This repo is a public collection of malware samples and related dissection/analysis information, maintained by InQuest. It gathers various kinds of malicious artifacts, executables, scripts, macros, obfuscated documents, etc., with metadata (e.g., VirusTotal reports), file carriers, and sample hashes. It’s intended for malware analysts/researchers to help study how malware works, how they are delivered, and how it evolves.

Features

  • Wide variety of sample types — includes executables, scripts, Office docs with macros, obfuscated payloads, etc.
  • Associated metadata / reports — many samples come with JSON / VirusTotal reports and sometimes decompiled sources or analysis.
  • Organized chronologically / by campaign — samples are grouped by date, malware family, and campaign name.
  • File-carrier examples — shows how malware is delivered (e.g. via Office docs, PowerShell, SWF, etc.).
  • Open source with permissive license — MIT license, which allows reuse / study.
  • Linkage to external resources — connects to blog posts, dissection writeups, interactive searchable interfaces (InQuest Labs DFI), etc.

Project Activity

See All Activity >

Categories

Security

License

MIT License

Follow malware-samples

malware-samples Web Site

Other Useful Business Software
Build Agents and Models on One Platform Icon
Build Agents and Models on One Platform

Everything you need to build production-ready agents and models. Access 200+ Google and third-party AI models and tools.

Gemini Enterprise Agent Platform is Google Cloud's comprehensive platform for developers to build, scale, govern, and optimize agents and models. Choose from Google's most advanced models and third-party models like Anthropic's Claude Model Family.
Try It Free
Rate This Project
Login To Rate This Project

User Reviews

Be the first to post a review of malware-samples!