A forum for reverse engineering, OS internals and malware analysis 

Search found 5 matches

 Go to advanced search

Re: Malware collection

 by alio0 ¦  Fri Apr 12, 2019 7:45 am ¦  Forum: Malware ¦  Topic: Malware collection ¦  Replies: 60 ¦  Views: 502124

next https://www.virustotal.com/en/file/c5aa88145481b5ec57a620084e533210b7d896e4b5f7b4aca8abdb68646a8343/analysis/1554905298/ Emotet downloader download exe file from : "hxxp://gajananled.com/wp-admin/GKb3/" the downloaded emotet malware : https://www.virustotal.com/#/file/995a6c605a09db209bcfa81f5...

Re: Malware collection

 by alio0 ¦  Fri Apr 12, 2019 7:10 am ¦  Forum: Malware ¦  Topic: Malware collection ¦  Replies: 60 ¦  Views: 502124

Next https://www.virustotal.com/en/file/eb9c3aab85f99b0542641f7082e327a6af304341c87db0ccd29b35854ded0797/analysis/1554833892/ Simple poor vbs script to download file from " hxxp://adhost22.sslblindado.com/win.png " ( Not available now ) write the downloaded file on disk as "fchhcbbda.exe" in the pa...

APT-C-27

 by alio0 ¦  Tue Mar 26, 2019 9:39 am ¦  Forum: Completed Malware Requests ¦  Topic: APT-C-27 ¦  Replies: 1 ¦  Views: 180

Hello , i'm interested in the samples from this article https://ti.360.net/blog/articles/apt-c-27-%28goldmouse%29:-suspected-target-attack-against-the-middle-east-with-winrar-exploit-en/ md5 of the samples i want : 314e8105f28530eb0bf54891b9b3ff69 ( Malicious ACE Archive contains malicious ) 5bc2de1...

Boom ransomware

 by alio0 ¦  Sat Jan 05, 2019 8:01 am ¦  Forum: Completed Malware Requests ¦  Topic: Boom ransomware ¦  Replies: 1 ¦  Views: 662

want the files mentioned in this tweet https://twitter.com/malwrhunterteam/status/1081289797535219712 sample 1 md5 : d54d2a216e637bcd36e5217cfba98896 vt report : https://www.virustotal.com/#/file/d620778dbbcf11e3a293aeaaebac7b6a9a02e7d8790ca5ffa59bda1e9b9632f4/details sample 2 md 5: e8e07496df5370d2...

Re: Malware collection

 by alio0 ¦  Mon Mar 26, 2018 9:43 am ¦  Forum: Malware ¦  Topic: Win32/Bladabindi (NJ RAT) ¦  Replies: 17 ¦  Views: 24394

markusg wrote: Sun Mar 25, 2018 11:12 pm SHA-256
9af45575893cc12a2f92165f2f3805e7bdf6206fc1ae3adb2d0a7a3034a35fbc
File name
Fast Instagram Checker.exe
https://www.virustotal.com/#/file/9af45 ... /detection
it is njrat (Win32.Bladabindi)
connect to : system123.linkpc.net