Malware collection

Forum for analysis and discussion about malware.
Antelox
Posts: 206
Joined: Sun Mar 21, 2010 10:38 pm
Contact:

Re: Malware collection

Post by Antelox » Sat Feb 03, 2018 5:20 pm

ikolor wrote:thanks .Malware from your server

https://www.virustotal.com/#/file/21bbb ... /detection
NetWire RAT

C2: 185.82.203.194:6060

BR,

Antelox

Fedor22
Posts: 27
Joined: Sun Dec 03, 2017 5:50 pm
Location: Russian Federation

Re: Malware collection

Post by Fedor22 » Wed Feb 07, 2018 3:10 pm

1Click System Mechanic (PUA/1ClickSystemMechanic.EL.2)
VT: https://www.virustotal.com/en/file/8b91 ... /analysis/
You do not have the required permissions to view the files attached to this post.

ikolor
Posts: 293
Joined: Thu Jun 05, 2014 2:20 pm
Location: Poland

Re: Malware collection

Post by ikolor » Thu Feb 08, 2018 6:17 pm

You do not have the required permissions to view the files attached to this post.

Antelox
Posts: 206
Joined: Sun Mar 21, 2010 10:38 pm
Contact:

Re: Malware collection

Post by Antelox » Thu Feb 08, 2018 6:57 pm

Nymaim javascript downloader.

BR,

Antelox

markusg
Posts: 730
Joined: Mon Mar 15, 2010 2:53 pm

Re: Malware collection

Post by markusg » Sun Feb 11, 2018 5:23 pm

VirusTotal
SHA256:
5c13ceefbf24c9d248a91273066247350992ff2d86dd7c1fb5375ae71c83f6ab
Dateiname:
Youtube_byclick_Setup.exe
Erkennungsrate:
21 / 66
https://www.virustotal.com/de/file/5c13 ... /analysis/
my connection is bit slow for the next 1 week and the upload was canceled but if somebody want he can attach the file
a miner i think
https://www.dropbox.com/s/7rgorb5yxamxs ... up.7z?dl=1

markusg
Posts: 730
Joined: Mon Mar 15, 2010 2:53 pm

Re: Malware collection

Post by markusg » Sun Feb 11, 2018 7:46 pm

SHA-256
094c865976b5ca1072afe794871aab4dabb136ad58844558dbdc46584056bab6
File name
Mario_Rabbids_kingdom_battle.exe
https://www.virustotal.com/#/file/094c8 ... /detection
adware

https://www.dropbox.com/s/5zqlmxtumh7ys ... e.exe?dl=1

Antelox
Posts: 206
Joined: Sun Mar 21, 2010 10:38 pm
Contact:

Re: Malware collection

Post by Antelox » Sun Feb 11, 2018 8:00 pm

markusg wrote:VirusTotal
SHA256:
5c13ceefbf24c9d248a91273066247350992ff2d86dd7c1fb5375ae71c83f6ab
Dateiname:
Youtube_byclick_Setup.exe
Erkennungsrate:
21 / 66
https://www.virustotal.com/de/file/5c13 ... /analysis/
my connection is bit slow for the next 1 week and the upload was canceled but if somebody want he can attach the file
a miner i think
https://www.dropbox.com/s/7rgorb5yxamxs ... up.7z?dl=1
Yes, it drops a miner.

BR,

Antelox

Fedor22
Posts: 27
Joined: Sun Dec 03, 2017 5:50 pm
Location: Russian Federation

Re: Malware collection

Post by Fedor22 » Wed Feb 14, 2018 2:21 pm

Video HD Updater (Adware/DealPly)
Also proposes install "Bytefence Anti-Virus".
VT: https://www.virustotal.com/en/file/0cc5 ... /analysis/
You do not have the required permissions to view the files attached to this post.

ikolor
Posts: 293
Joined: Thu Jun 05, 2014 2:20 pm
Location: Poland

Re: Malware collection

Post by ikolor » Wed Feb 21, 2018 10:06 am

You do not have the required permissions to view the files attached to this post.

Antelox
Posts: 206
Joined: Sun Mar 21, 2010 10:38 pm
Contact:

Re: Malware collection

Post by Antelox » Wed Feb 21, 2018 10:33 am

Geodo/Emotet doc downloader.

BR,

Antelox

Post Reply