MalShare

A free Malware repository providing researchers access to samples, malicous feeds, and Yara results.

Recently added Samples

MD5 Hash	File type	Added	Source	Yara Hits
95d79a84717131ee31259cecfdb7ab31	ELF	2019-06-18 10:34:46 UTC	http://192.236.195.212/miori.x86	YRP/domain YRP/IP YRP/contentis_base64
e2cfbf9cad3b252b06fee063254986e9	data	2019-06-18 10:18:42 UTC	http://hkyidianyuan.com/f14bs3	YRP/domain YRP/url YRP/contentis_base64
193676f6a41e28850e17ea6f73ad9055	PE32	2019-06-18 10:17:11 UTC	User Submission	YRP/ASPack_v212_additional YRP/ASPack_v21_additional YRP/ASProtect_V2X_DLL_Alexey_Solodovnikov [+] YRP/ASPack_v212 YRP/yodas_Protector_v1033_dllocx_Ashkbiz_Danehkar_h YRP/ASPack_v211d YRP/ASProtect_V2X_DLL_Alexey_Solodovnikov_additional YRP/ASPack_212withouth_Poly_Solodovnikov_Alexey YRP/ASPack_v212_Alexey_Solodovnikov YRP/Borland YRP/ASPackv212AlexeySolodovnikov YRP/ASProtectV2XDLLAlexeySolodovnikov YRP/IsPE32 YRP/IsWindowsGUI YRP/HasOverlay YRP/domain YRP/url YRP/contentis_base64 YRP/maldoc_OLE_file_magic_number YRP/Browsers YRP/Dropper_Strings YRP/anti_dbg YRP/network_dropper YRP/keylogger YRP/spreading_file YRP/win_mutex YRP/win_registry YRP/win_files_operation YRP/win_hook YRP/Big_Numbers3 YRP/Str_Win32_Winsock2_Library YRP/Str_Win32_Wininet_Library YRP/Str_Win32_Internet_API YRP/suspicious_packer_section YRP/CAP_HookExKeylogger
a73a306cf29440c178735f7a3a38119c	ELF	2019-06-18 10:15:46 UTC	http://192.236.195.212/miori.arm	YRP/domain YRP/IP YRP/contentis_base64
816604dae4e8ed62ded0b19021682b12	ELF	2019-06-18 10:15:39 UTC	http://192.236.195.212/miori.arm7	YRP/domain YRP/contentis_base64
0a29029a2eb9314eb6b97573719fc8e9	ELF	2019-06-18 10:15:37 UTC	http://192.236.195.212/miori.arm6	YRP/domain YRP/IP YRP/contentis_base64
de8d232461a1424e3a9d29385f5ab761	PE32	2019-06-18 10:03:00 UTC	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET [+] YRP/Microsoft_Visual_Studio_NET_additional YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/IsPacked YRP/domain YRP/IP YRP/url YRP/contentis_base64 YRP/System_Tools YRP/VM_Generic_Detection YRP/Dropper_Strings YRP/WMI_strings YRP/Misc_Suspicious_Strings YRP/DebuggerCheck__QueryInfo YRP/network_dns YRP/screenshot YRP/keylogger YRP/win_token YRP/win_hook YRP/Big_Numbers1 YRP/Advapi_Hash_API YRP/Str_Win32_Internet_API YRP/CAP_HookExKeylogger
38155a2564376f2a6170557da6493e2d	PE32	2019-06-18 09:55:54 UTC	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET [+] YRP/Microsoft_Visual_Studio_NET_additional YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/UPXv20MarkusLaszloReiser YRP/UPXV200V290MarkusOberhumerLaszloMolnarJohnReiser YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/IsPacked YRP/domain YRP/IP YRP/contentis_base64 YRP/UPX YRP/suspicious_packer_section
56c329b835490a887a6a941adfa6e4c2	PE32	2019-06-18 09:29:06 UTC	http://fafhoafouehfuh.su/11.exe	YRP/IsPE32 YRP/IsWindowsGUI YRP/HasDebugData [+] YRP/IsBeyondImageSize YRP/HasRichSignature YRP/domain YRP/contentis_base64 YRP/DebuggerException__SetConsoleCtrl YRP/anti_dbg YRP/win_files_operation YRP/TEAN
87b7b584d474cb928b68b41c95df0570	PE32	2019-06-18 09:18:43 UTC	http://sinastorage.com/yun2016/B32d.rar	YRP/yodas_Protector_v1033_dllocx_Ashkbiz_Danehkar_h YRP/IsPE32 YRP/IsPacked [+] YRP/HasDebugData YRP/IsBeyondImageSize YRP/HasRichSignature YRP/maldoc_find_kernel32_base_method_1 YRP/domain YRP/IP YRP/url YRP/contentis_base64 YRP/Browsers YRP/Dropper_Strings YRP/Misc_Suspicious_Strings YRP/DebuggerCheck__QueryInfo YRP/Big_Numbers1 YRP/MD5_Constants YRP/BASE64_table YRP/VC6_Random YRP/suspicious_packer_section

Total Samples:3080891