MalShare

Recently added Samples

SHA256 Hash	File type	Added	Source	Yara Hits
2140a72bb1886005d96ec1d470febc53ed86799a7aef80244f8b396a478ccce6	PE32	2022-12-05 08:14:17 UTC	User Submission	YRP/maldoc_getEIP_method_1 YRP/contentis_base64 YRP/domain [+] YRP/Microsoft_Visual_Cpp_v50v60_MFC YRP/IsPE32 YRP/HasRichSignature
9e819d93bc41450ef64e5d79e1ed9f9f6c14b530642b33bb5da839670026cd21	PE32	2022-12-05 08:13:54 UTC	User Submission	YRP/maldoc_getEIP_method_1 YRP/contentis_base64 YRP/domain [+] YRP/Microsoft_Visual_Cpp_v50v60_MFC YRP/IsPE32 YRP/HasRichSignature
1dbee3e843ca9a6b61337121b9e62c138d6bd96d24db4e2ebf04390168673dad	PE32	2022-12-05 08:13:33 UTC	User Submission	YRP/Big_Numbers1 YRP/contentis_base64 YRP/domain [+] YRP/url YRP/jpeg YRP/gem YRP/wmf YRP/System_Tools YRP/Dropper_Strings YRP/SEH__vba YRP/screenshot YRP/keylogger YRP/win_registry YRP/win_hook YRP/Microsoft_Visual_Basic_v50v60 YRP/Microsoft_Visual_Basic_v50 YRP/Microsoft_Visual_Basic_v50_v60 YRP/Microsoft_Visual_Basic_v50_additional YRP/Microsoft_Visual_Basic_v50v60_additional YRP/IsPE32 YRP/IsWindowsGUI YRP/HasOverlay YRP/HasRichSignature
b830cc5999c6d763990e23c0639dd3dd9b86f0cef3c46f35e0a75d3d3ab7cbbf	PE32	2022-12-05 08:13:09 UTC	User Submission	YRP/maldoc_getEIP_method_1 YRP/contentis_base64 YRP/domain [+] YRP/url YRP/gem YRP/prc YRP/SEH__vba YRP/network_http YRP/network_ftp YRP/screenshot YRP/keylogger YRP/win_registry YRP/win_files_operation YRP/Str_Win32_Wininet_Library YRP/Str_Win32_Internet_API YRP/Str_Win32_Http_API YRP/suspicious_packer_section YRP/Microsoft_Visual_Basic_v50v60 YRP/Microsoft_Visual_Basic_v50 YRP/Microsoft_Visual_Basic_v50_v60 YRP/Microsoft_Visual_Basic_v50_additional YRP/Microsoft_Visual_Basic_v50v60_additional YRP/IsPE32 YRP/IsWindowsGUI YRP/HasRichSignature
012a237bcaab594e47fc14f33a7f727b4ef868a0850dbae01c642bf3d59304cf	PE32	2022-12-05 08:12:46 UTC	User Submission	YRP/maldoc_getEIP_method_1 YRP/contentis_base64 YRP/domain [+] YRP/Microsoft_Visual_Cpp_v50v60_MFC YRP/IsPE32 YRP/HasRichSignature
5e6d09d967866abc15470923ca3566685245f34554ed8deb3e69df3b030af138	PE32	2022-12-05 08:12:05 UTC	User Submission	YRP/MD5_Constants YRP/DES_sbox YRP/contentis_base64 [+] YRP/domain YRP/gem YRP/wmf YRP/System_Tools YRP/Antivirus YRP/WMI_strings YRP/Misc_Suspicious_Strings YRP/DebuggerCheck__QueryInfo YRP/disable_dep YRP/create_service YRP/escalate_priv YRP/win_token YRP/win_files_operation YRP/Armadillo_v171 YRP/Microsoft_Visual_Cpp_v60 YRP/Microsoft_Visual_Cpp_v50v60_MFC_additional YRP/Microsoft_Visual_Cpp_50 YRP/Microsoft_Visual_Cpp_v50v60_MFC YRP/Armadillo_v171_additional YRP/Armadillo_v4x YRP/Microsoft_Visual_Cpp YRP/IsPE32 YRP/IsWindowsGUI YRP/HasRichSignature
dd890aa253947b6eed78d924908553ca45eba79ae8048566be5c3de296cc772e	PE32	2022-12-05 08:11:42 UTC	User Submission	YRP/contentis_base64 YRP/domain YRP/wmf [+] YRP/SEH__vba YRP/suspicious_packer_section YRP/Microsoft_Visual_Basic_v50v60 YRP/Microsoft_Visual_Basic_v50 YRP/Microsoft_Visual_Basic_v50_v60 YRP/Microsoft_Visual_Basic_v50_additional YRP/Microsoft_Visual_Basic_v50v60_additional YRP/IsPE32 YRP/IsWindowsGUI YRP/IsBeyondImageSize YRP/HasRichSignature
135c76ff11a8feff383f3b43c10989ecfd9ce1aaeee57c2a40a40b3f075210f6	PE32	2022-12-05 08:11:20 UTC	User Submission	YRP/contentis_base64 YRP/domain YRP/Check_OutputDebugStringA_iat [+] YRP/anti_dbg YRP/screenshot YRP/win_files_operation YRP/Microsoft_Visual_Cpp_70 YRP/IsPE32 YRP/IsDLL YRP/IsWindowsGUI YRP/HasRichSignature
3d0de84844a3250c4f62bc78f0e3a6a9418f5a9ed037fd474ac40b8a6a5179da	PE32	2022-12-05 08:10:57 UTC	User Submission	YRP/contentis_base64 YRP/domain YRP/hpgl [+] YRP/SEH__vba YRP/Microsoft_Visual_Basic_v50 YRP/IsPE32 YRP/IsWindowsGUI YRP/IsPacked YRP/HasRichSignature
a28232f1804ee06e0040685de57f3a57c48e178343b39a3d52a9542e39879fa9	PE32	2022-12-05 08:10:35 UTC	User Submission	YRP/contentis_base64 YRP/domain YRP/SEH__vba [+] YRP/Microsoft_Visual_Basic_v50 YRP/IsPE32 YRP/IsWindowsGUI YRP/HasRichSignature