Sunday, October 4, 2015

YiSpecter iOS iphone malware samples


Research: Palo Alto.  Claud Xiao  YiSpecter: First iOS Malware That Attacks Non-jailbroken Apple iOS Devices by Abusing Private APIs

Sample Credit: Claud Xiao

MD5
File: ADPage Size: 2570560  MD5:  8E93947DFD1B11A77A04429BD8B32CED
File: ADPage.ipa Size: 1484304  MD5:  62C6F0E3615B0771C0D189D3A7C50477
File: DaPian  Size: 5978608 MD5:  3A41BB59E2946A66BBD03A8B4D51510B
File: DaPian.ipa Size: 2826575 MD5:  6E907716DC1AA6B9C490CE58AAAE0D53
File: HYQvod Size: 1984256 MD5:  35EE9556457D6170EA83C800887C1CBE
File: HYQvod.ipa Size: 2154552 MD5:  97210A234417954C7BBE87BFE685EAAE
File: HYQvod_3.3.3 Size: 3347360 MD5:  304A10D364454EE8F2E26979927C0334
File: HYQvod_3.3.3.ipa Size: 3148992 MD5:  29E147675AF38ECE406B6227F3CCD76B
File: NoIcon Size: 1426368 MD5:  E6B45FAF823387BCA7524C4D0329543F
File: NoIcon.ipa Size: 581136 MD5:  FBF92317CA8A7D5C243AB62624701050
File: NoIconUpdate Size: 1427040 MD5:  4460F3D29A4BCE8AA8E8FFDE4A467B70
File: NoIconUpdate.ipa Size: 590191 MD5:  0B98EE74843809493B0661C679A3C90C

 Download. Email me if you need the password (New Link)

Tuesday, September 1, 2015

KeyRaider: iOS infostealer



Research: Palo Alto: KeyRaider: iOS Malware Steals Over 225,000 Apple Accounts to Create Free App Utopia


Sample Credit:Claud Xiao






02464AE6259A2C8194470385781501B7 9   catbbs.ibackground 3.2.deb
0F710F8397EC969AF26C299A63AEDA8B 9catbbs.iappstore 4.0.deb
1DD1A8C6C213E3B51CD2463D764A9C62 9catbbs.MPPlugin 1.3.deb
3838A37A9BC7DF750FB16D12E32A2FCB iweixin.deb
3C57E433FBBA1AC1E4DC1B84CEC038FB repo.sunbelife.batterylife 1.4.1.deb
CAAF060572E57B6D175C3959495BCDBF 9catbbs.GamePlugin 6.1-9.deb
DDF224F63EE9C7FBA76298664A2B0B00 9catbbs.iappinbuy 1.0.deb

Download
Email me if you need the password  (2015-09-03 - fixed zip file)

Tuesday, June 2, 2015

AndroidOS.Wroba.x / HijackRAT - Android sample

A variant of

Research: Fireeye: The Service You Can’t Refuse: A Secluded HijackRAT 2014

Sample Credit: SUVsoft

MD5:  a21fab634dc788cdd462d506458af1e4
Size: 403974

Installed apps:
com.ahnlab.v3mobileplus
-----
com.android.internal.telephony.ITelephony
com.epost.psf.sdsi
com.estsoft.alyac.ui
com.hanabank.ebk.channel.android.hananbank
com.ibk.neobanking
com.kbstar.kbbank
com.kftc.kjbsmb
com.sc.danb.scbankapp
com.shinhan.sbanking
com.smg.spbs
com.wooribank.pib.smart

 
Download. Email me if you need the password. (New Link)



Android Locker Ransomware sample

Monday, May 25, 2015

Android FakeApp.AL Sample


Research: Scareware: Fake Minecraft apps Scare Hundreds of Thousands on Google Play  -
Adware

File: com.xcraft.mods.apk
Size: 341376
MD5:  ACB66E858D54C61AA10E60276001C02B


Download. Email me if you need the password





Thursday, May 21, 2015

NotCompatible / NioServ Android sample



This file has been spotted as the response content of the following URLs.
hxxp://91.194.254.107/Android.Core.Defender.apk

File: Android.Core.Defender.apk
Size: 64345
MD5:  7079D98E70EA31EA8F1DA54D160979EF

 Download. Email me if you need the sample



Wednesday, April 1, 2015

Hacking Team RCS for Android sample


Advanced spyware.

Credit: Anonymous

Size: 2392347
MD5:  904ED531D0B3B1979F1FDA7A9504C882



Sunday, March 22, 2015

Android Infostealer - Godwon

Android.Podec SMS Trojan bypasses CAPTCHA sample


Research: Securelist: SMS Trojan bypasses CAPTCHA

72ADCF52448B2F7BC8CADA8AF8657EEB
0D5708158B8782F115670BD51833AC5C


Download. Email me if you need the password




Cajino - Remote administration trojan using Baidu Cloud Push service


Research: Remote administration trojan using Baidu Cloud Push service

MD5
5f385407a0e547f809ac4be8b1119b04
9342b4ecbb7eb045edcdb6e0e339e415
39581735ee24d54f93c8c51d8c39b506
b3814ca9e42681b32dafe4a52e5bda7a


Download. Email me if you need the password



Android.Titan.1 South Korean SMS trojan


Research: Dr. Web. Dangerous Android Trojan “hides” from anti-viruses

40271C85ADE6DB263CE496CD51943518
B184ACCCE8313F879253A224998F3054


Download. Email me if you need the password






Android Ransomware Simplocker sample

SocialPath - Android infostealer sample

Android Worm Gazon Amazon Rewards


Research: Adaptive Mobile. Worm.Gazon: Want Gift Card? Get Malware

Sample Credit:  Marc Rivero Lopez

MD5 4a56c7abdc455c82e95753bdb1934285


Download. Email me if you need the password






Android Spy Banker FacebookOTP.apk sample

:

Sample Credit: Darien Huss

FacebookOTP.apk
021d55c415ff951c8e7b1ce3f94399bb

hxxp://www.security-otp.com/otp/FacebookOTP.apk

Download. Email me if you need the password





Android. Remote-control Trojan with Smack Technique - sample


Research: AVL Team Remote-control Trojan with Smack Technique

Sample credit: AVL Mobile Security


MD5 370fe3d8e9b40702b08a5f93003de0d3

Download. Email me if you need the password





Android.Pincer samples


Research: F-Secure. Trojan:Android/Pincer.A
Krebs on Security. Who Wrote the Pincer Android Trojan?

Sample Credit: Wenjun Hu and AndroidMalShare


b2b7d5999dce0559d13ab06d30c2c6ec
9c9afd6b77d8d3a66a2db2d2cf0b94b3
f05839eb7156b434a893bbeddb68ad85
2d66d7942148de2d9f08eab403921c89


Download. Email me if you need the password





Android HeHe samples


Research: Fireeye Android.HeHe: Malware Now Disconnects Phone Calls 

MD5
2af4de1df7587fa0035dcefededaedae
2b41fbfb5087f521be193d8c1f5efb4c
8265041aca378d37006799975fa471d9
9507f93d9a64d718682c0871bf354e6f
aa0ed04426562df25916ff70258daf6c
1caa31272daabb43180e079bca5e23c1






Friday, February 6, 2015

Fonefee / Feejar SMSsender Android sample




Sample Credit: Steven Chen

File: com.c101421042723.apk
Size: 289096
MD5:  34C082310DF3F124BA6976ED861FAF87

Download. Email me if you need the password





SecApk Android sample


Research: Avast. The Gray-zone of malware detection in Android OS

Sample Credit: Steven Chen

File: com.fdhgkjhrtjkjbx.model.apk
Size: 2514506
MD5:  3D7E04E37DB833F47D08975E27C69A9C

Download. Email me if you need the password







MobiDash Android Adware samples


Research: Avast. Apps on Google Play Pose As Games and Infect Millions of Users with Adware

Sample Credit: Mario Bono

 8C524CB2AE42F7F01FCBAF0B1FAC9FCC
788FC58A662D815C3B2B49FAFDB8BDCA
2CC4C6FBD486903ACF783FEFC018411E



Download. Email me if you need the password





DSEncrypt Android sample


Research: Fireye. What are you doing? – DSEncrypt Malware
Sample Credit: Claud Xiao

Size: 1794848
MD5:  568D40CCD7B91951715AC4079A860128


Download. Email me if you need the password





Tuesday, January 27, 2015

Android Hideicon malware samples


Research: CheetaMobile. Hideicon malware hits Google Play

Sample credit: Tim Vidas


File: com.onlygoodcompass.wedoourbest.apk
Size: 4218889
MD5:  AACD2F0E1ADE197A45D3AF3814E4A6CE

File: com.keloidscaretissue.QuxiFlashlisht.apk
Size: 6111068
MD5:  71D09D5FC4AC84EB806CFA84594DF13E

File: com.keloidscaretissue.Quxicompass.apk
Size: 7626975
MD5:  31EDF48A0F9377CE11B8E1957AD678C8

File: com.keloidscaretissue.puzzle2048.apk
Size: 5318883
MD5:  F7CA6BB3336A1452FE965D6FC0B248DC

File: com.flashlightcompass.wedoourbest.apk
Size: 4689773
MD5:  8CBB1BD7DC44CBBE068947FD2C3BFD03

Download. Email me if you need the password






Wednesday, January 7, 2015

Android PoisonCake sample


Research:  AVLTeam: PoisonCake In the ROM (English Version)

Sample Credit: Baron Pan

File: dm
Size: 379256
MD5:  8A54A619B7B00B1103826630D2A08EF5
http://blog.avlyun.com/

Download. Email me if you need the password