A forum for reverse engineering, OS internals and malware analysis 

Search found 31 matches

 Go to advanced search

Re: Annabelle 2.1 Ransomware

 by heart888 ¦  Mon Mar 11, 2019 1:46 am ¦  Forum: Completed Malware Requests ¦  Topic: Annabelle 2.1 Ransomware ¦  Replies: 1 ¦  Views: 337

attached

Ransom_Defray

 by heart888 ¦  Tue Aug 29, 2017 10:27 pm ¦  Forum: Completed Malware Requests ¦  Topic: Ransom_Defray ¦  Replies: 1 ¦  Views: 3645

Hi guys, I'm looking for samples stated in this report: https://www.proofpoint.com/us/threat-insight/post/defray-new-ransomware-targeting-education-and-healthcare-verticals 947b360b76dd815f5b5d226b8a9aba22fe6b5589a3c16c765625ce2f9d1f5db2 08cf8ed94cc1ef6ae23133f3e506a50d8aad9047c6fa74568a0373d991261a...

Trojan Korplug

 by heart888 ¦  Tue Aug 22, 2017 12:00 am ¦  Forum: Completed Malware Requests ¦  Topic: Trojan Korplug ¦  Replies: 1 ¦  Views: 4157

Hi,
I'm looking for a sample of Korplug with the following MD5:

e696b38ac71b23f50ee68da06a004af3
https://virustotal.com/#/file/da01734ba ... /detection

Appreciate if you can upload it here.
Thanks again

BKDR_OWAUTH.A - Bronze Union

 by heart888 ¦  Thu Aug 10, 2017 10:00 pm ¦  Forum: Completed Malware Requests ¦  Topic: BKDR_OWAUTH.A - Bronze Union ¦  Replies: 1 ¦  Views: 3992

Associated with https://www.secureworks.com/blog/chinese-threat-group-targeted-turkish-organizations Can you please upload samples of below? https://virustotal.com/en/file/0e823a5b64ee761b70315548d484b5b9c4b61968b5068f9a8687c612ddbfeb80/analysis/ cd5aaa37ee165071f914ceec8fd09e0f https://virustotal.c...

Re: Malware collection

 by heart888 ¦  Tue Aug 01, 2017 1:40 am ¦  Forum: Malware ¦  Topic: Win32/Emotet - Banking trojan ¦  Replies: 54 ¦  Views: 11467

Downloaded file 2f15629f816d4bdc7eab2768f3632307, hash not found in VT yet. New attack for browser.Firefox died . Cryptowall http://www.object32.site/ http://www.corner87.site/ new https://www.virustotal.com/pl/file/6bf1ec3bc2f0a97bdca700f02a99db02543fc00e6e9e88bbc444e56c4f74dfc5/analysis/1501502095/

Trojan-Proxy.Linux.Stantinko.a

 by heart888 ¦  Mon Jul 31, 2017 4:33 am ¦  Forum: Completed Malware Requests ¦  Topic: Trojan-Proxy.Linux.Stantinko.a ¦  Replies: 1 ¦  Views: 3810

Appreciate if you can upload a sample of below MD5:
728a60d9a07c15371496a82dcb3ecd56

https://virustotal.com/en/file/a305d488 ... /analysis/

Thanks

Re: Malware collection

 by heart888 ¦  Fri Jul 21, 2017 5:12 am ¦  Forum: Malware ¦  Topic: JS/Nemucod (Zippy ransomeware) ¦  Replies: 16 ¦  Views: 13809

ADWIND /jRAT

 by heart888 ¦  Tue Jul 11, 2017 11:38 pm ¦  Forum: Malware ¦  Topic: ADWIND /jRAT ¦  Replies: 1 ¦  Views: 5843

http://blog.trendmicro.com/trendlabs-se ... wind-jrat/
I only found 2/4 samples. see attached

OSX Image for Vmware

 by heart888 ¦  Tue Jul 11, 2017 6:50 am ¦  Forum: Tools/Software ¦  Topic: OSX Image for Vmware ¦  Replies: 1 ¦  Views: 8492

I was looking for OSX installer to set up an OSX image I can use to analyse OSX sample. Appreciate if you can share an installer or download URL. Thanks

Re: Malware collection

 by heart888 ¦  Sun Mar 05, 2017 11:09 pm ¦  Forum: Malware ¦  Topic: JS/Nemucod (Zippy ransomeware) ¦  Replies: 16 ¦  Views: 13809

https://www.virustotal.com/en/file/3199 ... /analysis/

nemucod /downloader /downloads ransomware

wxw.dpolecnaz.top/admin.php?=1.gif