A forum for reverse engineering, OS internals and malware analysis 

Search found 197 matches

 Go to advanced search

Re: Malware analysis - Buster Sandbox Analyzer

 by gjf ¦  Tue Dec 17, 2013 6:22 am ¦  Forum: Tools/Software ¦  Topic: Malware analysis - Buster Sandbox Analyzer ¦  Replies: 314 ¦  Views: 253969

Re: Source of Malware

 by gjf ¦  Thu Oct 18, 2012 1:04 pm ¦  Forum: Malware ¦  Topic: Source of Malware ¦  Replies: 141 ¦  Views: 224580

markusg wrote:if you mean passwort, it is in txt on page
When one tries to download any archive from there the servers asked about authorization.
It is not the subject of password-protected zip-archive, it is question of server authorization (login / password).

Re: Source of Malware

 by gjf ¦  Tue Oct 16, 2012 3:41 pm ¦  Forum: Malware ¦  Topic: Source of Malware ¦  Replies: 141 ¦  Views: 224580

Win32:Virut wrote:http://malwarecenter.me3.pl/
Forbidden
You don't have permission to access / on this server.
Additionally, a 403 Forbidden error was encountered while trying to use an ErrorDocument to handle the request.

Re: Source of Malware

 by gjf ¦  Thu May 31, 2012 10:10 am ¦  Forum: Malware ¦  Topic: Source of Malware ¦  Replies: 141 ¦  Views: 224580

UPD: They are good working pretty fast. Already obtained a pass for login.

Re: Source of Malware

 by gjf ¦  Thu May 31, 2012 9:42 am ¦  Forum: Malware ¦  Topic: Source of Malware ¦  Replies: 141 ¦  Views: 224580

rough_spear wrote:Hi All,
http://malware.lu/
Another resource with necessary registration. I have a bad foreboding with such policy according to my experience.

OK, I've just sent them an e-mail for registration, let's see what they will answer.

Re: Malware analysis - Buster Sandbox Analyzer

 by gjf ¦  Tue May 08, 2012 7:18 am ¦  Forum: Tools/Software ¦  Topic: Malware analysis - Buster Sandbox Analyzer ¦  Replies: 314 ¦  Views: 253969

Pedro Lopez
:)

But sure I have to admit BSA is easy and quite useful for brief analysis.

Re: Antirootkits

 by gjf ¦  Mon Apr 23, 2012 8:52 am ¦  Forum: Tools/Software ¦  Topic: Antirootkits ¦  Replies: 55 ¦  Views: 72319

Esage Bootkit Remover gives error 500 "Internal Server Error".
Looks like link is dead.

Re: Trojan.Mayachok.2

 by gjf ¦  Sun Feb 12, 2012 1:45 pm ¦  Forum: Malware ¦  Topic: WinNT/Rovnix (alias Mayachok, Cidox, BkLoader) ¦  Replies: 83 ¦  Views: 119265

Blitskrieg wrote: TDSSKiller with named detection is available by the following URL - ftp://SLArchive-ro:vOs1onEcsM@data6.kas ... Killer.exe
Now everybody knows your SuperSecret Password, Yuriy :)
Is this version already in public?

Re: Trojan.Mayachok.2

 by gjf ¦  Sun Feb 12, 2012 1:41 pm ¦  Forum: Malware ¦  Topic: WinNT/Rovnix (alias Mayachok, Cidox, BkLoader) ¦  Replies: 83 ¦  Views: 119265

Mikhail Kasimov reported, that only TDSS Killer and VBA32 Antirootkit were able to detect the latest Cidox. By the way RkU and Gmer failed.
EP_X0FF, are you planning to continue work on RkU or the project is fully freezed?

Re: Source of Malware

 by gjf ¦  Thu Jan 26, 2012 12:03 pm ¦  Forum: Malware ¦  Topic: Source of Malware ¦  Replies: 141 ¦  Views: 224580

P.S. If you wanna know my IMHO - here it is. This resource is quite green, but high-flying. There is a lot of broken links and bugs, but in the same time Any member of the mwcollect Alliance has to contribute back, at least in the form of deployed and linked nepenthes sensors. - in such conditions i...

  • 1
  • 2
  • 3
  • 4
  • 5
  • 20