DB Update to 1606170828000

Source Code: OilRig PoisionFrog C2, Zeus.B, Android.CEREBRUS
Win9x.LegacyASM, the Entire Mirai Family

Mirai.Linux.Apex_Predator, Mirai.Linux.Hades, Mirai.Linux.Reaper.a, Mirai.Linux.Arcane, Mirai.Linux.Joker, Mirai.Linux.Reaper.b, Mirai.Linux.B1nary, Mirai.Linux.Josho.b, Mirai.Linux.Rektbot, Mirai.Linux.BallPit, Mirai.Linux.Josho.c, Mirai.Linux.Renegade, Mirai.Linux.Beastmode.d, Mirai.Linux.Katrina.a, Mirai.Linux.Selfrep, Mirai.Linux.Cbot, Mirai.Linux.Kira, Mirai.Linux.Shinto.d, Mirai.Linux.CyberWar.b, Mirai.Linux.Kowai, Mirai.Linux.Sora, Mirai.Linux.Demeter.a, Mirai.Linux.L33t.d, Mirai.Linux.Sythe, Mirai.Linux.Demon.a, Mirai.Linux.L7, Mirai.Linux.Ultron.a, Mirai.Linux.Demon.e, Mirai.Linux.Lulz, Mirai.Linux.Void, Mirai.Linux.Eragon2.0.c, Mirai.Linux.Oblivion, Mirai.Linux.Yagi, Mirai.Linux.Execution.i, Mirai.Linux.Okami, Mirai.Linux.Yummy, Mirai.Linux.Extendo, Mirai.Linux.Onryo, Mirai.Linux.Zekrom, Mirai.Linux.FBot.a, Mirai.Linux.Oreo, Mirai.Linux.eragon.c, Mirai.Linux.Galaxy.d, Mirai.Linux.OwariReborn, Mirai.Linux.yakuza.c, Mirai.Linux.Galaxy.g, Mirai.Linux.Razor,

Win2k.CannaByte.asm, Win2k.Joss.asm, Win2k.Stream.asm, Win2k.CannaByte.v2.asm, Win2k.Ketamine.asm, Win2k.TaiChi.asm, Win2k.DOB.asm, Win2k.Society.3434.asm, Win32.FirstBorn.asm Win95.Altar.asm, , Win95.Lizard.asm, Win95.Babylonia.11036.asm, Win95.Mad.2736.asm, Win95.Bonk32.asm, Win95.Marburg.asm, Win95.Boobs.asm, , Win95.Matrix.asm, Win95.Espore.asm, Win95.Molly.725.asm, Win95.Estukista.asm, Win95.Obsolete.asm, Win95.Etymo-Crypt.asm, Win95.Radix.asm, Win95.Henze.asm, , Win95.Sk.asm, Win95.IceHeart.asm, Win95.Unreal.asm, Win95.Inca.asm, , Win95.Yildiz.asm, Win95.Invirsible.asm, Win95.Zombie.asm, Win95.K32.asm, Win98.BeGemot.8192.asm, Win98.Milennium.asm, Win98.Yobe.24576.asm, Win98.BlackBat.asm, Win98.Priest.asm Win9x.DarkMillennium.asm, Win9x.Sentinel.asm, Win9x.Estukista.asm, Win9x.Society.3434.asm, Win9x.Noise.asm, , Win9x.Wiedzmin.asm, Win9x.Repus.asm  WinCE.Dust.TXT

.gitignore

@@ -1,178 +1,3 @@
-# Created by .ignore support plugin (hsz.mobi)
-### macOS template
-# General
-.DS_Store
-.AppleDouble
-.LSOverride
-
-# Icon must end with two \r
-Icon
-
-# Thumbnails
-._*
-
-# Files that might appear in the root of a volume
-.DocumentRevisions-V100
-.fseventsd
-.Spotlight-V100
-.TemporaryItems
-.Trashes
-.VolumeIcon.icns
-.com.apple.timemachine.donotpresent
-
-# Directories potentially created on remote AFP share
-.AppleDB
-.AppleDesktop
-Network Trash Folder
-Temporary Items
-.apdisk
-
-### Python template
-# Byte-compiled / optimized / DLL files
-__pycache__/
-*.py[cod]
-*$py.class
-
-# C extensions
-*.so
-
-# Distribution / packaging
-.Python
-build/
-develop-eggs/
-dist/
-downloads/
-eggs/
-.eggs/
-lib/
-lib64/
-parts/
-sdist/
-var/
-wheels/
-share/python-wheels/
-*.egg-info/
-.installed.cfg
-*.egg
-MANIFEST
-
-# PyInstaller
-#  Usually these files are written by a python script from a template
-#  before PyInstaller builds the exe, so as to inject date/other infos into it.
-*.manifest
-*.spec
-
-# Installer logs
-pip-log.txt
-pip-delete-this-directory.txt
-
-# Unit test / coverage reports
-htmlcov/
-.tox/
-.nox/
-.coverage
-.coverage.*
-.cache
-nosetests.xml
-coverage.xml
-*.cover
-*.py,cover
-.hypothesis/
-.pytest_cache/
-cover/
-
-# Translations
-*.mo
-*.pot
-
-# Django stuff:
-*.log
-local_settings.py
-db.sqlite3
-db.sqlite3-journal
-
-# Flask stuff:
-instance/
-.webassets-cache
-
-# Scrapy stuff:
-.scrapy
-
-# Sphinx documentation
-docs/_build/
-
-# PyBuilder
-.pybuilder/
-target/
-
-# Jupyter Notebook
-.ipynb_checkpoints
-
-# IPython
-profile_default/
-ipython_config.py
-
-# pyenv
-#   For a library or package, you might want to ignore these files since the code is
-#   intended to run in multiple environments; otherwise, check them in:
-# .python-version
-
-# pipenv
-#   According to pypa/pipenv#598, it is recommended to include Pipfile.lock in version control.
-#   However, in case of collaboration, if having platform-specific dependencies or dependencies
-#   having no cross-platform support, pipenv may install dependencies that don't work, or not
-#   install all needed dependencies.
-#Pipfile.lock
-
-# PEP 582; used by e.g. github.com/David-OConnor/pyflow
-__pypackages__/
-
-# Celery stuff
-celerybeat-schedule
-celerybeat.pid
-
-# SageMath parsed files
-*.sage.py
-
-# Environments
-.env
-.venv
-env/
-venv/
-ENV/
-env.bak/
-venv.bak/
-
-# Spyder project settings
-.spyderproject
-.spyproject
-
-# Rope project settings
-.ropeproject
-
-# mkdocs documentation
-/site
-
-# mypy
-.mypy_cache/
-.dmypy.json
-dmypy.json
-
-# Pyre type checker
-.pyre/
-
-# pytype static type analyzer
-.pytype/
-
-# Cython debug symbols
-cython_debug/
-
-# Installer logs
-pip-log.txt
-
-imports/*.pyd
-imports/*.pyc
-
 bin/
 tmp/
 *.idea/
@@ -210,4 +35,5 @@ develop-eggs/
 # Installer logs
 pip-log.txt
 
-.gitattributes
+imports/*.pyd
+imports/*.pyc

conf/db.ver

@@ -1 +1 @@
-1599892118000
+1606170828000

malwares/Source/Original/Android.CEREBRUS/Android.CEREBRUS.md5

@@ -0,0 +1 @@
+MD5 (Android.CEREBRUS.zip) = 39079ed3e2b172e96bc22eada152a457

malwares/Source/Original/Android.CEREBRUS/Android.CEREBRUS.pass

@@ -0,0 +1 @@
+infected

malwares/Source/Original/Android.CEREBRUS/Android.CEREBRUS.shasum

@@ -0,0 +1 @@
+733fc478acd6ef668f88131f505921fddc88e9a207e5ee304b37babf0b8a553d  Android.CEREBRUS.zip

malwares/Source/Original/Win32.APT34.PoisionFrog/Win32.APT34.PoisionFrog.md5

@@ -0,0 +1 @@
+MD5 (Win32.APT34.PoisionFrog.zip) = cae1fe6c074d8f8afb7a6831d061e58a

malwares/Source/Original/Win32.APT34.PoisionFrog/Win32.APT34.PoisionFrog.pass

@@ -0,0 +1 @@
+infected

malwares/Source/Original/Win32.APT34.PoisionFrog/Win32.APT34.PoisionFrog.shasum

@@ -0,0 +1 @@
+dfd2899722e2688e7f3c18a738f8fca73af0bd0ddabd185247959f65ae61500a  Win32.APT34.PoisionFrog.zip

malwares/Source/Original/Win32.Mirai/Win32.Mirai.md5

@@ -0,0 +1 @@
+MD5 (Win32.Mirai.zip) = 89f7924bd58f7ad298317e5ffcd46bbc

malwares/Source/Original/Win32.Mirai/Win32.Mirai.pass

@@ -0,0 +1 @@
+infected

malwares/Source/Original/Win32.Mirai/Win32.Mirai.shasum

@@ -0,0 +1 @@
+0f18a2e96b544ed9059232c263ed57a1d6cc8c0a1289c8522f08273a73884923  Win32.Mirai.zip

malwares/Source/Original/Win32.Zeus.b/Win32.Zeus.b.md5

@@ -0,0 +1 @@
+MD5 (Win32.Zeus.b.zip) = 40d4621e23d66022abc1410bd605b350

malwares/Source/Original/Win32.Zeus.b/Win32.Zeus.b.pass

@@ -0,0 +1 @@
+infected

malwares/Source/Original/Win32.Zeus.b/Win32.Zeus.b.shasum

@@ -0,0 +1 @@
+5a1284234d7d30aea7d95611671b3b8f51f294afef24a81c019ca06b614f78b0  Win32.Zeus.b.zip

malwares/Source/Original/Win9x.LegacyASM/Win9x.LegacyASM.md5

@@ -0,0 +1 @@
+MD5 (Win9x.LegacyASM.zip) = 83cc53f43340ae7561aa82b7ba2489f2

malwares/Source/Original/Win9x.LegacyASM/Win9x.LegacyASM.pass

@@ -0,0 +1 @@
+infected

malwares/Source/Original/Win9x.LegacyASM/Win9x.LegacyASM.shasum

@@ -0,0 +1 @@
+c418c450fddf19a6845bbbb37ba6eb911743a6d7ce898893b5a3fe1c1d467207  Win9x.LegacyASM.zip