A forum for reverse engineering, OS internals and malware analysis 

Malware Requests, part 2

Forum for completed malware requests.
 Topic locked

Re: Malware Requests, part 2

 #15221  by 360Tencent
 Thu Aug 16, 2012 5:33 am
Sorry , request sample again

1.CVE-2012-1535: Adobe Flash being exploited in the wild

http://labs.alienvault.com/labs/index.p ... -the-wild/


iPhone 5 Battery.doc
https://www.virustotal.com/file/742db58 ... /analysis/

2.TROJAN.MYAGENT

http://blog.fireeye.com/research/2012/0 ... agent.html

dropper

https://www.virustotal.com/file/d4d2814 ... /analysis/

https://www.virustotal.com/file/96f825b ... /analysis/

3. Win32/Bafruz

http://blogs.technet.com/b/mmpc/archive ... afruz.aspx

Thanks for your patience

Re: Malware Requests, part 2

 #15224  by timjoris
 Thu Aug 16, 2012 7:44 am
Hello all of you, I am currently looking for the new Hermes Variant that Citadel is distributing through Europe.

a) Hermes variant
b) SHA f42e71f3e5121412e2c82d7ac982e5036f63d39c1c6591c3630f6b3fd8a48180
c) MD5 20be4f07f9a12c35463361a7212ca5ff

(The hashes are not confirmed since I don't have any samples)

Sorry about the lack of information but it is still rather new and I would like to have a sample from it.

Regards

Tim

Re: Malware Requests, part 2

 #15227  by Xylitol
 Thu Aug 16, 2012 9:59 am
360Tencent wrote:Hi,looking for Quarter2012_8k_fees_NYSE.exe

http://www.barracudalabs.com/wordpress/ ... edge-funds

https://www.virustotal.com/file/69e45e9 ... /analysis/
The attachment interest_pcap2.jpg is no longer available
Thanks for the help
infected
(94.11 KiB) Downloaded 50 times
360Tencent wrote:Sorry , request sample again

1.CVE-2012-1535: Adobe Flash being exploited in the wild

http://labs.alienvault.com/labs/index.p ... -the-wild/


iPhone 5 Battery.doc
https://www.virustotal.com/file/742db58 ... /analysis/

2.TROJAN.MYAGENT

http://blog.fireeye.com/research/2012/0 ... agent.html

dropper

https://www.virustotal.com/file/d4d2814 ... /analysis/

https://www.virustotal.com/file/96f825b ... /analysis/

3. Win32/Bafruz

http://blogs.technet.com/b/mmpc/archive ... afruz.aspx

Thanks for your patience
infected
(1.76 MiB) Downloaded 124 times
timjoris wrote:Hello all of you, I am currently looking for the new Hermes Variant that Citadel is distributing through Europe.

a) Hermes variant
b) SHA f42e71f3e5121412e2c82d7ac982e5036f63d39c1c6591c3630f6b3fd8a48180
c) MD5 20be4f07f9a12c35463361a7212ca5ff

(The hashes are not confirmed since I don't have any samples)

Sorry about the lack of information but it is still rather new and I would like to have a sample from it.

Regards

Tim
infected
(375.34 KiB) Downloaded 56 times

Re: Malware Requests, part 2

 #15275  by Xylitol
 Tue Aug 21, 2012 1:11 pm
morts999 wrote:Hi, I am looking for a recent sample of Shylock, particularly recent version reported at http://www.symantec.com/connect/blogs/m ... g-websites

Many thanks
Search the forum.
gritland wrote:Hello, i'm looking this sample
https://www.virustotal.com/file/f522b54 ... sis/#votes

thanks!
infected
(8.23 KiB) Downloaded 54 times
 Topic locked
  • 1
  • 4
  • 5
  • 6
  • 7
  • 8
  • 15
 Return to “Completed Malware Requests”