MalShare

A free Malware repository providing researchers access to samples, malicious feeds, and Yara results.

Recently added Samples

MD5 Hash	File type	Added	Source	Yara Hits
e36056a38fb4ceb5623e12a4c8143e74	7-zip	2020-11-29 07:53:28 UTC	User Submission	YRP/domain
b43ad5f97cabc7efaf978ce44441d6d1	PE32	2020-11-29 03:22:21 UTC	Zemana Submission	YRP/Borland_Delphi_40_additional YRP/Microsoft_Visual_Cpp_v50v60_MFC YRP/Borland_Delphi_30_additional [+] YRP/Borland_Delphi_30_ YRP/Borland_Delphi_Setup_Module YRP/Borland_Delphi_40 YRP/Borland_Delphi_v40_v50 YRP/Borland_Delphi_v30 YRP/Borland_Delphi_DLL YRP/Borland YRP/IsPE32 YRP/IsWindowsGUI YRP/IsBeyondImageSize YRP/borland_delphi YRP/domain YRP/url YRP/contentis_base64 YRP/disable_dep YRP/escalate_priv YRP/win_registry YRP/win_token YRP/win_files_operation YRP/CRC32_poly_Constant YRP/Delphi_CompareCall
5e15e555ba77f54b4782f66d08e7193c	PE32	2020-11-29 03:22:07 UTC	Zemana Submission
de5bf4759866ec1666a2a8eb145f552d	PE32	2020-11-29 03:21:23 UTC	Zemana Submission	CuckooSandbox/vmdetect
6794ead7cc30a5dfecf49cab63205310	PE32	2020-11-29 03:21:07 UTC	Zemana Submission	YRP/VC8_Microsoft_Corporation YRP/Microsoft_Visual_Cpp_8 YRP/IsPE32 [+] YRP/IsConsole YRP/HasOverlay YRP/HasDigitalSignature YRP/HasRichSignature YRP/domain YRP/url YRP/contentis_base64 YRP/anti_dbg YRP/win_registry YRP/win_private_profile
0ca63839c6b036b628a4977dd0d520eb	PE32	2020-11-29 03:21:02 UTC	Zemana Submission	CuckooSandbox/embedded_macho CuckooSandbox/vmdetect YRP/VC8_Microsoft_Corporation [+] YRP/Microsoft_Visual_Cpp_8 YRP/IsPE32 YRP/IsWindowsGUI YRP/HasOverlay YRP/HasDigitalSignature YRP/HasDebugData YRP/HasRichSignature YRP/domain YRP/IP YRP/url YRP/contentis_base64 YRP/VMWare_Detection YRP/VirtualBox_Detection YRP/Dropper_Strings YRP/Misc_Suspicious_Strings YRP/DebuggerException__SetConsoleCtrl YRP/vmdetect YRP/Check_OutputDebugStringA_iat YRP/anti_dbg YRP/disable_antivirus YRP/network_tcp_listen YRP/network_smtp_raw YRP/network_tcp_socket YRP/network_dns YRP/escalate_priv YRP/screenshot YRP/win_registry YRP/win_token YRP/win_files_operation YRP/vmdetect_misc YRP/Big_Numbers1 YRP/Big_Numbers2 YRP/CRC32_poly_Constant YRP/CRC32b_poly_Constant YRP/BLOWFISH_Constants YRP/MD5_Constants YRP/RIPEMD160_Constants YRP/SHA1_Constants YRP/SHA512_Constants YRP/WHIRLPOOL_Constants YRP/DES_Long YRP/RijnDael_AES YRP/RijnDael_AES_CHAR YRP/RijnDael_AES_LONG YRP/BASE64_table YRP/Str_Win32_Winsock2_Library YRP/Bolonyokte YRP/suspicious_packer_section YRP/GenerateTLSClientHelloPacket_Test
b4aa41fbe34da27e1e608447d105bd5a	PE32	2020-11-29 03:20:48 UTC	Zemana Submission	CuckooSandbox/vmdetect YRP/IsPE32 YRP/IsWindowsGUI [+] YRP/HasDebugData YRP/HasRichSignature YRP/domain YRP/IP YRP/url YRP/contentis_base64 YRP/VMWare_Detection YRP/VirtualBox_Detection YRP/Dropper_Strings YRP/vmdetect YRP/Check_OutputDebugStringA_iat YRP/anti_dbg YRP/win_registry YRP/win_files_operation YRP/vmdetect_misc YRP/MD5_Constants YRP/BASE64_table
0f9ae1988aacaa4275c6041201f20673	PE32	2020-11-29 03:20:43 UTC	Zemana Submission	YRP/VC8_Microsoft_Corporation YRP/Microsoft_Visual_Cpp_8 YRP/IsPE32 [+] YRP/IsWindowsGUI YRP/HasDebugData YRP/IsBeyondImageSize YRP/HasRichSignature YRP/QtFrameWork YRP/domain YRP/IP YRP/contentis_base64 YRP/anti_dbg
35948eee7e28aaaabc70770c2ef36ef9	PE32	2020-11-29 03:20:39 UTC	Zemana Submission	YRP/VC8_Microsoft_Corporation YRP/Microsoft_Visual_Cpp_8 YRP/IsPE32 [+] YRP/IsConsole YRP/HasDebugData YRP/IsBeyondImageSize YRP/HasRichSignature YRP/QtFrameWork YRP/domain YRP/IP YRP/contentis_base64 YRP/DebuggerException__SetConsoleCtrl YRP/anti_dbg YRP/create_service
810b61668a38c1e5e39539c326448930	PE32	2020-11-29 03:20:36 UTC	Zemana Submission

Total Samples: 3798273