A forum for reverse engineering, OS internals and malware analysis 

Forum for analysis and discussion about malware.
 #6848  by bitx
 Fri Jun 17, 2011 9:04 am
Windows Stability Alarm

Image
Attachments
pass=malware
(1.67 MiB) Downloaded 66 times
Last edited by EP_X0FF on Mon Oct 31, 2011 7:06 am, edited 2 times in total. Reason: title edited
 #6850  by rough_spear
 Fri Jun 17, 2011 5:12 pm
Windows Security

Here is new windows security. :)

hxxp://difiestran.cz.cc/AdwareRemover.exe

Regards,


rough_spear.
Attachments
password - malware
(264.28 KiB) Downloaded 71 times
Last edited by EP_X0FF on Mon Oct 31, 2011 7:07 am, edited 1 time in total. Reason: title edited
 #6860  by Xylitol
 Sat Jun 18, 2011 3:38 pm
EP_X0FF wrote: Image
i lol'd too, today some guys on irc talked me 'i will pay money you will be killed'
haha who they will call, hitman ? :)

in attach, unpacked MS removal tool sample, have fun.

Image
Image
Image
Image
Image
Image

20/41 >> 48.8%
http://www.virustotal.com/file-scan/rep ... 1308411365
Attachments
pwd: xylibox
(619.76 KiB) Downloaded 71 times
 #6872  by Xylitol
 Sun Jun 19, 2011 8:01 pm
Tracking Cyber Crime: Gagarincash AV Affiliate: http://xylibox.blogspot.com/2011/06/tra ... sh-av.html
Security Shield 2011 related.

Image

In attach, unpacked sample, have fun.

8/42 >> 19.0%
http://www.virustotal.com/file-scan/rep ... 1308513477
Attachments
pwd: xylibox
(420.96 KiB) Downloaded 90 times
 #6892  by Xylitol
 Mon Jun 20, 2011 9:50 pm
Security Shield fake scanner page & decoder

hXXp://46.161.10.145/index.php?6CN=OAY7O72C8RW2738&Ou58Q=KClLP2hbJ0QiOG1eV0QuKR1Y&F8=934&h9eiY=SAkW1xLK2IBF3oAHmAPbAJMci5zRQIHLV5QS11OcHF9Bl&9q=4794QTM697WU39K20X8B50CRB&LjhsK=Q61992FID692T998864232&llOA=ixTC3IINmVXVgFceX8%2BAGIIAn9sa3djczpdR0M%3D&jFo9m=xQZl1aDQoGV1NXAHhtU&8429L=ONB1Q85FUZERDN8&Q93bV=N&SpI=URGKTMuGj8rK&fm2=l1IXFxNL\#9

Image

Use js/decoder.js in malzilla for deobs the rsa.
Attachments
pwd: xylibox
(95.88 KiB) Downloaded 87 times
 #6898  by Xylitol
 Tue Jun 21, 2011 7:52 pm
Windows Clear Problems

Loc: hxxp://hdxxxvideoonline.com/movie8064/movie.exe

Image

http://www.virustotal.com/file-scan/rep ... 1308685311
Attachments
pwd: xylibox
(3.27 MiB) Downloaded 78 times
Last edited by EP_X0FF on Mon Oct 31, 2011 7:07 am, edited 1 time in total. Reason: title edited
 #6914  by bitx
 Thu Jun 23, 2011 10:38 am
Windows Cleaning Tool

Image
Attachments
pass=malware
(1.65 MiB) Downloaded 65 times
Last edited by EP_X0FF on Mon Oct 31, 2011 7:08 am, edited 1 time in total. Reason: title edited
  • 1
  • 16
  • 17
  • 18
  • 19
  • 20
  • 34