A forum for reverse engineering, OS internals and malware analysis 

Search found 336 matches

 Go to advanced search

Re: Win32/Loktrom (aka WindowsSecurity, LokoMoTo)

 by Win32:Virut ¦  Sun Jun 15, 2014 11:34 am ¦  Forum: Malware ¦  Topic: Win32/Loktrom (aka WindowsSecurity, LokoMoTo) ¦  Replies: 64 ¦  Views: 81556

Re: Request

 by Win32:Virut ¦  Tue May 27, 2014 5:25 pm ¦  Forum: Completed Malware Requests ¦  Topic: Request ¦  Replies: 2 ¦  Views: 2499

I should have searched it at VirusShare before... Thanks :)

Request

 by Win32:Virut ¦  Tue May 27, 2014 4:40 pm ¦  Forum: Completed Malware Requests ¦  Topic: Request ¦  Replies: 2 ¦  Views: 2499

Hi,

I'm looking for ae58255328d3c5fcd146e3592a35a039

https://www.virustotal.com/en/file/7736 ... /analysis/

There's a link in a comment, but it points for another file.

Thanks in advance!

Re: Necurs - another x64 rootkit

 by Win32:Virut ¦  Fri May 16, 2014 8:04 pm ¦  Forum: Malware ¦  Topic: Necurs - another x64 rootkit ¦  Replies: 70 ¦  Views: 96873

3 drivers

Unknown trojan.downloader

 by Win32:Virut ¦  Tue Mar 18, 2014 6:54 pm ¦  Forum: Malware ¦  Topic: Win32/Kelihos (+Waledac downloader) ¦  Replies: 94 ¦  Views: 131433

Could someone check what is that? It downloads a Kelihos and Simda sample for me.

Re: Win32/Urausy (aka "WinLocker")

 by Win32:Virut ¦  Sun Mar 09, 2014 10:30 am ¦  Forum: Malware ¦  Topic: Win32/Urausy (aka "WinLocker") ¦  Replies: 80 ¦  Views: 79511

New, fresh sample Bkav: HW32.CDB.355f Comodo: Heur.Packed.Unknown Emsisoft: Trojan-Ransom.Win32.LockScreen (A) Malwarebytes: Trojan.Kelihos.XGen Qihoo-360: Malware.QVM19.Gen TrendMicro: PAK_Generic.001 TrendMicro-HouseCall: PAK_Generic.001 VIPRE: Trojan.Win32.Kryptik.mwe (v) https://www.virustotal.c...

Re: Malware that destroys system files

 by Win32:Virut ¦  Fri Jan 31, 2014 6:03 pm ¦  Forum: Malware ¦  Topic: BAT/Joke Cruelsister's rootkit analyzer ¦  Replies: 8 ¦  Views: 5398

This was just made for antivirus tests, not a real malware.

Re: Win32/PSW.StealZilla.A

 by Win32:Virut ¦  Wed Jan 29, 2014 12:25 pm ¦  Forum: Malware ¦  Topic: Win32/PSW.StealZilla.A ¦  Replies: 1 ¦  Views: 2619

More files mentioned in the article (B9A12F9B6827144D84E65EF2BA454D77CB423C5E136F44BC8D3163D93B97F11F and 2451599C03B136C1848F538184F0F266973B65AFC8DD25F272A7E6B0555B657A).

Win32/PSW.StealZilla.A

 by Win32:Virut ¦  Tue Jan 28, 2014 2:01 pm ¦  Forum: Malware ¦  Topic: Win32/PSW.StealZilla.A ¦  Replies: 1 ¦  Views: 2619

https://blog.avast.com/2014/01/27/malformed-filezilla-ftp-client-with-login-stealer/ Malicious Installer v3.5.3: SHA256: 595D954C7CE574337C97A0801E779BC3DCA94FC92AFAE8F483DCDD1A053C5C24 Malicious FileZilla.exe v3.5.3 SHA256: 525E9ED135C1435772A774D7AD7168CECCD225E354118E621482DB61174F6734 Malicious ...

Re: Rogue Antimalware (FakeAV, 2014 year)

 by Win32:Virut ¦  Mon Jan 20, 2014 4:52 pm ¦  Forum: Malware ¦  Topic: Rogue Antimalware (FakeAV, 2014 year) ¦  Replies: 58 ¦  Views: 69301

Image

  • 1
  • 2
  • 3
  • 4
  • 5
  • 34