(Marcus Hutchins former blog)
This curated collection contains source code for significant malware specimens that have been previously leaked or exposed. These materials are provided strictly for educational and research purposes to aid cybersecurity professionals in understanding attack mechanisms and developing better defenses. Banking Trojans
Zeus - Sophisticated banking trojan that pioneered man-in-the-browser attacks and form grabbing techniques Carberp - Modular banking malware with bootkit capabilities and web inject functionality KINS - Zeus-based trojan with enhanced evasion techniques and plugin architecture Tinba (Tiny ASM Banking Trojan) - Remarkably compact banking trojan written in Assembly, known for its small size (~20KB)
Point-of-Sale Malware
Dexter v2 - RAM-scraping malware targeting payment card data in POS systems Alina Spark - Advanced memory scraper designed to extract track data from compromised payment terminals
Rootkits & Bootkits
Rovnix - VBR (Volume Boot Record) bootkit utilizing custom file system for covert operations
Mobile Malware
Dendroid - RAT (Remote Access Trojan) targeting Android devices with extensive surveillance capabilities
Information Stealers
Pony 2.0 - Credential harvester capable of extracting passwords from 100+ applications
Botnets & Infrastructure
Grum - High-volume spam distribution botnet that controlled millions of infected systems RIG Front-end - Administrative interface for the RIG exploit kit used to manage infection campaigns
Source: Originally compiled from MalwareTech