A forum for reverse engineering, OS internals and malware analysis 

Syrian government malware

Forum for completed malware requests.

Syrian government malware

 #14415  by iodust
 Mon Jul 02, 2012 8:49 pm
Hello,

I'm looking for malware created by the Syrian government. Could anyone please provide me with the following sample, or any they've attained?

md5: 0d1bd081974a4dcdeee55f025423a72b

Re: Malware Requests, part 2

 #14416  by 360Tencent
 Mon Jul 02, 2012 11:31 pm
Blackshades RAT(https://citizenlab.org/2012/06/syrian-a ... -software/)
File: Blackshades_new_new .pif_0d1bd081974a4dcdeee55f025423a72b
Size: 395776
MD5: 0D1BD081974A4DCDEEE55F025423A72B

XTreme RAT(http://www.f-secure.com/weblog/archives/00002356.html)
File: XTremeRAT_silvia.exe
Size: 233825
MD5: FB6E419E0FD9C2F39BE43BCADBD2879F
File: XtremeRAT_svhost2.exe
Size: 69632
MD5: 41A2159B94C6883F03D2D901428A5891

Dark Comet RAT(http://blog.trendmicro.com/fake-skype-e ... et-trojan/)
File: ورقة حول مجلس القيادة_as‮ fdp.scr
Size: 860608
MD5: 8C9F9CCFFBD2C888B9B5300412F8E580

From contagio
infected
(913.25 KiB) Downloaded 93 times

Re: Malware Requests, part 2

 #14421  by hx1997
 Tue Jul 03, 2012 12:39 pm
iodust wrote:Hello,

I'm looking for malware created by the Syrian government. Could anyone please provide me with the following sample, or any they've attained?

md5: 0d1bd081974a4dcdeee55f025423a72b
One more besides above.

edited: add one sample, now there are two in the 7z.
Attachments
infected
(479.58 KiB) Downloaded 75 times

Re: Malware Requests, part 2

 #14639  by Xylitol
 Sat Jul 14, 2012 10:01 am
iodust wrote:Hello,

Thanks 360Tencent and hx1997 for the previous samples :)

Might anybody have the malware mentioned in this article? It is fairly recent...

https://www.eff.org/deeplinks/2012/07/n ... es-malware
430f220ee9b3083b43347918dbda3051145734e243e92b966a99990376c21eb8 new.pif
Attachments
infected
(281.92 KiB) Downloaded 55 times
 Return to “Completed Malware Requests”