malware-analysis/theZoo
1
0
Fork 0
mirror of https://github.com/ytisf/theZoo.git synced 2026-02-20 13:50:45 +00:00
Code Issues Packages Projects Releases Wiki Activity

Updating to v0.43 - minor fixes

Browse Source
This commit is contained in:
nativy
2014-06-23 22:26:52 +03:00
parent 73e8758cdc
commit 161dcef498
6 changed files with 203 additions and 809 deletions
Download Patch File Download Diff File Expand all files Collapse all files

649
conf/database.xml
View File

@@ -1,649 +0,0 @@
<?xml version="1.0" encoding="UTF-8"?>
<main_db>
<db_ver>190220141439</db_ver>
<malware id="1">
<location>"Source/Original/Dokan_Dec2008/Dokan_Dec2008"</location>
<type>"botnet"</type>
<name>"Dokan"</name>
<version>"unknown"</version>
<languages>"unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"c"</date_born>
<platform>"00/12/2008"</platform>
<arch>"x86"</arch>
</malware>
<malware id="3">
<location>"Source/Original/ShadowBotv3_March2007/ShadowBotv3_March2007"</location>
<type>"botnet"</type>
<name>"ShadowBot"</name>
<version>"3"</version>
<languages>"unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"cpp"</date_born>
<platform>"03/2007"</platform>
<arch>"x86"</arch>
</malware>
<malware id="4">
<location>"Source/Original/rBot0.3.3_May2004/rBot0.3.3_May2004"</location>
<type>"botnet"</type>
<name>"rBot"</name>
<version>"0.3.3"</version>
<languages>"unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"cpp"</date_born>
<platform>"00/05/2004"</platform>
<arch>"x86"</arch>
</malware>
<malware id="5">
<location>"Source/Original/ZeuS2.0.8.9_Feb2013/ZeuS2.0.8.9_Feb2013"</location>
<type>"botnet"</type>
<name>"ZeuS"</name>
<version>"2.0.8.9"</version>
<languages>"unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"c"</date_born>
<platform>"02/2013"</platform>
<arch>"x86"</arch>
</malware>
<malware id="6">
<location>"Source/Original/X0R-USB_Jan2009/X0R-USB_Jan2009"</location>
<type>"virus"</type>
<name>"X0R-USB-Virus"</name>
<version>"unknown"</version>
<languages>"unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"c"</date_born>
<platform>"00/01/2009"</platform>
<arch>"x86"</arch>
</malware>
<malware id="7">
<location>"Source/Original/LoexBot1.3_Sep2008/LoexBot1.3_Sep2008"</location>
<type>"botnet"</type>
<name>"LoexBot"</name>
<version>"1.3"</version>
<languages>"unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"cpp"</date_born>
<platform>"00/09/2008"</platform>
<arch>"x86"</arch>
</malware>
<malware id="8">
<location>"Source/Original/ZunkerBot1.4.5_Sep2007/ZunkerBot1.4.5_Sep2007"</location>
<type>"botnet"</type>
<name>"ZunkerBot"</name>
<version>"1.4.5"</version>
<languages>"unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"php"</date_born>
<platform>"09/2007"</platform>
<arch>"x86"</arch>
</malware>
<malware id="9">
<location>"Source/Original/DopeBotv0.22_UnCrippled_Feb2007/DopeBotv0.22_UnCrippled_Feb2007"</location>
<type>"botnet"</type>
<name>"DopeBot-UnCrippled"</name>
<version>"0.22"</version>
<languages>"unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"cpp"</date_born>
<platform>"00/02/2007"</platform>
<arch>"x86"</arch>
</malware>
<malware id="10">
<location>"Source/Original/vbBot_Jan2007/vbBot_Jan2007"</location>
<type>"botnet"</type>
<name>"vbBot"</name>
<version>"unknown"</version>
<languages>"unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"vb"</date_born>
<platform>"01/2007"</platform>
<arch>"x86"</arch>
</malware>
<malware id="11">
<location>"Source/Original/xTBot0.0.2_2Feb2002/xTBot0.0.2_2Feb2002"</location>
<type>"botnet"</type>
<name>"xTBot"</name>
<version>"0.0.2"</version>
<languages>"unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"cpp"</date_born>
<platform>"02/2002"</platform>
<arch>"x86"</arch>
</malware>
<malware id="12">
<location>"Source/Original/VBS.Win32.Vabian/VBS.Win32.Vabian"</location>
<type>"VBS-Worm"</type>
<name>"VBS.Win32.Vabian"</name>
<version>"botnet"</version>
<languages>"unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"vb"</date_born>
<platform>"unknown"</platform>
<arch>"x86"</arch>
</malware>
<malware id="13">
<location>"Source/Original/DopeBotv0.22_CrippledFeb2007/DopeBotv0.22_CrippledFeb2007"</location>
<type>"botnet"</type>
<name>"DopeBot-Crippled"</name>
<version>"0.22"</version>
<languages>"unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"cpp"</date_born>
<platform>"00/02/2007"</platform>
<arch>"x86"</arch>
</malware>
<malware id="14">
<location>"Source/Original/Win32.MiniPig_Nov2006/Win32.MiniPig_Nov2006"</location>
<type>"Worm"</type>
<name>"Win32.MiniPig"</name>
<version>"virus"</version>
<languages>"unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"c"</date_born>
<platform>"00/11/2006"</platform>
<arch>"x86"</arch>
</malware>
<malware id="15">
<location>"Source/Original/HellBotv3.0_10June2005/HellBotv3.0_10June2005"</location>
<type>"botnet"</type>
<name>"Hellbot"</name>
<version>"3.0"</version>
<languages>"unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"cpp"</date_born>
<platform>"00/06/2005"</platform>
<arch>"x86"</arch>
</malware>
<malware id="16">
<location>"Source/Original/Win32.ogw0rm_Nov2008/Win32.ogw0rm_Nov2008"</location>
<type>"Worm"</type>
<name>"Win32.ogwOrm"</name>
<version>"unknown"</version>
<languages>"unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"cpp"</date_born>
<platform>"00/11/2008"</platform>
<arch>"x86"</arch>
</malware>
<malware id="17">
<location>"Source/Original/DopeBot.B_Dec2004/DopeBot.B_Dec2004"</location>
<type>"botnet"</type>
<name>"DopeBot.B"</name>
<version>"unknown"</version>
<languages>"unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"cpp"</date_born>
<platform>"00/12/2004"</platform>
<arch>"x86"</arch>
</malware>
<malware id="18">
<location>"Source/Original/LiquidBot_May2005/LiquidBot_May2005"</location>
<type>"botnet"</type>
<name>"LiquidBot"</name>
<version>"unknown"</version>
<languages>"unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"cpp"</date_born>
<platform>"00/05/2005"</platform>
<arch>"x86"</arch>
</malware>
<malware id="19">
<location>"Source/Original/SpazBot2.12_June2007/SpazBot2.12_June2007"</location>
<type>"botnet"</type>
<name>"SpazBot"</name>
<version>"2.12"</version>
<languages>"unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"vb"</date_born>
<platform>"00/06/2007"</platform>
<arch>"x86"</arch>
</malware>
<malware id="20">
<location>"Source/Original/DBotv3.1_March2007/DBotv3.1_March2007"</location>
<type>"botnet"</type>
<name>"DBot"</name>
<version>"3.1"</version>
<languages>"unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"c"</date_born>
<platform>"00/03/2007"</platform>
<arch>"x86"</arch>
</malware>
<malware id="21">
<location>"Source/Original/CyberBotv2.2_October2006/CyberBotv2.2_October2006"</location>
<type>"botnet"</type>
<name>"CyberBot"</name>
<version>"2.2"</version>
<languages>"unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"cpp"</date_born>
<platform>"00/10/2006"</platform>
<arch>"x86"</arch>
</malware>
<malware id="22">
<location>"Source/Original/DopeBot.A_Dec2004/DopeBot.A_Dec2004"</location>
<type>"botnet"</type>
<name>"DopeBot.A"</name>
<version>"unknown"</version>
<languages>"unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"cpp"</date_born>
<platform>"00/12/2004"</platform>
<arch>"x86"</arch>
</malware>
<malware id="23">
<location>"Source/Original/MyDoom.A_Jan2004/MyDoom.A_Jan2004"</location>
<type>"virus"</type>
<name>"MyDoom.A"</name>
<version>"unknown"</version>
<languages>"unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"c"</date_born>
<platform>"00/01/2004"</platform>
<arch>"x86"</arch>
</malware>
<malware id="24">
<location>"Source/Original/ShadowBot_Sep2008/ShadowBot_Sep2008"</location>
<type>"botnet"</type>
<name>"ShadowBot"</name>
<version>"unknown"</version>
<languages>"unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"cpp"</date_born>
<platform>"00/09/2008"</platform>
<arch>"x86"</arch>
</malware>
<malware id="25">
<location>"Binaries/CryptoLocker20Nov2013/CryptoLocker20Nov2013"</location>
<type>"ransomeware"</type>
<name>"CryptoLocker"</name>
<version>"Unknown"</version>
<languages>"Unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"bin"</date_born>
<platform>"20/12/2013"</platform>
<arch>"x86"</arch>
</malware>
<malware id="26">
<location>"Binaries/CryptoLocker_10Sep2013/CryptoLocker_10Sep2013"</location>
<type>"ransomeware"</type>
<name>"CryptoLocker"</name>
<version>"Unknown"</version>
<languages>"Unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"bin"</date_born>
<platform>"10/12/2013"</platform>
<arch>"x86"</arch>
</malware>
<malware id="27">
<location>"Binaries/IllusionBot_May2007/IllusionBot_May2007"</location>
<type>"botnet"</type>
<name>"Illusion Bot"</name>
<version>"Unknown"</version>
<languages>"Unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"bin"</date_born>
<platform>"00/05/2007"</platform>
<arch>"x86"</arch>
</malware>
<malware id="28">
<location>"Source/Original/NBot_July2008/NBot_July2008"</location>
<type>"botnet"</type>
<name>"nBot"</name>
<version>"0.32"</version>
<languages>"Unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"c"</date_born>
<platform>"00/05/2008"</platform>
<arch>"x86"</arch>
</malware>
<malware id="29">
<location>"Binaries/Trojan.Dropper.Gen/Trojan.Dropper.Gen"</location>
<type>"trojan"</type>
<name>"Dropper"</name>
<version>"Unknown"</version>
<languages>"Unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"bin"</date_born>
<platform>"00/01/2014"</platform>
<arch>"x86"</arch>
</malware>
<malware id="30">
<location>"Binaries/Trojan.NSIS.Win32/Trojan.NSIS.Win32"</location>
<type>"trojan"</type>
<name>"NSIS"</name>
<version>"Unknown"</version>
<languages>"Unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"bin"</date_born>
<platform>"00/01/2014"</platform>
<arch>"x86"</arch>
</malware>
<malware id="31">
<location>"Binaries/Trojan.Win32.Bechiro.BCD/Trojan.Win32.Bechiro.BCD"</location>
<type>"trojan"</type>
<name>"Bechiro"</name>
<version>"BCD"</version>
<languages>"Unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"bin"</date_born>
<platform>"00/01/2014"</platform>
<arch>"x86"</arch>
</malware>
<malware id="32">
<location>"Binaries/AndroRat_6Dec2013/AndroRat_6Dec2013"</location>
<type>"botnet"</type>
<name>"AndroRat"</name>
<version>"Dec2013"</version>
<languages>"Unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"java"</date_born>
<platform>"06/12/2013"</platform>
<arch>"x86"</arch>
</malware>
<malware id="33">
<location>"Binaries/CryptoLocker_22Jan2014/CryptoLocker_22Jan2014"</location>
<type>"ransomeware"</type>
<name>"CryptoLocker"</name>
<version>"Jan2014"</version>
<languages>"Unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"bin"</date_born>
<platform>"22/01/2014"</platform>
<arch>"x86"</arch>
</malware>
<malware id="34">
<location>"Binaries/njRAT-v0.6.4/njRAT-v0.6.4"</location>
<type>"botnet"</type>
<name>"njRAT"</name>
<version>"0.6.4"</version>
<languages>"Unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"bin"</date_born>
<platform>"00/09/2013"</platform>
<arch>"x86"</arch>
</malware>
<malware id="35">
<location>"Binaries/ZeusBankingVersion_26Nov2013/ZeusBankingVersion_26Nov2013"</location>
<type>"botnet"</type>
<name>"Zeus - zBot"</name>
<version>"Nov2013"</version>
<languages>"Unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"bin"</date_born>
<platform>"23/11/2013"</platform>
<arch>"x86"</arch>
</malware>
<malware id="36">
<location>"Source/Original/NullBot_Dec2006/NullBot_Dec2006"</location>
<type>"botnet"</type>
<name>"NullBot"</name>
<version>"Dec2006"</version>
<languages>"Unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"cpp"</date_born>
<platform>"00/12/2006"</platform>
<arch>"x86"</arch>
</malware>
<malware id="37">
<location>"Binaries/Artemis"</location>
<type>"trojan"</type>
<name>"Artemis"</name>
<version>"Unknown"</version>
<languages>"Unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"bin"</date_born>
<platform>"00/00/0000"</platform>
<arch>"x86"</arch>
</malware>
<malware id="38">
<location>"Binaries/Somoto"</location>
<type>"apt"</type>
<name>"Somoto"</name>
<version>"unknown"</version>
<languages>"unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"bin"</date_born>
<platform>"00/00/0000"</platform>
<arch>"x86"</arch>
</malware>
<malware id="39">
<location>"Binaries/Variant.Kazy"</location>
<type>"trojan"</type>
<name>"Variant.Kazy"</name>
<version>"unknown"</version>
<languages>"unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"bin"</date_born>
<platform>"00/00/0000"</platform>
<arch>"x86"</arch>
</malware>
<malware id="40">
<location>"Binaries/Win32/Brontok.W"</location>
<type>"Worm"</type>
<name>"Brontok.FE"</name>
<version>"unknown"</version>
<languages>"unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"bin"</date_born>
<platform>"00/00/0000"</platform>
<arch>"x86"</arch>
</malware>
<malware id="41">
<location>"Binaries/Trojan.Loadmoney.1"</location>
<type>"trojan"</type>
<name>"LMclicker.1"</name>
<version>"unknown"</version>
<languages>"unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"bin"</date_born>
<platform>"00/00/0000"</platform>
<arch>"x86"</arch>
</malware>
<malware id="42">
<location>"Binaries/Win32Dircrypt.Trojan.Ransom.ABZ"</location>
<type>"ransomeware"</type>
<name>"Trojan.Ransom"</name>
<version>"unknown"</version>
<languages>"unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"bin"</date_born>
<platform>"00/00/0000"</platform>
<arch>"x86"</arch>
</malware>
<malware id="43">
<location>"Binaries/TrojanWin32.Duqu.Stuxnet"</location>
<type>"botnet"</type>
<name>"Trojan.Win32.Duqu.Aoq ."</name>
<version>"unknown"</version>
<languages>"unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"bin"</date_born>
<platform>"00/00/0000"</platform>
<arch>"x86"</arch>
</malware>
<malware id="45">
<location>"Binaries/Win32.Botnet.Stuxnet.B"</location>
<type>"apt"</type>
<name>"Stuxnet Duqu"</name>
<version>"Realtek Signed B"</version>
<languages>"Unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"bin"</date_born>
<platform>"00/00/2007"</platform>
<arch>"x86"</arch>
</malware>
<malware id="44">
<location>"Binaries/Win32.Botnet.Stuxnet.A"</location>
<type>"apt"</type>
<name>"Stuxnet Duqu"</name>
<version>"C-Media Electronics Incorporation Signature - A"</version>
<languages>"Unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"bin"</date_born>
<platform>"00/00/2009"</platform>
<arch>"x86"</arch>
</malware>
<malware id="46">
<location>"Binaries/Skywiper-A.Flame"</location>
<type>"apt"</type>
<name>"Skywiper AKA Flame"</name>
<version>"A"</version>
<languages>"Unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"bin"</date_born>
<platform>"00/00/2012"</platform>
<arch>"x86"</arch>
</malware>
<malware id="47">
<location>"Binaries/Careto_Feb2014"</location>
<type>"apt"</type>
<name>"Careto aka The Mask"</name>
<version>"A"</version>
<languages>"Unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"bin"</date_born>
<platform>"15/02/2014"</platform>
<arch>"x86"</arch>
</malware>
<malware id="48">
<location>"Binaries/ZeusGamever_Feb2014"</location>
<type>"botnet"</type>
<name>"Zeus"</name>
<version>"Gamever"</version>
<languages>"Unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"bin"</date_born>
<platform>"19/02/2014"</platform>
<arch>"x86"</arch>
</malware>
<malware id="49">
<location>"Binaries/Android.Spy.49_iBanking_Feb2014"</location>
<type>"botnet"</type>
<name>"Android Spy 29"</name>
<version>"Banking Version"</version>
<languages>"Unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"apk"</date_born>
<platform>"19/02/2014"</platform>
<arch>"arm"</arch>
</malware>
<malware id="50">
<location>"Binaries/Win32.Cridex"</location>
<type>"worm"</type>
<name>"Cridex"</name>
<version>"B"</version>
<languages>"Unknown"</languages>
<binary />
<source />
<date_indexed />
<date_born>"bin"</date_born>
<platform>"00/02/2014"</platform>
<arch>"x86"</arch>
</malware>
</main_db>