Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Where to find Samples of Malware?


  • This topic is locked This topic is locked
6 replies to this topic

#1 DeMiNe0

DeMiNe0

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:03:27 PM

Posted 27 January 2012 - 11:42 AM

Hi Everyone,

I'm a Network Engineer for an IT consulting company in NYC. Recently we've seen the XP/Win7/Vista Antivirus 2012 malware pop up on many of our clients PC's. Most of the PC's I've seen infected are running SEP, so obviously SEP isn't doing anything to stop it.

I'm currently looking for Samples of this Virus that we can use to test several anti malware programs. I'm Currently looking at these three alternatives, to run along side SEP: http://www.makeuseof.com/tag/3-free-realtime-malware-protection-removal-tools/. My supervisor is also interested in learning what the end user is doing to become infected with this virus. As far as I know, there are many infection methods, ranging from email attachments, to website popups that trick the user into running the malware.

Does anyone know of a current scam site that would infect a computer with this virus? Or does anyone know where I can download the actual executable?

If you link a file or site here, please don't make the link clickable, as we don't want people accidently clicking the link.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:27 PM

Posted 27 January 2012 - 12:00 PM

Check your PM

Good luck :thumbsup:

#3 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 61,203 posts
  • ONLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:11:27 PM

Posted 29 January 2012 - 06:32 AM

Hello DeMiNe0, and welcome to Bleeping Computer.

Before anything a general warning, never try to test/try out malware samples if you don't know what you're doing! The risk of inadvertently infecting another computer or a host computer is always present.

Keeping a computer clean and preventing infection is not only a matter of security products. I am no fan of any of the applications present in the link you posted, but no matter how good the Antivirus/Antispyware application, no product or product combination will protect a computer 100%.
Just as important is the browsing behavior of the computer's user and keeping all software up to date. For example outdated Java or Adobe Reader versions are commonly exploited by malware in order to infect a machine.

For this reason testing malware samples with different security products is not very productive in my opinion. You would indeed need a site that is actively dropping the infection (which is hard to find, they are usually cleaned/taken off-line as soon as the malicious behavior is observed and reported). Downloading and dropping specific files isn't the same and doesn't give a good representation of how a "real" infection enters a system.

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft


#4 Animal

Animal

    Bleepin' Animinion


  • Site Admin
  • 35,316 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Where You Least Expect Me To Be
  • Local time:01:27 PM

Posted 29 January 2012 - 03:24 PM

And last but not least:

Bleeping Computer's main mission is to help people rid their computers of malware not infect them. For legal and liability purposes we do not endorse or permit the sharing of malware samples via the forums. There are plenty of 'in the wild' samples available by using unsafe browsing tactics.

By posting samples they may be taken and used for nefarious purposes. Which would defeat the main purpose of Bleeping Computer.

The Internet is so big, so powerful and pointless that for some people it is a complete substitute for life.
Andrew Brown (1938-1994)


A learning experience is one of those things that say, "You know that thing you just did? Don't do that." Douglas Adams (1952-2001)


"Imagination is more important than knowledge. Knowledge is limited. Imagination circles the world." Albert Einstein (1879-1955)


Follow BleepingComputer on: Facebook | Twitter | Google+

#5 ScottyScott

ScottyScott

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:27 PM

Posted 30 January 2012 - 11:23 AM

Check your PM

Good luck :thumbsup:


Do you have a copy, I am looking for a copy myself.
I've been jumping site to site trying to get infected with the Windows 7/Vista/XP security virus thats been going around.
I've had absolutely no luck on getting this infection, I've done everything from downloading "facebook layouts" to emojicons on my desktop(desktop is intended to get infected for this reason, virus removal and learning how the infections work and what they do).

I would really appreciate it if someone could help me with a link to this virus, if possible. I understand what I am walking into and understand that this forum does not want to spread the virus, it's intended for removal. So if any help is out there, please PM me a link.

Thank you in advance!

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:27 PM

Posted 30 January 2012 - 11:28 AM

ScottyScott

Check your PM,use it carefully :thumbsup:

#7 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 61,203 posts
  • ONLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:11:27 PM

Posted 30 January 2012 - 04:01 PM

The main goal of BleepingComputer is to help users resolve various computer problems, not to distribute malware samples for whatever purpose. Requesting and/or providing links to live malware or live malware samples does not fall under that objective and is for that reason not something we allow or encourage.

While I understand you may have good reasons to look for a sample, BC is simply not the place to obtain one. There are multiple sites specialized in malware samples where these requests can be posted.

To prevent further misuse of this topic, it is now closed.

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users