Malware Requests, part 2

Forum for completed malware requests.
Locked
User avatar
EP_X0FF
Global Moderator
Posts: 4872
Joined: Sun Mar 07, 2010 5:35 am
Location: Russian Federation
Contact:

Malware Requests, part 2

Post by EP_X0FF » Wed Jun 06, 2012 10:12 am

Hello,

this is special thread about malware samples requests.

Old thread can be found here

Thread posting rules.

1. Asking for malware sample assumes by default - You know how to deal with them (at least how to make them work on test environment)
2. Malware request must in following format:

a) Malware name(s) which you want (more names - better), names better take from AV companies.
b) Hash of particular sample (optional), MD5 or SHA1. This increases your chances to get what you want.
c) Short description of malware you want (optional), link to AV site/article etc describing malware.

3. Posts which does not match above format will be DELETED.
4. Before asking for malware - check dedicated topics in this forum - maybe sample (or other sample from the same malware family) you looking was already posted here.
5. Do not ask for MS-DOS, Windows 95/98/ME malware.
6. Do not bump your requests. First bump -> you will be warned, your post will be removed. Second bump - you will be banned.
7. This thread is only for requests and sharing. If you want to discuss specified malware you asked - start new thread.
8. No offtopic posts. All offtopic will be deleted, user will be warned.
9. No "thanks" posts - use Give reputation buttons (located right after joined date).

(Note: this thread also contains all previously posted malware requests so they do not matching posted above format.)

EXAMPLE of correct request
Hello, I'm looking for particular sample of

a) TDL4, Alureon.DX, TDSS, Olmarik
b) MD5 8375a3dafd6176b92856bf6c28ea4fd4 (if you have others samples, please attach also)
c) This is modern kernel mode rootkit with own implemented VFS. This is presentation about it http://www.virusbtn.com/pdf/conference_ ... VB2010.pdf

Thank you.
EXAMPLE of incorrect request
i'm looking for virus that kills all files on disk C:\, process named bvjs908bhsopbhsl.exe!
Ring0 - the source of inspiration

leeno
Posts: 45
Joined: Wed Apr 11, 2012 10:19 am

Re: Malware Requests, part 2

Post by leeno » Wed Jun 06, 2012 1:19 pm

Hi Guys ,

I looking for a provider which provides good strength of mobile malware sample . it could be any public or commercial provider .
your help on above will be highly appreciated .

Thanks

leeno

kalptarunet
Posts: 12
Joined: Sun Feb 27, 2011 2:25 pm

Malware Requests, part 2

Post by kalptarunet » Thu Jun 14, 2012 11:48 pm

Hi!

Looking for a Zeus sample, and sorry to say not having md5 or any info just having only C2 calling address please find below.

http://quivercove.com/w.php?f=116&e=1 /w.php

Thanks,

KTX

User avatar
thisisu
Posts: 362
Joined: Sun Feb 26, 2012 8:57 am
Contact:

Re: Malware Requests, part 2

Post by thisisu » Mon Jun 18, 2012 1:20 am

Hello, I'm looking for particular sample of

a) Gimemo Germany
b) MD5 c4f7a18db6aa1ef57c3f53a050d77ce9
c) Ransom - Schnarch.exe

Thank you.

leeno
Posts: 45
Joined: Wed Apr 11, 2012 10:19 am

Re: Malware Requests, part 2

Post by leeno » Tue Jun 19, 2012 3:42 am

Hi Guys ,

help needed on below sample :

description :

http://www.securelist.com/en/blog/20819 ... o#page_top

Thanks

Leeno

dumb110
Posts: 111
Joined: Tue Jun 05, 2012 1:29 pm

Re: Malware Requests, part 2

Post by dumb110 » Thu Jun 21, 2012 12:56 pm


360Tencent
Posts: 116
Joined: Thu Dec 15, 2011 12:47 pm

Re: Malware Requests, part 2

Post by 360Tencent » Thu Jun 21, 2012 1:11 pm

Hi, I am looking for ACAD/Medre.A

sorry,no md5 or sha1

http://blog.eset.com/2012/06/21/acadmed ... -espionage

User avatar
tachion
Posts: 32
Joined: Sat Dec 24, 2011 10:03 am

Re: Malware Requests, part 2

Post by tachion » Thu Jun 21, 2012 3:48 pm

360Tencent wrote:Hi, I am looking for ACAD/Medre.A

sorry,no md5 or sha1

http://blog.eset.com/2012/06/21/acadmed ... -espionage

I have only MD5 7b563740f41e495a68b70cbb22980b20

analysis - http://www.dataprotectioncenter.com/ant ... -analysis/

dumb110
Posts: 111
Joined: Tue Jun 05, 2012 1:29 pm

Re: Malware Requests, part 2

Post by dumb110 » Thu Jun 21, 2012 4:58 pm


marked_d
Posts: 2
Joined: Tue Mar 06, 2012 8:57 am

Re: Malware Requests, part 2

Post by marked_d » Thu Jun 21, 2012 7:33 pm

Hi,

I'm looking at this sample:
MD5: 445bf30e87b526f89be5bcf09a97219e

Thanks.

Locked