MalShare

A free Malware repository providing researchers access to samples, malicious feeds, and Yara results.

Recently added Samples

SHA256 Hash	File type	Added	Source	Yara Hits
f0abd35da5a0d94d3411a2ffa57f424e9a4feec6cc4ba290161e868e081c7008	PE32	2022-01-16 19:01:56 UTC	User Submission	YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI [+] YRP/HasDebugData YRP/domain YRP/IP YRP/url YRP/contentis_base64 YRP/VM_Generic_Detection YRP/WMI_strings YRP/Misc_Suspicious_Strings YRP/WMI_VM_Detect YRP/android_meterpreter YRP/Big_Numbers3 YRP/CRC32_poly_Constant
c25d1fe88e1b97a9b07941683641db28863d24e4c422a9cb4033db3cf641a9ae	PE32	2022-01-16 19:01:45 UTC	User Submission	YRP/Visual_Cpp_2003_DLL_Microsoft YRP/IsPE32 YRP/IsWindowsGUI [+] YRP/HasDebugData YRP/HasRichSignature YRP/domain YRP/contentis_base64 YRP/ThreadControl__Context YRP/Check_OutputDebugStringA_iat YRP/anti_dbg YRP/win_files_operation YRP/Big_Numbers0 YRP/TEAN
7cc50a103fd37ec17d20207614e8da6baaf747df32842be40eb2111812f2c8fe	PE32	2022-01-16 19:01:37 UTC	User Submission	YRP/Armadillo_v171 YRP/Microsoft_Visual_Cpp_v60 YRP/Microsoft_Visual_Cpp_v50v60_MFC_additional [+] YRP/Microsoft_Visual_Cpp_50 YRP/Microsoft_Visual_Cpp_v50v60_MFC YRP/Armadillo_v171_additional YRP/Microsoft_Visual_Cpp YRP/IsPE32 YRP/IsWindowsGUI YRP/IsPacked YRP/HasOverlay YRP/HasModified_DOS_Message YRP/domain YRP/IP YRP/contentis_base64 YRP/Dropper_Strings YRP/screenshot YRP/keylogger YRP/win_files_operation YRP/CRC32_poly_Constant
3a550e32589fda38ebeca5616292a6d6e42842958a43376cd9f01ae6f7d135ee	PE32	2022-01-16 19:01:36 UTC	User Submission	YRP/ASProtect_v123_RC1 YRP/ASProtect_v12x_New_Strain_additional YRP/Microsoft_Visual_Basic_v50 [+] YRP/ASProtect_v12x_New_Strain YRP/ASProtect_v11_BRS YRP/ASProtect_V2X_Registered_Alexey_Solodovnikov YRP/ASProtect_133_21_Registered_Alexey_Solodovnikov YRP/VMProtect_1704_phpbb3 YRP/ASProtect_v12_additional YRP/ASProtect_123_RC4_130824_Solodovnikov_Alexey YRP/ASProtect_133_21_Registered_Alexey_Solodovnikov_additional YRP/ASProtect13321RegisteredAlexeySolodovnikov YRP/ASProtectv12xNewStrain YRP/ASProtectv123RC1 YRP/IsPE32 YRP/IsWindowsGUI YRP/IsPacked YRP/IsBeyondImageSize YRP/domain YRP/suspicious_packer_section
2522dbc39b2a9bcbe3ec359e52124682672963664f4b44f50a18585ed5523ca9	PE32	2022-01-16 19:01:27 UTC	User Submission	YRP/Nullsoft_PiMP_Stub_SFX YRP/IsPE32 YRP/IsWindowsGUI [+] YRP/IsPacked YRP/HasOverlay YRP/HasRichSignature YRP/domain YRP/IP YRP/url YRP/contentis_base64 YRP/escalate_priv YRP/screenshot YRP/win_registry YRP/win_token YRP/win_private_profile YRP/win_files_operation YRP/CRC32_poly_Constant
056c064ef385bcc1cd430cb7b88e82f0566d1182c80503fe26f1fc9732fc42f5	PE32	2022-01-16 19:01:17 UTC	User Submission	YRP/Visual_Cpp_2003_DLL_Microsoft YRP/IsPE32 YRP/IsWindowsGUI [+] YRP/HasDebugData YRP/HasRichSignature YRP/domain YRP/contentis_base64 YRP/ThreadControl__Context YRP/Check_OutputDebugStringA_iat YRP/anti_dbg YRP/win_files_operation YRP/Big_Numbers0 YRP/TEAN
0020d4df86d5fc878cdf9f071d1fd10821335649eaf1f39a1f891b6c0769b6fe	PE32	2022-01-16 19:01:08 UTC	User Submission	YRP/Visual_Cpp_2003_DLL_Microsoft YRP/IsPE32 YRP/IsWindowsGUI [+] YRP/HasDebugData YRP/HasRichSignature YRP/domain YRP/contentis_base64 YRP/ThreadControl__Context YRP/Check_OutputDebugStringA_iat YRP/anti_dbg YRP/win_files_operation YRP/Big_Numbers0 YRP/TEAN
7ae73e912165d0689d85ebe5db26d44f2e4301bd89d3ae60f5dacb0f38bd2be8	PE32	2022-01-16 19:00:56 UTC	User Submission	YRP/Visual_Cpp_2003_DLL_Microsoft YRP/IsPE32 YRP/IsWindowsGUI [+] YRP/HasDebugData YRP/HasRichSignature YRP/domain YRP/contentis_base64 YRP/ThreadControl__Context YRP/Check_OutputDebugStringA_iat YRP/anti_dbg YRP/win_files_operation YRP/Big_Numbers0 YRP/TEAN
c0448d733802bd6ebc97b099bdcb5744fcd6149c9075088e88eb0869a6d8d175	PE32	2022-01-16 19:00:46 UTC	User Submission	YRP/Visual_Cpp_2003_DLL_Microsoft YRP/IsPE32 YRP/IsWindowsGUI [+] YRP/HasDebugData YRP/HasRichSignature YRP/domain YRP/contentis_base64 YRP/ThreadControl__Context YRP/Check_OutputDebugStringA_iat YRP/anti_dbg YRP/win_files_operation YRP/Big_Numbers0 YRP/TEAN
1c9327ed715d2a6360d6ea65d7969b432ebd4bce77da94eccdb8411f30ddb821	PE32	2022-01-16 19:00:45 UTC	User Submission	YRP/Armadillo_v171 YRP/Microsoft_Visual_Cpp_v60 YRP/Microsoft_Visual_Cpp_v50v60_MFC_additional [+] YRP/Microsoft_Visual_Cpp_50 YRP/Microsoft_Visual_Cpp_v50v60_MFC YRP/Armadillo_v171_additional YRP/Microsoft_Visual_Cpp YRP/IsPE32 YRP/IsConsole YRP/HasOverlay YRP/HasRichSignature YRP/domain YRP/contentis_base64 YRP/DebuggerException__SetConsoleCtrl YRP/win_files_operation YRP/CRC32_poly_Constant YRP/RijnDael_AES_CHAR YRP/RijnDael_AES_LONG