, it's nice to know. & that you are able to make use of the www :)

*
Note to Admin/Mods

That www & the others i listed in the same post, havn't yet appeared in the Master List - http://www.kernelmode.info/forum/viewto ... f=16&t=308 - Is there a particular reason why ?

TIA
Malware = If your names not down, you're Not coming in !

User avatar
EP_X0FF
Global Moderator
Posts: 4872
Joined: Sun Mar 07, 2010 5:35 am
Location: Russian Federation
Contact:

Re: Source of Malware

Post by EP_X0FF » Thu Jan 26, 2012 2:31 am

CloneRanger wrote:@ mwilson

Hi, Thanks for the feedback, it's nice to know. & that you are able to make use of the www :)

*
Note to Admin/Mods

That www & the others i listed in the same post, havn't yet appeared in the Master List - http://www.kernelmode.info/forum/viewto ... f=16&t=308 - Is there a particular reason why ?

TIA

Because of this

http://www.cyber-ta.org/releases/malwar ... OGIZE.html

and for 2nd case
Since the mwcollect Alliance gives its members access to a huge amount of critical and sensitive data, registration is not open to anyone. Members do not only get access to a huge repository of malicious code, but they can also obtain sensitive information such as the addresses of other member's honeypots.

To protect the Internet community, respectively mwcollect Alliance members, it must be ensured that no information is leaked from inside the Alliance to the outside. This requirement is fulfilled by the Database Content's License, which is automatically mutually agreed upon by both parties, the member and the Alliance upon usage of the mwcollect Alliance's database.
How to download malware data from there?
If nohow - then we are not interested in them.
Ring0 - the source of inspiration

User avatar
CloneRanger
Posts: 124
Joined: Sat Aug 14, 2010 11:54 pm

Re: Source of Malware

Post by CloneRanger » Thu Jan 26, 2012 11:48 am

@ EP_X0FF
Because of this
I don't recall seeing that before !
How to download malware data from there?
I see what you mean, obviously not directly. But at least the option is open for those that wish to participate, who can DL/share etc. So it is another source of Malware, which i thought could be useful to some people !

In any future such posts, i'll make sure that DL's are directly downloadable ;)
Malware = If your names not down, you're Not coming in !

User avatar
gjf
Posts: 198
Joined: Mon Mar 15, 2010 10:23 am
Location: Where I lay my head is home
Contact:

Re: Source of Malware

Post by gjf » Thu Jan 26, 2012 11:56 am

is not available because of outdated certificate ;)
In other hand I agree with EP_X0FF: when trying to open any link to "Packed Malware_Binary" for instance, here, the above mentioned "apologies" appears. In such conditions this source is useless.
VirusInfo / Defendium / SafeZone Helpers Crew

User avatar
gjf
Posts: 198
Joined: Mon Mar 15, 2010 10:23 am
Location: Where I lay my head is home
Contact:

Re: Source of Malware

Post by gjf » Thu Jan 26, 2012 12:03 pm

P.S. If you wanna know my IMHO - here it is. This resource is quite green, but high-flying. There is a lot of broken links and bugs, but in the same time
Any member of the mwcollect Alliance has to contribute back, at least in the form of deployed and linked nepenthes sensors.
- in such conditions it is very bold requirement! And sure
Members do not only get access to a huge repository of malicious code, but they can also obtain sensitive information such as the addresses of other member's honeypots.
is a problem of administration, not members.
VirusInfo / Defendium / SafeZone Helpers Crew

Post Reply