Author Topic: Submit Malware Here To Be Blacklisted - 2012 (NO LIVE MALWARE!)  (Read 478498 times)

Offline Chiron

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 10938
Submit Malware Here To Be Blacklisted - 2012 (NO LIVE MALWARE!)
« on: December 31, 2011, 12:35:49 AM »
Previous Thread

Please post all undetected malware in this thread.

Post links to only one of the following services:
Comodo Valkyrie
or Comodo Instant Malware Analysis (CIMA)
or VirusTotal

Please note that any malware uploaded to Valkyrie or CIMA goes straight to Comodo AV Labs. Comodo can also identify malware using MD5/SHA1 Values, if you would prefer to post those instead. It's not necessary to report a file using more than one of these methods.


DO NOT attach or link any malware or malicious links to your post.
« Last Edit: January 04, 2012, 02:49:52 PM by Chiron »


Offline meidan

  • First Response Group
  • Comodo's Hero
  • *****
  • Posts: 2554
Re: Submit Malware Here To Be Blacklisted - 2012 (NO LIVE MALWARE!)
« Reply #2 on: December 31, 2011, 12:21:48 PM »
Hi Friends ,

File Name : SetupCasino ( FakeAV )
MD5 : 9636af44f751520e6ea3fd56fac4fc14

http://www.virustotal.com/file-scan/report.html?id=31d19fc3099bad09d3e3e7124d652623a81571d99daa7fc40c5b0ec28dae7754-1325293572

http://virusscan.jotti.org/de/scanresult/f1b29ce7ff4bcafb65bf351c87a860cbe2ceac8d

http://vscan.novirusthanks.org/analysis/9636af44f751520e6ea3fd56fac4fc14/c2V0dXBjYXNpbm8tNmQ0OWI2LWRlLWV4ZQ==/

---------------------------------------------------------------------------------------------

FakeAV
MD5 : ea77763bdc21f76166a056bd6360df26
http://www.virustotal.com/file-scan/report.html?id=4ce7f4728de2ef947b94159bfaa61cb68791b2832579ce924cd21f8552cc47b8-1321880331

Regards,
Kruis

Hi Kruis,

Thank you for your submission. We'll check them and if found to be malware detection will be added.

Kind Regards,
Erik M.

Offline Kruis

  • Comodo's Hero
  • *****
  • Posts: 1241
Re: Submit Malware Here To Be Blacklisted - 2012 (NO LIVE MALWARE!)
« Reply #3 on: January 01, 2012, 03:36:37 PM »
Hi Friends ,

Builder.exe  [Backdoor - Malware ]

MD5   : dce0460f603e58b176690982f17b75e6
SHA1  : dfe33753ac382ae64327b0fb7afb739fe9b49c3e
SHA256: 11ba29f9824b36b6ef2e82f6e8a2c05b4cebde1770131be13f6c47636163d3f7

http://www.virustotal.com/file-scan/report.html?id=11ba29f9824b36b6ef2e82f6e8a2c05b4cebde1770131be13f6c47636163d3f7-1319736000

http://virusscan.jotti.org/tr/scanresult/175f8bcb3861873185039e251e12c092184d218b

https://valkyrie.comodo.com/Result.html?sha1=dfe33753ac382ae64327b0fb7afb739fe9b49c3e&&query=0&&filename=Builder.exe

Regards,
Kruis
« Last Edit: January 01, 2012, 07:28:38 PM by Kruis »
Security Professional

Online wasgij6

  • Volunteer Moderator
  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 3830
Re: Submit Malware Here To Be Blacklisted - 2012 (NO LIVE MALWARE!)
« Reply #4 on: January 01, 2012, 03:40:05 PM »
https://valkyrie.comodo.com/Result.aspx?sha1=0a53d2ea565fbda318cc335e08953737214448be&&query=0&&filename=d32ud1504.exe

https://valkyrie.comodo.com/Result.aspx?sha1=e9a9d6334ef4c604351c02886870fd932d2893a2&&query=0&&filename=d32ud2005.exe

https://valkyrie.comodo.com/Result.aspx?sha1=d4aad21cb972dca82b9e56db1de5f03f1b354860&&query=0&&filename=rwi.exe

https://valkyrie.comodo.com/Result.aspx?sha1=db9fa3d3e1138a7791b2b63900feedd45e3ec921&&query=0&&filename=winrar3.2.exe

https://valkyrie.comodo.com/Result.html?sha1=e1654eb401025118701e354219cfb27932baac31&&query=0&&filename=d32ud1505.exe

https://valkyrie.comodo.com/Result.html?sha1=f1b20e3f64d180cd6e5d811773d22187a7f12e39&&query=0&&filename=isearchinst.exe

https://valkyrie.comodo.com/Result.html?sha1=4db7a450d28ef3355628205173c94c2f50635a2f&&query=0&&filename=Modulo_Jo.exe

https://valkyrie.comodo.com/Result.html?sha1=9390598e83c0380f7d5fe108605daa30cfbfd596&&query=0&&filename=opentabhper.exe

https://valkyrie.comodo.com/Result.html?sha1=483063d6ec278e0f47d24ca0aa1c7b34c35fa460&&query=0&&filename=ow32enen854.exe

https://valkyrie.comodo.com/Result.html?sha1=4791f522e3e3cd642d061171afa46e5b14186d37&&query=0&&filename=sp.exe

https://valkyrie.comodo.com/Result.html?sha1=2aef3ec52eb48d787ff0a76cee96cb9821220ae2&&query=0&&filename=alexandre%e2%80%94frota%e2%80%94quebra%e2%80%94estudio%e2%80%94do%e2%80%94sbt%e2%80%94av

https://valkyrie.comodo.com/Result.html?sha1=91d21d411411a74c8767b6d1633d0bf36bfbdbef&&query=0&&filename=blackmetin.bin

https://valkyrie.comodo.com/Result.html?sha1=c84e6e5e0d8e82925eaa728c140983037dd289ce&&query=0&&filename=CbTBSet.exe

https://valkyrie.comodo.com/Result.html?sha1=695780b1977d6f7a40e2b85cf532f2b01b87a71b&&query=0&&filename=comprobante.exe

http://www.virustotal.com/file-scan/report.html?id=94a63d93b9266b23a006a80b05b65eee885aecba53d2eda48f920580209dbfa0-1325436181

http://www.virustotal.com/file-scan/report.html?id=758590e030f877f9f20a19a9578b3c3d8bf35af1b68f4c583b32df2495d1abcf-1325351241

http://www.virustotal.com/file-scan/report.html?id=5eb3cdd07fc619c1d259ce768160aecd81711550f947564694bb7913289cfd9a-1325445594

http://www.virustotal.com/file-scan/report.html?id=420aed48653c37053e2396a43add03bfb2d1ebc71206cfdbd786c2d7321e43e2-1325349351
| Win 8.1 Pro (x64) | UAC Disabled | CFW 7.0.317799.4142 | Intel i7 4770k | Asus Maximus VI Formula Mobo | Asus GeForce GTX 780 | G.Skill TridentX 16gb RAM | Samsung 840 Pro SSD |

Offline Kruis

  • Comodo's Hero
  • *****
  • Posts: 1241
« Last Edit: January 01, 2012, 07:27:25 PM by Kruis »
Security Professional

Offline haja

  • First Response Group
  • Comodo's Hero
  • *****
  • Posts: 703
Re: Submit Malware Here To Be Blacklisted - 2012 (NO LIVE MALWARE!)
« Reply #6 on: January 01, 2012, 11:53:18 PM »
Hi

Thanks for reporting.We will check them and add detection after confirming them as malwares.

Regards,
Haja


Online wasgij6

  • Volunteer Moderator
  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 3830
| Win 8.1 Pro (x64) | UAC Disabled | CFW 7.0.317799.4142 | Intel i7 4770k | Asus Maximus VI Formula Mobo | Asus GeForce GTX 780 | G.Skill TridentX 16gb RAM | Samsung 840 Pro SSD |

Online wasgij6

  • Volunteer Moderator
  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 3830
| Win 8.1 Pro (x64) | UAC Disabled | CFW 7.0.317799.4142 | Intel i7 4770k | Asus Maximus VI Formula Mobo | Asus GeForce GTX 780 | G.Skill TridentX 16gb RAM | Samsung 840 Pro SSD |

Offline Ponmalar

  • First Response Group
  • Comodo's Hero
  • *****
  • Posts: 556
Re: Submit Malware Here To Be Blacklisted - 2012 (NO LIVE MALWARE!)
« Reply #10 on: January 02, 2012, 11:52:44 PM »
http://www.virustotal.com/file-scan/report.html?id=8409f18117f662c64ba670581441875340f6c6df762021b9b54c25609eadbd37-1325484199

http://www.virustotal.com/file-scan/report.html?id=2d0610f366f389f393d7b27261ee01ea33448794d4c1cfa6d79566fdc9c2a5c3-1325490400

http://www.virustotal.com/file-scan/report.html?id=ee76776dd9de5aa6fda4756f413b95f7f68056c1319db2cc9914a00e2302a009-1325481846

http://www.virustotal.com/file-scan/report.html?id=10a602e7ce1126dcce546c8005fbf7819905b7a522377aa143630d900a13c684-1325489593

http://www.virustotal.com/file-scan/report.html?id=76892d6d72d9754d8f8a0bb22770ea8dbc436166c3aa1bee21028745d7b2e8e6-1325497698

https://valkyrie.comodo.com/Result.aspx?sha1=6727209530b3f58eedce27a35b71fb274acc0021&&query=0&&filename=fa.exe

https://valkyrie.comodo.com/Result.aspx?sha1=d4aad21cb972dca82b9e56db1de5f03f1b354860&&query=0&&filename=rwi.exe

https://valkyrie.comodo.com/Result.aspx?sha1=a20afcaea721ab8d1242a1b715eb43786dc8962c&&query=0&&filename=dana-setup-fr.exe

https://valkyrie.comodo.com/Result.aspx?sha1=8baf9f1dfa4575e8301ce83edff15d6544c4ec3d&&query=0&&filename=esperanca.exe

https://valkyrie.comodo.com/Result.html?sha1=cd65bca04f056c6560acafa96523fe31c0a0b670&&query=0&&filename=jogos_biblicos.exe

https://valkyrie.comodo.com/Result.html?sha1=20a1355ac8782f04dcfe0927d5cb286a3c526858&&query=0&&filename=new.exe

https://valkyrie.comodo.com/Result.html?sha1=f3178c2388005e13e94c7b768acdfe42cf5a94ba&&query=0&&filename=(1).jpg

https://valkyrie.comodo.com/Result.html?sha1=e0da63bab92f3139b67a770498eceb691c1a3461&&query=0&&filename=(1).scr

https://valkyrie.comodo.com/Result.html?sha1=bd8e0a7ea972408f177202f86a103080a04a0a26&&query=0&&filename=(8).exe

https://valkyrie.comodo.com/Result.html?sha1=5da126dc3ba328f36596a6e6851e62cee4cd75f8&&query=0&&filename=(11).exe

https://valkyrie.comodo.com/Result.html?sha1=ca2aa847bde04268ec67ee78239eabda074e86d5&&query=0&&filename=(14).exe

https://valkyrie.comodo.com/Result.html?sha1=fba3fb196696923af803efd400861a7c0800bb05&&query=0&&filename=apocalipse.exe

https://valkyrie.comodo.com/Result.html?sha1=63fe97c1b7448d48637f2edccf5c3989d7171c8b&&query=0&&filename=wincrack_fsetup_529_20.exe

https://valkyrie.comodo.com/Result.html?sha1=31c7ec803294a8819e534f60b74bc0a3d1dbce60&&query=0&&filename=spd.jpg

http://www.virustotal.com/file-scan/report.html?id=5eb3cdd07fc619c1d259ce768160aecd81711550f947564694bb7913289cfd9a-1325535970

http://www.virustotal.com/file-scan/report.html?id=94a63d93b9266b23a006a80b05b65eee885aecba53d2eda48f920580209dbfa0-1325534149

http://www.virustotal.com/file-scan/report.html?id=10a602e7ce1126dcce546c8005fbf7819905b7a522377aa143630d900a13c684-1325522730

http://www.virustotal.com/file-scan/report.html?id=778d28938db60fc7df73d8eab65ae8bb5b3c5f6501d36966fdf99d9e206bb538-1324394466

http://www.virustotal.com/file-scan/report.html?id=4da96259ff0e0409cded56ee295c57611aeb1a8ad060c7f38c9305d76500405c-1325438720

http://www.virustotal.com/file-scan/report.html?id=894a7e8635b546c25499be8f22c36e3ff804af4de47432719bfde0458ecd4dbe-1325540005

http://www.virustotal.com/file-scan/report.html?id=2d0610f366f389f393d7b27261ee01ea33448794d4c1cfa6d79566fdc9c2a5c3-1325517479

http://www.virustotal.com/file-scan/report.html?id=f39e789c3a10e5629636093935f4480201bd1eac1c7365448d427095236c419a-1325540093

Hi,

Thanks for reporting.We will check them and add detection after confirming them as malwares.

Regards,
Ponmalar.S


Offline FlorinG

  • First Response Group
  • Comodo's Hero
  • *****
  • Posts: 2818
Re: Submit Malware Here To Be Blacklisted - 2012 (NO LIVE MALWARE!)
« Reply #12 on: January 03, 2012, 08:44:50 AM »
Hello GOA,

Thank you for your submission. We'll check it and if found to be malicious detection will be added.

Best regards,
FlorinG
If possible please post your malware submissions as SHA1 lists (created with HashMyFiles or any other software). Always make sure first you have submitted the samples through CIS or CIMA.


Offline Chunli

  • Malware Research Group
  • Comodo's Hero
  • *****
  • Posts: 1896
Re: Submit Malware Here To Be Blacklisted - 2012 (NO LIVE MALWARE!)
« Reply #14 on: January 03, 2012, 05:18:59 PM »
Hi,Kruis

Thank you for your submission.
We'll check them and if found to be malware detection will be added.

Best regards
Chunli.chen

 

Seo4Smf 2.0 © SmfMod.Com | Smf Destek