KernelMode.info

A forum for reverse engineering, OS internals and malware analysis
https://www.kernelmode.info/forum/

Malware Requests

https://www.kernelmode.info/forum/viewtopic.php?f=21&t=649

Page 5 of 10

Re: Malware Requests

PostPosted:Wed Sep 21, 2011 9:40 am
by bitx
Howdy :)

Have you seen this rogue? http://forum.malekal.com/security-defense-t34268.html

I'm willing to find it.

Thanks

Re: Malware Requests

PostPosted:Tue Sep 27, 2011 11:09 pm
by shaheen
http://blog.eset.com/2011/09/27/towering-qbot-certificates

any sample of this?

Thanks

Re: Malware Requests

PostPosted:Wed Sep 28, 2011 6:39 pm
by p4r4n0id
Hi,
I am looking for the Mac Flashback Sample. MD5 is 893173D0B12A6C6912FB6134DFECAA5B.

Thx,
p4r4n0id

Re: Malware Requests

PostPosted:Mon Oct 03, 2011 11:53 pm
by Gunnerofarsenal
Requesting recent mac malware for a paper I'm working on, I found the mac defender available on this forum. If anyone can provide me with samples, or pointers to right direction for links below. It would be much appreciated :)

http://www.macworld.com/article/162496/ ... aller.html

http://www.f-secure.com/weblog/archives/00002241.html

Re: Malware Requests

PostPosted:Mon Oct 10, 2011 1:27 pm
by suniljoseph
Maxstar wrote:
suniljoseph wrote:Hi,
I am trying to get the installer for Win32/FakeScanti (Microsoft). It would be great if anyone could provide a sample which comes with TrojanDropper:Win32/Sirefef.B (zeroaccess) or W32/Katusha.

Malware name: Win32/FakeScanti
Short description of malware you want (optional), link to AV site/article etc describing malware
http://www.2-spyware.com/remove-av-guard-online.html
AV Guard Online
http://www.kernelmode.info/forum/viewto ... 9015#p9015
Thanks for pointing that out :) . That looks like the dropped file. I am trying to get my hand on the dropper too.

Re: Malware Requests

PostPosted:Wed Oct 12, 2011 12:58 am
by Striker
Hey, im looking for a rogue called "WinHound"

here is a screenshot:

Image

If anyone does have other old rogue samples from the year 2007, 2008 etc..pls share :). thanks.

Re: Malware Requests

PostPosted:Wed Oct 12, 2011 12:32 pm
by p4r4n0id
Striker wrote:Hey, im looking for a rogue called "WinHound"

here is a screenshot:

Image

If anyone does have other old rogue samples from the year 2007, 2008 etc..pls share :). thanks.
MD5?

Re: Malware Requests

PostPosted:Wed Oct 12, 2011 5:30 pm
by Striker
p4r4n0id wrote:MD5?
unfortunately i cannot edit my post. here are the MD5.

Installer: winhoundinstaller.exe (2559 KB)
MD5: 49693FA15155B8B0B4EE5BB8135FD0B9

Re: Malware Requests

PostPosted:Thu Oct 20, 2011 10:10 pm
by Gunnerofarsenal
Flashback Mac OS X, very appreciated

MD5 hash of Flashback.C sample (actual .pkg): 041ec03a36598a9823fb342cd9840acc
MD5 hash of Flashback.C sample (postinstall): e24979f7bd55a458a33247c5201a6a7d

Re: Malware Requests

PostPosted:Tue Nov 01, 2011 4:26 am
by hnpl2011
A serious code injection vulnerability affecting timthumb, a popular image resize script used in many WordPress themes and plugins, has been exploited in recent months to compromise over 1 million Web pages.
more info:
http://www.binarymoon.co.uk/2011/08/timthumb-2/
http://www.infoworld.com/d/security/ser ... sed-177520
anyone get infected? check and post the sample here, thank :)
All times are UTC
Page 5 of 10
Powered by phpBB® Forum Software © phpBB Group
https://www.phpbb.com/