Search found 90 matches

by maddog4012
Wed Feb 17, 2016 7:42 pm
Forum: Malware
Topic: Locky ransomware
Replies: 142
Views: 202206

Re: Locky ransomware

this malware is dropped from a word doc that arrives in E-mail
by maddog4012
Fri Jan 29, 2016 9:11 pm
Forum: Malware
Topic: BackDoor.Wirenet
Replies: 12
Views: 6621

Netwire RAT

Here is a variant of Netwire I can across today I have included the word doc that is sent to the victim e-mail. when the doc is opened it downloads Netwire
by maddog4012
Thu Jan 07, 2016 11:06 pm
Forum: Malware
Topic: Another Ransomware as a Service
Replies: 2
Views: 5208

Another Ransomware as a Service

I came across a new Ransomware as a Service site all you need to do is enter a Bitcoin address then you set up the amount you want to charge and when it will timeout then you build the exe.

much like the ransome32 earlier this week

the onion site is encryptor3awk6px.onion
by maddog4012
Mon Nov 30, 2015 8:22 pm
Forum: Malware
Topic: TeslaCrypt ransomware
Replies: 58
Views: 89412

Re: TeslaCrypt ransomware

Version download from a java script
by maddog4012
Wed Nov 25, 2015 3:55 pm
Forum: Malware
Topic: ModPOS (Backdoor.Straxbot, TrojanDropper:Win32/Rortiem.A)
Replies: 5
Views: 9393

ModPOS

Do you have any samples or hash values for ModPOS
by maddog4012
Tue Jun 09, 2015 5:59 pm
Forum: Malware
Topic: BARTALEX and downloaded variant of FAREIT
Replies: 0
Views: 2947

BARTALEX and downloaded variant of FAREIT

BARTALEX arrives as a doc file when the doc file is open it then download variant of FAREIT
by maddog4012
Fri May 29, 2015 12:54 pm
Forum: Malware
Topic: Trojan-Ransom.Win32.Toxic.a
Replies: 2
Views: 4555

Re: Trojan-Ransom.Win32.Toxic.a

the only thing I can see are Attempts to detect sandbox characteristics Info: Sample attempted to detect Sandbox using the following string: Failed to create syscall sandbox filter Sample attempted to detect Sandbox using the following string: Sandbox Sample attempted to detect Sandbox using the fol...
by maddog4012
Mon May 11, 2015 2:39 pm
Forum: Malware
Topic: W2KM_BARTALEX.VVRA
Replies: 1
Views: 2951

Re: W2KM_BARTALEX.VVRA

here are the download files
by maddog4012
Fri May 08, 2015 6:23 pm
Forum: Malware
Topic: W2KM_BARTALEX.VVRA
Replies: 1
Views: 2951

W2KM_BARTALEX.VVRA

W2KM_BARTALEX.VVRA.zip
here is a sample of W2KM_BARTALEX.VVRA this MSoffice file when executed download UPATRE and DYRE also attached

https://www.virustotal.com/en/file/25da ... /analysis/