diff --git a/conf/db.ver b/conf/db.ver index d92c60a..d840aea 100644 --- a/conf/db.ver +++ b/conf/db.ver @@ -1 +1 @@ -1638767036000 \ No newline at end of file +1712294860000 \ No newline at end of file diff --git a/conf/maldb.db b/conf/maldb.db index 88ae36d..f55f7dd 100644 Binary files a/conf/maldb.db and b/conf/maldb.db differ diff --git a/imports/globals.py b/imports/globals.py index 2290a19..52e071d 100644 --- a/imports/globals.py +++ b/imports/globals.py @@ -1,7 +1,7 @@ #!/usr/bin/env python # Malware DB - the most awesome free malware database on the air - # Copyright (C) 2014, Yuval Nativ, Lahad Ludar, 5Fingers + # Copyright (C) 2014-2025, Yuval Nativ, Lahad Ludar, 5Fingers # This program is free software: you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by diff --git a/malware/Binaries/EarthKrahang_20240404/EarthKrahang_20240404.md5 b/malware/Binaries/EarthKrahang_20240404/EarthKrahang_20240404.md5 new file mode 100644 index 0000000..91f297f --- /dev/null +++ b/malware/Binaries/EarthKrahang_20240404/EarthKrahang_20240404.md5 @@ -0,0 +1 @@ +MD5 (Win32.EarthKrahang_20240404.zip) = 21b766fbfd52a415b90cc99d3550fc65 diff --git a/malware/Binaries/EarthKrahang_20240404/EarthKrahang_20240404.pass b/malware/Binaries/EarthKrahang_20240404/EarthKrahang_20240404.pass new file mode 100644 index 0000000..ba701bf --- /dev/null +++ b/malware/Binaries/EarthKrahang_20240404/EarthKrahang_20240404.pass @@ -0,0 +1 @@ +infected diff --git a/malware/Binaries/EarthKrahang_20240404/EarthKrahang_20240404.sha b/malware/Binaries/EarthKrahang_20240404/EarthKrahang_20240404.sha new file mode 100644 index 0000000..e20e52b --- /dev/null +++ b/malware/Binaries/EarthKrahang_20240404/EarthKrahang_20240404.sha @@ -0,0 +1 @@ +85ed0693e2be170048f39aea469abf34285648c2 EarthKrahang_20240404.zip diff --git a/malware/Binaries/EarthKrahang_20240404/EarthKrahang_20240404.zip b/malware/Binaries/EarthKrahang_20240404/EarthKrahang_20240404.zip new file mode 100644 index 0000000..dc45f25 Binary files /dev/null and b/malware/Binaries/EarthKrahang_20240404/EarthKrahang_20240404.zip differ diff --git a/malware/Binaries/MustangPanda_20230922/MustangPanda_20230922.md5 b/malware/Binaries/MustangPanda_20230922/MustangPanda_20230922.md5 new file mode 100644 index 0000000..eec11ee --- /dev/null +++ b/malware/Binaries/MustangPanda_20230922/MustangPanda_20230922.md5 @@ -0,0 +1 @@ +MD5 (MustangPanda_20230922.zip) = a5f723181e7902134b4bd89c456052c7 diff --git a/malware/Binaries/MustangPanda_20230922/MustangPanda_20230922.pass b/malware/Binaries/MustangPanda_20230922/MustangPanda_20230922.pass new file mode 100644 index 0000000..ba701bf --- /dev/null +++ b/malware/Binaries/MustangPanda_20230922/MustangPanda_20230922.pass @@ -0,0 +1 @@ +infected diff --git a/malware/Binaries/MustangPanda_20230922/MustangPanda_20230922.sha b/malware/Binaries/MustangPanda_20230922/MustangPanda_20230922.sha new file mode 100644 index 0000000..7829611 --- /dev/null +++ b/malware/Binaries/MustangPanda_20230922/MustangPanda_20230922.sha @@ -0,0 +1 @@ +ee526b6503308c3c882325ca28ee55035b87f4c2 MustangPanda_20230922.zip diff --git a/malware/Binaries/MustangPanda_20230922/MustangPanda_20230922.zip b/malware/Binaries/MustangPanda_20230922/MustangPanda_20230922.zip new file mode 100644 index 0000000..0becfc6 Binary files /dev/null and b/malware/Binaries/MustangPanda_20230922/MustangPanda_20230922.zip differ diff --git a/malware/Binaries/Win32.BUMBLEBEE_0.1/Win32.BUMBLEBEE_0.1.md5 b/malware/Binaries/Win32.BUMBLEBEE_0.1/Win32.BUMBLEBEE_0.1.md5 new file mode 100644 index 0000000..d500e78 --- /dev/null +++ b/malware/Binaries/Win32.BUMBLEBEE_0.1/Win32.BUMBLEBEE_0.1.md5 @@ -0,0 +1 @@ +MD5 (BUMBLEBEE_0.1.zip) = 99b794c1f126d34d1ec3f7e77afd1924 diff --git a/malware/Binaries/Win32.BUMBLEBEE_0.1/Win32.BUMBLEBEE_0.1.pass b/malware/Binaries/Win32.BUMBLEBEE_0.1/Win32.BUMBLEBEE_0.1.pass new file mode 100644 index 0000000..ba701bf --- /dev/null +++ b/malware/Binaries/Win32.BUMBLEBEE_0.1/Win32.BUMBLEBEE_0.1.pass @@ -0,0 +1 @@ +infected diff --git a/malware/Binaries/Win32.BUMBLEBEE_0.1/Win32.BUMBLEBEE_0.1.sha b/malware/Binaries/Win32.BUMBLEBEE_0.1/Win32.BUMBLEBEE_0.1.sha new file mode 100644 index 0000000..5fc68f6 --- /dev/null +++ b/malware/Binaries/Win32.BUMBLEBEE_0.1/Win32.BUMBLEBEE_0.1.sha @@ -0,0 +1 @@ +0bc32cb18f1da390bcafa6946fbbdf22922c7afc BUMBLEBEE_0.1.zip diff --git a/malware/Binaries/Win32.BUMBLEBEE_0.1/Win32.BUMBLEBEE_0.1.zip b/malware/Binaries/Win32.BUMBLEBEE_0.1/Win32.BUMBLEBEE_0.1.zip new file mode 100644 index 0000000..e818f30 Binary files /dev/null and b/malware/Binaries/Win32.BUMBLEBEE_0.1/Win32.BUMBLEBEE_0.1.zip differ diff --git a/malware/Binaries/Win32.GhostSec/Win32.GhostSec.md5 b/malware/Binaries/Win32.GhostSec/Win32.GhostSec.md5 new file mode 100644 index 0000000..3893945 --- /dev/null +++ b/malware/Binaries/Win32.GhostSec/Win32.GhostSec.md5 @@ -0,0 +1 @@ +MD5 (Win32.GhostSec.zip) = fc111eb72cd394a0dc6c785f321745ad diff --git a/malware/Binaries/Win32.GhostSec/Win32.GhostSec.pass b/malware/Binaries/Win32.GhostSec/Win32.GhostSec.pass new file mode 100644 index 0000000..ba701bf --- /dev/null +++ b/malware/Binaries/Win32.GhostSec/Win32.GhostSec.pass @@ -0,0 +1 @@ +infected diff --git a/malware/Binaries/Win32.GhostSec/Win32.GhostSec.sha b/malware/Binaries/Win32.GhostSec/Win32.GhostSec.sha new file mode 100644 index 0000000..5bd8b88 --- /dev/null +++ b/malware/Binaries/Win32.GhostSec/Win32.GhostSec.sha @@ -0,0 +1 @@ +5223db383114366949a1eaf3a25db69cde5c528a Win32.GhostSec.zip diff --git a/malware/Binaries/Win32.GhostSec/Win32.GhostSec.zip b/malware/Binaries/Win32.GhostSec/Win32.GhostSec.zip new file mode 100644 index 0000000..e394278 Binary files /dev/null and b/malware/Binaries/Win32.GhostSec/Win32.GhostSec.zip differ diff --git a/prep_file.py b/prep_file.py index 1292492..76399c5 100644 --- a/prep_file.py +++ b/prep_file.py @@ -4,7 +4,7 @@ Name: Prep File Author: ytisf Date of Creation: Unknown -Last Modified: May 26, 2019 +Last Modified: April 05, 2024 Dev: K4YT3X Last Modified: August 21, 2019 @@ -15,10 +15,10 @@ Licensed under the GNU General Public License Version 3 (GNU GPL v3), """ # built-in imports -import hashlib -import pathlib import sys import time +import hashlib +import pathlib import traceback try: diff --git a/requirements.txt b/requirements.txt index 5db5da3..e79ccae 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,2 +1,3 @@ urllib3 pyminizip +pyzipper \ No newline at end of file diff --git a/theZoo.py b/theZoo.py index 144a6be..ce6fbe8 100644 --- a/theZoo.py +++ b/theZoo.py @@ -1,7 +1,7 @@ #!/usr/bin/env python # Malware DB - the most awesome free malware database on the air - # Copyright (C) 2014, Yuval Nativ, Lahad Ludar, 5Fingers + # Copyright (C) 2014-2025, Yuval Nativ, Lahad Ludar, 5Fingers # This program is free software: you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by