Search found 163 matches

by rough_spear
Mon Apr 08, 2013 6:43 pm
Forum: Malware
Topic: Backdoor Andromeda (waahoo, alias Gamarue)
Replies: 129
Views: 193240

Re: Backdoor Andromeda (alias Gamarue)

Hi All,

Bunch of Gamarue samples.

list of MD5

3B84A54AF86CE34C01C566E0598890DD
8B1FE210134BC965E85D3923DB1F8DB4
9AE4F2B681420AF3681E780F22FDFC9F
AB981DF9F4CF57FEB4DC35FA5A3AC473
B0F61529EBF6B83B99900E91BB752EF0

Regards,

rough_spear. ;)
by rough_spear
Sun Apr 07, 2013 12:12 am
Forum: Malware
Topic: Win32/Zeus (alias Zbot)
Replies: 281
Views: 361599

Re: Win32/Zeus (alias Zbot)

Hi All,

Two more Zbot samples

MD5
1C16AFE42BDE47275AE687650B3CD062
497DBDF3059D003EA040428910F6ADB3

Regards,

rough_spear. ;)
by rough_spear
Fri Apr 05, 2013 7:31 am
Forum: Malware
Topic: Win32.Dorifel / W32/XDocCrypt.a
Replies: 7
Views: 8438

Re: Win32.Dorifel / W32/XDocCrypt.a

Hi All, One more Dorifel sample. MD5 - 747b10da9a706ecfbbff11023a9e37a6 VT link - https://www.virustotal.com/en/file/6d200a1829c4ae63ff00254e68ddd078b09e199876c879e84dae77bbc3243cc6/analysis/ 18 / 45 malicious URL hxxp://mhna.net/wind.html hxxp://robbiedsayers.com/exhusband.html hxxp://sanmarcos-cri...
by rough_spear
Wed Apr 03, 2013 8:18 am
Forum: Malware
Topic: Backdoor Andromeda (waahoo, alias Gamarue)
Replies: 129
Views: 193240

Re: Backdoor Andromeda (alias Gamarue)

Hi All, one more sample in the wild. Dropper. Low detection. MD5 - A11B7DEC0A997DFB0FE63979C2FEF639 VT link - https://www.virustotal.com/en/file/160d08e8c77655460ddbd1b9bd1107ba29cbe8ed7c7a455825ba72d0b2609bad/analysis/ 8 / 44 Dropped file md5 list. F3BD9F6300AB86B917A308BEC5EF9FC3 A30E86828A5A724E0...
by rough_spear
Thu Mar 21, 2013 7:16 pm
Forum: Malware
Topic: Win32/Zeus (alias Zbot)
Replies: 281
Views: 361599

Re: Win32/Zeus (alias Zbot)

Hi All,

2 more files of Zbot.

MD5

4553AFA4E01B74CA207613B565295A2A
610DC991350C194BA1C3EB0039E43DD0

Regards,

rough_spear.
by rough_spear
Thu Mar 21, 2013 7:13 pm
Forum: Malware
Topic: Win32/Cutwail
Replies: 33
Views: 43094

Re: Trojan Cutwail

Hi All,

Cutwail, the spammer.

04B8F491870F1341BFB54B4E5E235E9C

VT link - https://www.virustotal.com/en/file/5221 ... /analysis/

25 / 44

Regards,

rough_spear.
by rough_spear
Thu Mar 21, 2013 6:58 pm
Forum: Malware
Topic: Win32/Fareit
Replies: 60
Views: 118765

Re: Win32/Fareit

Hi All,

Fareit which downloads various Zbot files.

MD5
3B9B00D63B8BDA442CCA5C37F171D2A3

VT link - https://www.virustotal.com/en/file/df89 ... 363891555/

27 / 42

Regards,

rough_spear. ;)
by rough_spear
Thu Mar 21, 2013 6:53 pm
Forum: Malware
Topic: Win32/Zeus (alias Zbot)
Replies: 281
Views: 361599

Re: Win32/Zeus (alias Zbot)

Hi All,

Here are 5 files of Zbot.

list of MD5
3FEA31FF25592C2C23E822EFE6088225
88891B61341B231B75F85C9989451713
A294C9AECFBBFF2F816A1CFFE5F07C2C
BE91584FF5CEBB82F8FEBFC720B7E87D
FA503BA5FAB027D995A1383129438B89

Regards,

rough_spear. ;)
by rough_spear
Tue Mar 19, 2013 12:55 pm
Forum: Malware
Topic: Backdoor Andromeda (waahoo, alias Gamarue)
Replies: 129
Views: 193240

Re: Backdoor Andromeda (alias Gamarue)

Hi All, :D Here are two more samples.low detection. 44ff2421bbd7918c6ad68da4fa276e02 VT link - https://www.virustotal.com/en/file/8909a06ad36bb9e48b7accca3595e5348d1e25162324c5fdc52683dfb7697ac6/analysis/ 5 / 45 bc76bd7b332aa8f6aedbb8e11b7ba9b6 VT link - https://www.virustotal.com/en/file/9535a9bb1a...
by rough_spear
Thu Feb 28, 2013 11:00 am
Forum: Malware
Topic: Necurs - another x64 rootkit
Replies: 70
Views: 96193

Re: Necurs - another x64 rootkit

Hi All, Necurs revisited. Driver component. VT link - https://www.virustotal.com/en/file/978dd71fdd20656b7449b51edf874383e3012fe76580cb9899c0b3ad02f2fc77/analysis/ (1 / 45) Dropper EXE VT link - https://www.virustotal.com/en/file/5dfd896758da7909e7a0c40b6889d02af62900fa1cc7f21b105989bd8ec112f2/analy...