Thursday, February 19, 2015

Collection of Pcap files from malware analysis

Update: Feb 19. 2015

We have been adding pcaps to the collection so remember to check out the folder ( Pcap collection) for the recent pcaps.

I had a project to test some malicious and exploit pcaps and collected a lot of them (almost 1000) from various public sources. You can see them in the PUBLIC folder. The credits go to the authors of the pcaps listed in the name of each file. Please visit their blogs and sites to see more information about the pcaps, see their recent posts, and send them thanks. The public pcaps have no passwords on them.

Tuesday, February 17, 2015

Equation samples - from the Kaspersky Report and additional

Here are a few samples from the report by Kaspersky Lab "Equation: The Death Star of Malware Galaxy" and additional samples of the same family. The full list is below

Download all the samples listed below. Email me if you need the password (New link)

List of files

Files from the report:
File NameMD5Size
_SD_IP_CF.dll_03718676311DE33DD0B8F4F18CFFD48803718676311de33dd0b8f4f18cffd488368 KB
Disk from Houston_6FE6C03B938580EBF9B82F3B9CD4C4AA6fe6c03b938580ebf9b82f3b9cd4c4aa61 KB
DoubleFantasy_2A12630FF976BA0994143CA93FECD17F2a12630ff976ba0994143ca93fecd17f216 KB
EquationDrug_4556CE5EB007AF1DE5BD3B457F0B216D4556ce5eb007af1de5bd3b457f0b216d372 KB
EquationLaser_752AF597E6D9FD70396ACCC0B9013DBE752af597e6d9fd70396accc0b9013dbe130 KB
Fanny_0A209AC0DE4AC033F31D6BA9191A8F7A0a209ac0de4ac033f31d6ba9191a8f7a180 KB
GrayFish_9B1CA66AAB784DC5F1DFE635D8F8A9049b1ca66aab784dc5f1dfe635d8f8a904560 KB
GROK_24A6EC8EBF9C0867ED1C097F4A653B8D24a6ec8ebf9c0867ed1c097f4a653b8d160 KB
nls_933w.dll_11FB08B9126CDB4668B3F5135CF7A6C511fb08b9126cdb4668b3f5135cf7a6c5208 KB
TripleFantasy_9180D5AFFE1E5DF0717D7385E7F543869180d5affe1e5df0717d7385e7f5438618 KB
TripleFantasy_BA39212C5B58B97BFC9F5BC431170827ba39212c5b58b97bfc9f5bc431170827199 KB

Additional Files: