MalShare

A free Malware repository providing researchers access to samples, malicious feeds, and Yara results.

Recently added Samples

SHA256 Hash	File type	Added	Source	Yara Hits
30444ae959de28512992c5cdc04ef7a4ebbbd367016a68527c1a620b043ec0e9	data	2021-10-18 21:23:37 UTC	User Submission	YRP/domain
08120955ca4cdc89e7c6ab767ed3a302e2e07755d2fd3e792b2677003130982a	PE32	2021-10-18 21:12:27 UTC	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET [+] YRP/Microsoft_Visual_Studio_NET_additional YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/NETexecutableMicrosoft YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/IsPacked YRP/domain YRP/IP YRP/url YRP/contentis_base64 YRP/Big_Numbers1 YRP/Big_Numbers3
695d9cd287ce5ee85681b570ee37daa421550dc4b25101240bba64245a729bd9	PE32	2021-10-18 21:11:01 UTC	User Submission	YRP/Microsoft_Visual_Studio_NET YRP/Microsoft_Visual_C_v70_Basic_NET_additional YRP/Microsoft_Visual_C_Basic_NET [+] YRP/Microsoft_Visual_Studio_NET_additional YRP/Microsoft_Visual_C_v70_Basic_NET YRP/NET_executable_ YRP/NET_executable YRP/IsPE32 YRP/IsNET_EXE YRP/IsWindowsGUI YRP/IsPacked YRP/HasDebugData YRP/domain YRP/IP YRP/url YRP/contentis_base64 YRP/Big_Numbers1 YRP/Big_Numbers3
8615c5641633bba4b8dfd015caa044a6c19b92f148cde66a5e9420ca2b7ba7bb	PE32	2021-10-18 21:03:14 UTC	User Submission	YRP/IsPE32 YRP/IsDLL YRP/IsWindowsGUI [+] YRP/IsPacked YRP/HasDebugData YRP/HasModified_DOS_Message YRP/HasRichSignature YRP/domain YRP/IP YRP/contentis_base64
0919bf3790ecfeb628ce2a4f278a96d10dbb0a00c3bf41784cbf5cab3240a726	PE32+	2021-10-18 21:03:06 UTC	User Submission	YRP/IsPE64 YRP/IsWindowsGUI YRP/IsPacked [+] YRP/IsBeyondImageSize YRP/HasRichSignature YRP/domain FlorianRoth/DragonFly_APT_Sep17_3
6cc12dfea6cb56664ffe532065778cb8b4e8bccb4d7bf796c0d8a008702aceda	Composite	2021-10-18 21:02:59 UTC	User Submission	CuckooSandbox/shellcode CuckooSandbox/embedded_pe CuckooSandbox/embedded_win_api [+] YRP/Borland YRP/borland_delphi_dll YRP/domain YRP/IP YRP/url YRP/contentis_base64 YRP/maldoc_OLE_file_magic_number YRP/network_udp_sock YRP/network_tcp_listen YRP/network_dropper YRP/network_tcp_socket YRP/network_dns YRP/network_ssl YRP/escalate_priv YRP/screenshot YRP/keylogger YRP/win_registry YRP/win_token YRP/win_files_operation YRP/win_hook YRP/android_meterpreter YRP/CRC32_poly_Constant YRP/CRC32_table YRP/RIPEMD160_Constants YRP/SHA1_Constants YRP/RijnDael_AES_CHAR YRP/RijnDael_AES_LONG YRP/BASE64_table YRP/Delphi_Random YRP/Delphi_FormShow YRP/Delphi_CompareCall YRP/Delphi_Copy YRP/Delphi_StrToInt YRP/Delphi_DecodeDate YRP/Str_Win32_Winsock2_Library YRP/Str_Win32_Wininet_Library YRP/Str_Win32_Internet_API
205c9f62e617e1c619fe35d67be5af588f3d60e0a1f17aff17918de1ef285342	Composite	2021-10-18 21:02:50 UTC	User Submission	CuckooSandbox/shellcode CuckooSandbox/embedded_pe CuckooSandbox/embedded_win_api
94813fb713b0e758db6696738b44ce13078ec27c4bfcf4c95e09cdb7bea9040f	Rich	2021-10-18 21:02:40 UTC	User Submission	YRP/RTF_Shellcode YRP/domain YRP/contentis_base64 [+] YRP/Big_Numbers0 YRP/Big_Numbers1
f4acb0d4656caa3290de744d4f36d3694bfadde2301531516e4ff33e7c274f3d	CDFV2	2021-10-18 21:02:32 UTC	User Submission	YRP/domain YRP/maldoc_OLE_file_magic_number YRP/Qemu_Detection
92a70868c12b412994f66a764bda6682afac05ff212151de277ddfe9f28c9b00	Rich	2021-10-18 21:02:26 UTC	User Submission	YRP/domain YRP/contentis_base64 YRP/Big_Numbers0