mail.reveantivirus.com · Malware Samples.zip

/reveantivirus.com/linux/Builds/Abhishek_Samples/

United States · IO

Yara INDICATOR_EXE_Packed_Dotfuscator From AlienVault by ditekSHen

Yara INDICATOR_EXE_Packed_UPolyX From AlienVault by ditekSHen

Yara SUSP_XORed_MSDOS_Stub_Message From Florian Roth by Florian Roth

Yara INDICATOR_EXE_Packed_ConfuserEx From AlienVault by ditekSHen

Yara INDICATOR_EXE_Packed_Fody From AlienVault by ditekSHen

Yara Base64_encoded_Executable From Florian Roth by Florian Roth (Nextron Systems)

Yara detect_Redline_Stealer From AbuseCH by Varp0s

Yara Disable_Defender From AbuseCH by iam-py-test

Yara INDICATOR_EXE_Packed_RLPack From AlienVault by ditekSHen

Yara Win32_Ransomware_WannaCry From ReversingLabs by ReversingLabs

Yara INDICATOR_EXE_Packed_SmartAssembly From AlienVault by ditekSHen

Yara Nanocore_RAT_Gen_2 From Florian Roth by Florian Roth (Nextron Systems)

Yara IronTiger_Gh0stRAT_variant From Florian Roth by Cyber Safety Solutions, Trend Micro

mail.reveantivirus.com · Malware Samples.zip

/reveantivirus.com/linux/Builds/Abhishek_Samples/

United States · IO

Yara INDICATOR_EXE_Packed_Dotfuscator From AlienVault by ditekSHen

Yara INDICATOR_EXE_Packed_UPolyX From AlienVault by ditekSHen

Yara SUSP_XORed_MSDOS_Stub_Message From Florian Roth by Florian Roth

Yara INDICATOR_EXE_Packed_ConfuserEx From AlienVault by ditekSHen

Yara INDICATOR_EXE_Packed_Fody From AlienVault by ditekSHen

Yara Base64_encoded_Executable From Florian Roth by Florian Roth (Nextron Systems)

Yara detect_Redline_Stealer From AbuseCH by Varp0s

Yara Disable_Defender From AbuseCH by iam-py-test

Yara INDICATOR_EXE_Packed_RLPack From AlienVault by ditekSHen

Yara Win32_Ransomware_WannaCry From ReversingLabs by ReversingLabs

Yara INDICATOR_EXE_Packed_SmartAssembly From AlienVault by ditekSHen

Yara Nanocore_RAT_Gen_2 From Florian Roth by Florian Roth (Nextron Systems)

Yara IronTiger_Gh0stRAT_variant From Florian Roth by Cyber Safety Solutions, Trend Micro

mail.reveantivirus.com · Malware Samples.zip

/reveantivirus.com/linux/Builds/Abhishek_Samples/

United States · IO

Yara INDICATOR_EXE_Packed_Dotfuscator From AlienVault by ditekSHen

Yara INDICATOR_EXE_Packed_UPolyX From AlienVault by ditekSHen

Yara SUSP_XORed_MSDOS_Stub_Message From Florian Roth by Florian Roth

Yara INDICATOR_EXE_Packed_ConfuserEx From AlienVault by ditekSHen

Yara INDICATOR_EXE_Packed_Fody From AlienVault by ditekSHen

Yara Base64_encoded_Executable From Florian Roth by Florian Roth (Nextron Systems)

Yara detect_Redline_Stealer From AbuseCH by Varp0s

Yara Disable_Defender From AbuseCH by iam-py-test

Yara INDICATOR_EXE_Packed_RLPack From AlienVault by ditekSHen

Yara Win32_Ransomware_WannaCry From ReversingLabs by ReversingLabs

pypi.hadiko.de · workbench-0.3.2.tar.gz

/packages/0c/4e/6d3ad2534e60fad14d8f837c2c1a3f1657f2b4aff8a589b3519c2a448dc3/

Germany · Universitaet Stuttgart

Yara INDICATOR_EXE_Packed_SimplePolyEngine From AlienVault by ditekSHen

Yara INDICATOR_EXE_Packed_eXPressor From AlienVault by ditekSHen

Yara INDICATOR_EXE_Packed_RLPack From AlienVault by ditekSHen

Yara RAT_Ap0calypse From Florian Roth by Kevin Breen <kevin@techanarchy.net>

Yara RAT_DarkRAT From Florian Roth by Kevin Breen <kevin@techanarchy.net>

Download archived sample

The password is "infected"

mail.reveantivirus.com · Malware Samples.zip

/reveantivirus.com/linux/Builds/Abhishek_Samples/

United States · IO

Yara INDICATOR_EXE_Packed_Dotfuscator From AlienVault by ditekSHen

Yara INDICATOR_EXE_Packed_UPolyX From AlienVault by ditekSHen

Yara SUSP_XORed_MSDOS_Stub_Message From Florian Roth by Florian Roth

Yara INDICATOR_EXE_Packed_ConfuserEx From AlienVault by ditekSHen

Yara INDICATOR_EXE_Packed_Fody From AlienVault by ditekSHen

Yara Base64_encoded_Executable From Florian Roth by Florian Roth (Nextron Systems)

Yara detect_Redline_Stealer From AbuseCH by Varp0s

Yara Disable_Defender From AbuseCH by iam-py-test

Yara INDICATOR_EXE_Packed_RLPack From AlienVault by ditekSHen

Yara Win32_Ransomware_WannaCry From ReversingLabs by ReversingLabs

Yara INDICATOR_EXE_Packed_SmartAssembly From AlienVault by ditekSHen

Yara Nanocore_RAT_Gen_2 From Florian Roth by Florian Roth (Nextron Systems)

Yara IronTiger_Gh0stRAT_variant From Florian Roth by Cyber Safety Solutions, Trend Micro

Yara INDICATOR_EXE_DotNET_Encrypted From AlienVault by ditekSHen

Yara INDICATOR_EXE_Packed_VMProtect From AlienVault by ditekSHen

Yara INDICATOR_EXE_Packed_AgileDotNet From AlienVault by ditekSHen

Yara SUSP_NET_NAME_ConfuserEx From Florian Roth by Arnim Rupp

Yara IMPLANT_4_v7 From Florian Roth by US CERT

mail.reveantivirus.com · Malware Samples.zip

/reveantivirus.com/linux/Builds/Abhishek_Samples/

United States · IO

Yara INDICATOR_EXE_Packed_Dotfuscator From AlienVault by ditekSHen

Yara INDICATOR_EXE_Packed_UPolyX From AlienVault by ditekSHen

Yara SUSP_XORed_MSDOS_Stub_Message From Florian Roth by Florian Roth

Yara INDICATOR_EXE_Packed_ConfuserEx From AlienVault by ditekSHen

Yara INDICATOR_EXE_Packed_Fody From AlienVault by ditekSHen

Yara Base64_encoded_Executable From Florian Roth by Florian Roth (Nextron Systems)

Yara detect_Redline_Stealer From AbuseCH by Varp0s

Yara Disable_Defender From AbuseCH by iam-py-test

Yara INDICATOR_EXE_Packed_RLPack From AlienVault by ditekSHen

Yara Win32_Ransomware_WannaCry From ReversingLabs by ReversingLabs

Yara INDICATOR_EXE_Packed_SmartAssembly From AlienVault by ditekSHen

Yara Nanocore_RAT_Gen_2 From Florian Roth by Florian Roth (Nextron Systems)

Yara IronTiger_Gh0stRAT_variant From Florian Roth by Cyber Safety Solutions, Trend Micro

Yara INDICATOR_EXE_DotNET_Encrypted From AlienVault by ditekSHen

Yara INDICATOR_EXE_Packed_VMProtect From AlienVault by ditekSHen

Yara INDICATOR_EXE_Packed_AgileDotNet From AlienVault by ditekSHen

Yara SUSP_NET_NAME_ConfuserEx From Florian Roth by Arnim Rupp

mail.reveantivirus.com · Malware Samples.zip

/reveantivirus.com/linux/Builds/Abhishek_Samples/

United States · IO

Yara INDICATOR_EXE_Packed_Dotfuscator From AlienVault by ditekSHen

Yara INDICATOR_EXE_Packed_UPolyX From AlienVault by ditekSHen

Yara SUSP_XORed_MSDOS_Stub_Message From Florian Roth by Florian Roth

Yara INDICATOR_EXE_Packed_ConfuserEx From AlienVault by ditekSHen

Yara INDICATOR_EXE_Packed_Fody From AlienVault by ditekSHen

Yara Base64_encoded_Executable From Florian Roth by Florian Roth (Nextron Systems)

Yara detect_Redline_Stealer From AbuseCH by Varp0s

Yara Disable_Defender From AbuseCH by iam-py-test

Yara INDICATOR_EXE_Packed_RLPack From AlienVault by ditekSHen

Yara Win32_Ransomware_WannaCry From ReversingLabs by ReversingLabs

Yara INDICATOR_EXE_Packed_SmartAssembly From AlienVault by ditekSHen

Yara Nanocore_RAT_Gen_2 From Florian Roth by Florian Roth (Nextron Systems)

Yara IronTiger_Gh0stRAT_variant From Florian Roth by Cyber Safety Solutions, Trend Micro

Yara INDICATOR_EXE_DotNET_Encrypted From AlienVault by ditekSHen

Yara INDICATOR_EXE_Packed_VMProtect From AlienVault by ditekSHen

mail.reveantivirus.com · Malware Samples.zip

/reveantivirus.com/linux/Builds/Abhishek_Samples/

United States · IO

Yara INDICATOR_EXE_Packed_Dotfuscator From AlienVault by ditekSHen

Yara INDICATOR_EXE_Packed_UPolyX From AlienVault by ditekSHen

Yara SUSP_XORed_MSDOS_Stub_Message From Florian Roth by Florian Roth

Yara INDICATOR_EXE_Packed_ConfuserEx From AlienVault by ditekSHen

Yara INDICATOR_EXE_Packed_Fody From AlienVault by ditekSHen

Yara Base64_encoded_Executable From Florian Roth by Florian Roth (Nextron Systems)

Yara detect_Redline_Stealer From AbuseCH by Varp0s

Yara Disable_Defender From AbuseCH by iam-py-test

Yara INDICATOR_EXE_Packed_RLPack From AlienVault by ditekSHen

Yara Win32_Ransomware_WannaCry From ReversingLabs by ReversingLabs

Yara INDICATOR_EXE_Packed_SmartAssembly From AlienVault by ditekSHen

Yara Nanocore_RAT_Gen_2 From Florian Roth by Florian Roth (Nextron Systems)

Yara IronTiger_Gh0stRAT_variant From Florian Roth by Cyber Safety Solutions, Trend Micro

Yara INDICATOR_EXE_DotNET_Encrypted From AlienVault by ditekSHen

Yara INDICATOR_EXE_Packed_VMProtect From AlienVault by ditekSHen

Yara INDICATOR_EXE_Packed_AgileDotNet From AlienVault by ditekSHen

mail.reveantivirus.com · Malware Samples.zip

/reveantivirus.com/linux/Builds/Abhishek_Samples/

United States · IO

Yara INDICATOR_EXE_Packed_Dotfuscator From AlienVault by ditekSHen

Yara INDICATOR_EXE_Packed_UPolyX From AlienVault by ditekSHen

Yara SUSP_XORed_MSDOS_Stub_Message From Florian Roth by Florian Roth

Yara INDICATOR_EXE_Packed_ConfuserEx From AlienVault by ditekSHen

Yara INDICATOR_EXE_Packed_Fody From AlienVault by ditekSHen

Yara Base64_encoded_Executable From Florian Roth by Florian Roth (Nextron Systems)

Yara detect_Redline_Stealer From AbuseCH by Varp0s

Yara Disable_Defender From AbuseCH by iam-py-test

Yara INDICATOR_EXE_Packed_RLPack From AlienVault by ditekSHen

Yara Win32_Ransomware_WannaCry From ReversingLabs by ReversingLabs

Yara INDICATOR_EXE_Packed_SmartAssembly From AlienVault by ditekSHen

Yara Nanocore_RAT_Gen_2 From Florian Roth by Florian Roth (Nextron Systems)

Yara IronTiger_Gh0stRAT_variant From Florian Roth by Cyber Safety Solutions, Trend Micro

Yara INDICATOR_EXE_DotNET_Encrypted From AlienVault by ditekSHen

Yara INDICATOR_EXE_Packed_VMProtect From AlienVault by ditekSHen

Yara INDICATOR_EXE_Packed_AgileDotNet From AlienVault by ditekSHen

Yara SUSP_NET_NAME_ConfuserEx From Florian Roth by Arnim Rupp

Yara IMPLANT_4_v7 From Florian Roth by US CERT

Yara INDICATOR_EXE_Packed_MPress From AlienVault by ditekSHen

Yara INDICATOR_EXE_Packed_Goliath From AlienVault by ditekSHen

Yara Typical_Malware_String_Transforms From Florian Roth by Florian Roth (Nextron Systems)

Yara INDICATOR_EXE_Packed_aPLib From AlienVault by ditekSHen

Yara Win32_Ransomware_CryptoJoker From ReversingLabs by ReversingLabs

Yara SUSP_XORed_Mozilla From Florian Roth by Florian Roth (Nextron Systems)

Yara Cloaked_RAR_File From Florian Roth by Florian Roth (Nextron Systems)

Yara Office_as_MHTML From Florian Roth by Florian Roth (Nextron Systems)

Yara EXE_extension_cloaking From Florian Roth by Florian Roth (Nextron Systems)

Yara SUSP_Base64_Encoded_Hex_Encoded_Code From Florian Roth by Florian Roth (Nextron Systems)

Yara FeliksPack3___PHP_Shells_ssh From Florian Roth by Florian Roth (Nextron Systems)

Yara connectback2_pl From Florian Roth by Neo23x0 Yara BRG + customization by Stefan -dfate- Molls

81.182.242.95 · keygen.exe

/munkalap/gallery/01_Install/Adobe/Adobe.Photoshop.Lightroom.v4.4.Multilingual.Incl.Keymaker-CORE/

Hungary · Magyar Telekom plc.

Yara INDICATOR_EXE_Packed_RLPack From AlienVault by ditekSHen

Download archived sample

The password is "infected"

183.136.206.159 · Udp.zip

/nike/dd/

China · NINGBO, ZHEJIANG Province, P.R.China.

Yara INDICATOR_EXE_Packed_RLPack From AlienVault by ditekSHen

Download archived sample

The password is "infected"

szedibauofficenas.direct.quickconnect.to · keygen.exe

/munkalap/gallery/01_Install/Adobe/Adobe.Photoshop.Lightroom.v4.4.Multilingual.Incl.Keymaker-CORE/

Hungary · Magyar Telekom plc.

Yara INDICATOR_EXE_Packed_RLPack From AlienVault by ditekSHen

Download archived sample

The password is "infected"

synoinstall-vzzti5l4sxp7f4fp.direct.quickconnect.to · keygen.exe

/munkalap/gallery/01_Install/Adobe/Adobe.Photoshop.Lightroom.v4.4.Multilingual.Incl.Keymaker-CORE/

Hungary · Magyar Telekom plc.

Yara INDICATOR_EXE_Packed_RLPack From AlienVault by ditekSHen

Download archived sample

The password is "infected"

ferenczgabriella.ratalaltal.hu · keygen.exe

/munkalap/gallery/01_Install/Adobe/Adobe.Photoshop.Lightroom.v4.4.Multilingual.Incl.Keymaker-CORE/

Hungary · Magyar Telekom plc.

Yara INDICATOR_EXE_Packed_RLPack From AlienVault by ditekSHen

Download archived sample

The password is "infected"

81.182.242.95 · keygen.exe

/munkalap/gallery/01_Install/Adobe/Adobe.Photoshop.Lightroom.v4.4.Multilingual.Incl.Keymaker-CORE/

Hungary · Magyar Telekom plc.

Yara INDICATOR_EXE_Packed_RLPack From AlienVault by ditekSHen

Download archived sample

The password is "infected"