MalShare

A free Malware repository providing researchers access to samples, malicious feeds, and Yara results.

Recently added Samples

MD5 Hash	File type	Added	Source	Yara Hits
59bc95b1e3fa5e6d05cf8ceb8332b672	PE32	2020-01-24 16:41:00 UTC	User Submission	YRP/VC8_Microsoft_Corporation YRP/Microsoft_Visual_Cpp_8 YRP/IsPE32 [+] YRP/IsWindowsGUI YRP/IsPacked YRP/HasDebugData YRP/HasRichSignature YRP/AutoIt YRP/domain YRP/IP YRP/contentis_base64 YRP/AutoIT_compiled_script YRP/anti_dbg YRP/inject_thread YRP/network_http YRP/escalate_priv YRP/screenshot YRP/keylogger YRP/win_registry YRP/win_token YRP/win_files_operation YRP/Big_Numbers0 YRP/Big_Numbers1 YRP/Big_Numbers2 YRP/CRC32_poly_Constant YRP/CRC32_table YRP/Str_Win32_Winsock2_Library YRP/Str_Win32_Wininet_Library YRP/Str_Win32_Internet_API YRP/Str_Win32_Http_API YRP/suspicious_packer_section
e300b0ea04a1c33f7b0ca2a924632d3c	PE32	2020-01-24 16:26:19 UTC	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET [+] YRP/Microsoft_Visual_Studio_NET_additional YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/IsPacked YRP/domain YRP/IP YRP/contentis_base64 YRP/Big_Numbers1
36eb823d34d787de44f8e0925eb0e8d2	PE32	2020-01-24 16:04:25 UTC	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET [+] YRP/Microsoft_Visual_Studio_NET_additional YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/IsPacked YRP/domain YRP/IP YRP/contentis_base64 YRP/Big_Numbers1
e8effd3ad2069ff8ff6344b85fc12dd6	PE32	2020-01-24 15:57:53 UTC	User Submission	YRP/possible_includes_base64_packed_functions YRP/IsPE32 YRP/IsWindowsGUI [+] YRP/free_pascal YRP/maldoc_getEIP_method_1 YRP/domain YRP/IP YRP/url YRP/contentis_base64 YRP/Dropper_Strings YRP/WMI_strings YRP/Misc_Suspicious_Strings YRP/network_tcp_listen YRP/network_tcp_socket YRP/network_dns YRP/network_ssl YRP/screenshot YRP/keylogger YRP/win_mutex YRP/win_registry YRP/win_files_operation YRP/win_hook YRP/Big_Numbers1 YRP/CRC32_poly_Constant YRP/BASE64_table YRP/Str_Win32_Winsock2_Library
21d4b4abd6fb1a753634d1d8995b46ce	PE32	2020-01-24 14:47:16 UTC	User Submission	YRP/VC8_Microsoft_Corporation YRP/Microsoft_Visual_Cpp_8 YRP/IsPE32 [+] YRP/IsWindowsGUI YRP/IsPacked YRP/HasDebugData YRP/HasRichSignature YRP/AutoIt YRP/domain YRP/IP YRP/contentis_base64 YRP/AutoIT_compiled_script YRP/anti_dbg YRP/inject_thread YRP/network_http YRP/escalate_priv YRP/screenshot YRP/keylogger YRP/win_registry YRP/win_token YRP/win_files_operation YRP/CRC32_poly_Constant YRP/CRC32_table YRP/Str_Win32_Winsock2_Library YRP/Str_Win32_Wininet_Library YRP/Str_Win32_Internet_API YRP/Str_Win32_Http_API
a8d03e7867cb601082cc2aec4a8c7fb1	RAR	2020-01-24 14:47:15 UTC	User Submission	YRP/domain YRP/contentis_base64 YRP/android_meterpreter
17425feb4698215daf46b459d1f0757a	Zip	2020-01-24 14:40:21 UTC	User Submission	YRP/domain
52d1278bf225c0656137fd7c90f8f74d	PE32	2020-01-24 14:40:17 UTC	User Submission	YRP/Microsoft_Visual_Basic_v50v60 YRP/Microsoft_Visual_Basic_v50 YRP/Microsoft_Visual_Basic_v50_v60 [+] YRP/Microsoft_Visual_Basic_v50_additional YRP/Microsoft_Visual_Basic_v50v60_additional YRP/IsPE32 YRP/IsWindowsGUI YRP/HasRichSignature YRP/domain YRP/contentis_base64 YRP/SEH__vba
bc01aee4b58646f7d95bdfcc61afafb1	PE32	2020-01-24 14:37:22 UTC	User Submission	YRP/Microsoft_Visual_Basic_v50v60 YRP/Microsoft_Visual_Basic_v50 YRP/Microsoft_Visual_Basic_v50_v60 [+] YRP/Microsoft_Visual_Basic_v50_additional YRP/Microsoft_Visual_Basic_v50v60_additional YRP/IsPE32 YRP/IsWindowsGUI YRP/HasRichSignature YRP/domain YRP/contentis_base64 YRP/SEH__vba
4680c633eb299f750543f22685479ba9	RAR	2020-01-24 14:37:12 UTC	User Submission	YRP/domain

Total Samples: 3594910