A forum for reverse engineering, OS internals and malware analysis 

Search found 13 matches

 Go to advanced search

Re: Zero Day Java Exploits(All Java Exploits goes here)

 by DWS94 ¦  Thu Sep 06, 2012 4:22 am ¦  Forum: Malware ¦  Topic: Zero Day Java Exploits(All Java Exploits goes here) ¦  Replies: 68 ¦  Views: 320414

MD5: 3f770f0954c37f2ee3844b89e77d2d2b

https://www.virustotal.com/file/f6e18e8 ... 346905040/

Re: Zero Day Java Exploits(All Java Exploits goes here)

 by DWS94 ¦  Thu Aug 30, 2012 3:10 am ¦  Forum: Malware ¦  Topic: Zero Day Java Exploits(All Java Exploits goes here) ¦  Replies: 68 ¦  Views: 320414

MD5: 40bd28b93238b76844478cf718b13aca https://www.virustotal.com/file/a75267c77a9d879a5b30d7072e5be935e24d94ebb2204ae19d2e2bae92a102a7/analysis/1346295690/ MD5: f52c58bc221c444dab8df516e034c9e9 https://www.virustotal.com/file/491c2d7205da214b1f2584f03d826147cbd190238a67874d58085cf124f5fc27/analysis/...

Re: Zero Day Java Exploits(All Java Exploits goes here)

 by DWS94 ¦  Wed Aug 29, 2012 10:51 am ¦  Forum: Malware ¦  Topic: Zero Day Java Exploits(All Java Exploits goes here) ¦  Replies: 68 ¦  Views: 320414

Oracle Java 7 Update 6, and possibly other versions, allows remote attackers to execute arbitrary code via a crafted applet, as exploited in the wild in August 2012 using Gondzz.class and Gondvv.class cve2012xxxx/Gondzz.class - http://pastebin.com/pdrkL3xV cve2012xxxx/Gondvv.class http://pastebin.co...

Re: Malware Requests, part 2

 by DWS94 ¦  Fri Jul 20, 2012 1:02 pm ¦  Forum: Malware ¦  Topic: Trojan Ransom / FakePoliceAlert ¦  Replies: 134 ¦  Views: 124232

police virus National Police Illegal Activity Detected! Your operating system is blocked for violation of the laws of the Kingdom of the Netherlands! Your IP address is: [XXXXXX]. IP address is detected and registered in the National Police of the Kingdom of the Netherlands. The user of this IP add...

Re: Malware Requests, part 2

 by DWS94 ¦  Thu Jul 19, 2012 4:09 pm ¦  Forum: Completed Malware Requests ¦  Topic: Trojan:Win32/Ransom.II ¦  Replies: 1 ¦  Views: 1748

I'm looking for Ransom.II working sample https://www.botnets.fr/index.php/Ransom.II I have some samples, but when I run it, then I get error 404. Sorry, I don't have MD5 of working sample. sample MD5: A7768F4973AD7CF8217212A4D12DBAE0 sample Can work , You should have this sample http://p13.freep.cn...

Re: Trojan Zeus (alias ZBot)

 by DWS94 ¦  Thu Jul 19, 2012 12:27 pm ¦  Forum: Malware ¦  Topic: Win32/Zeus (alias Zbot) ¦  Replies: 281 ¦  Views: 363741

MD5: 7f0a5823cf07e2aa53171204ceacd77b
https://www.virustotal.com/file/2e84e79 ... /analysis/ 2 / 42

Re: Rogue antimalware (FakeAV, FakeAlert)

 by DWS94 ¦  Thu Jul 19, 2012 4:38 am ¦  Forum: Malware ¦  Topic: Rogue Antimalware (FakeAV, 2012 year) ¦  Replies: 454 ¦  Views: 221998

SmartFortress2012
http://www.symantec.com/security_respon ... 99&tabid=2

MD5: C721946463229A17C715123F7876A1A5

Re: Malware Requests, part 2

 by DWS94 ¦  Sat Jul 14, 2012 3:24 am ¦  Forum: Completed Malware Requests ¦  Topic: Malware Requests, part 2 ¦  Replies: 145 ¦  Views: 119207

https://www.virustotal.com/file/6be8eff6c9d064fc2391d2704fc93ddf99e9b093501ca06014af02c0b510ecbb/analysis/1342200265/ anybody has it?? also anybody has a fakeAV samples from here: pcsafedoctor.com and sample for rogue bulletproof?? Maybe you are looking for this RKHit.sys MD5: 330E42B31708CA5A7BAD2...

IE Exploit ?

 by DWS94 ¦  Thu Jul 12, 2012 4:07 am ¦  Forum: Malware ¦  Topic: IE Exploit ? ¦  Replies: 0 ¦  Views: 3006

tian ya

 by DWS94 ¦  Tue Jul 10, 2012 12:41 pm ¦  Forum: Tools/Software ¦  Topic: tian ya ¦  Replies: 0 ¦  Views: 3250

It has no English names ,I can't translate this tool's name .I don't know whether it was published in the BBS. :shock:

This tool is an AV company employees works,But the authors in 2009 have no longer update. It's in China and xuetr same famous, But xuetr more stable.

Welcome to test :arrow: