A forum for reverse engineering, OS internals and malware analysis 

Forum for completed malware requests.
 #15292  by Mut4nt
 Wed Aug 22, 2012 2:50 am
hello, could someone share these samples, please:

601b3f2466bfa6989b9c7586b5ba54aa
https://www.virustotal.com/file/5c64b14 ... /analysis/

3bd41125ad2b73afb7be83b54efe1376 ( not found on VT ), alias: Cutwail.K
http://r.virscan.org/0b9fdb5777d7fe18d9656e18029b36ec

2C1C355F317653417B59B11E80B41F3E( not found on VT )
unique ref: http://www.threatexpert.com/files/lanmandrv.sys.html
also known as Infostealer : http://www.symantec.com/security_respon ... 16-0558-99
 #15294  by codefyre
 Wed Aug 22, 2012 4:40 am
Mut4nt wrote:hello, could someone share these samples, please:

601b3f2466bfa6989b9c7586b5ba54aa
https://www.virustotal.com/file/5c64b14 ... /analysis/

3bd41125ad2b73afb7be83b54efe1376 ( not found on VT ), alias: Cutwail.K
http://r.virscan.org/0b9fdb5777d7fe18d9656e18029b36ec

2C1C355F317653417B59B11E80B41F3E( not found on VT )
unique ref: http://www.threatexpert.com/files/lanmandrv.sys.html
also known as Infostealer : http://www.symantec.com/security_respon ... 16-0558-99
found 601B3F2466BFA6989B9C7586B5BA54AA
Attachments
(6.79 KiB) Downloaded 48 times
 #15300  by Xylitol
 Wed Aug 22, 2012 12:29 pm
Thanat0S wrote:hi!, Looking for Unreal.B, Unreal.C samples:

http://www.anti-malware.ru/forum/lofive ... t2869.html

Yes, I know they are from 2007, but I like to have them, pleas, thanks
Unreal.B in attach.
Mut4nt wrote:hello, could someone share these samples, please:

601b3f2466bfa6989b9c7586b5ba54aa
https://www.virustotal.com/file/5c64b14 ... /analysis/

3bd41125ad2b73afb7be83b54efe1376 ( not found on VT ), alias: Cutwail.K
http://r.virscan.org/0b9fdb5777d7fe18d9656e18029b36ec

2C1C355F317653417B59B11E80B41F3E( not found on VT )
unique ref: http://www.threatexpert.com/files/lanmandrv.sys.html
also known as Infostealer : http://www.symantec.com/security_respon ... 16-0558-99
Cutwail.K in attach.
prim wrote:Hello, i'm looking this sample:
https://www.virustotal.com/file/c093b72 ... /analysis/
MD5: f004e38040e3e00c6c83a315caa2bdcf

Thanks!
In attach.
Waves97 wrote:I'm looking for a working sample Weelsof.
Attach.
Attachments
infected
(134.14 KiB) Downloaded 51 times
infected
(296.38 KiB) Downloaded 51 times
 #15302  by morts999
 Wed Aug 22, 2012 1:26 pm
Xylitol wrote:
morts999 wrote:Hi, I am looking for a recent sample of Shylock, particularly recent version reported at http://www.symantec.com/connect/blogs/m ... g-websites

Many thanks
Search the forum.
gritland wrote:Hello, i'm looking this sample
https://www.virustotal.com/file/f522b54 ... sis/#votes

thanks!
f522b5492187f566e3a9d537d86783ce05df01ff399b6637966a56cbab4c16cd.zip
Thanks Xylitol, however, this looks to be Carberp... I did search the forum prior to posting my request also.
 #15313  by frame4-mdpro
 Wed Aug 22, 2012 9:21 pm
Mut4nt wrote:hello, could someone share these samples, please:

601b3f2466bfa6989b9c7586b5ba54aa
https://www.virustotal.com/file/5c64b14 ... /analysis/

3bd41125ad2b73afb7be83b54efe1376 ( not found on VT ), alias: Cutwail.K
http://r.virscan.org/0b9fdb5777d7fe18d9656e18029b36ec

2C1C355F317653417B59B11E80B41F3E( not found on VT )
unique ref: http://www.threatexpert.com/files/lanmandrv.sys.html
also known as Infostealer : http://www.symantec.com/security_respon ... 16-0558-99
601b3f2466bfa6989b9c7586b5ba54aa attached!
Attachments
pass: infected
(6.68 KiB) Downloaded 52 times
  • 1
  • 5
  • 6
  • 7
  • 8
  • 9
  • 15