[Kamala]

Is there a place I could grab malware samples (for some well known malwares) with *source* that I could potentially tweak for testing purpose? I have enough samples but none with source. Thanks.

[EP_X0FF]

Thread closed due to rule 1.
See http://www.kernelmode.info/forum/viewtopic.php?f=8&t=16 for more info.

Reopened by topic starter request.

[Kamala]

Apologies. I appear to have caused a bit of confusion with my terse question. Here is a little more information -

I was requesting for source for productive reasons only. I am working on a solution that is better than signature based malware detection. For me to prove it, I need to take an existing malware sample, tweak it so signature based solutions won't detect it and then demonstrate that our solution nevertheless stopped that malware from doing any damage to the system. And I asked for malware sample source for that reason only. That being the case, please let me know if you have any suggestion. If you still think this question is not appropriate for the forum, it would be good to know that as well for the sake of the future. Thanks.

[EP_X0FF]

I am working on a solution that is better than signature based malware detection. For me to prove it, I need to take an existing malware sample, tweak it so signature based solutions won't detect it

This can be done with obfuscation. All you need - FUD obfuscator. Then you can use it on even 5-6 years old malware that had 100% detection ratio on multiscanners such as VT. If obfuscator is really FUD then there will be 0 detections. As you might understand such "protection" software isn't freeware and circulates on a malware-oriented blackmarket. Here, on public forum I doubt you can find anything. One of examples of crypter/obfuscator story - http://xylibox.blogspot.com/2012/01/cra ... 1-fwb.html

[Kamala]

Thanks for the link.

[kmd]

zeus came opensource last year
lots of crypters with src in google (see dark crypter, tejon)