Idea for a hosted Malware database that can be used to retrieve and upload malware samples. Will support multiple input from various malware databases. Looking to integrate this in a system to definitively classify malware into families and groups. Inspiration came from TheZoo.
To use this you will need access to the keys.py file which is not being tracked in github. When I figure out a proper way of handling authentication I will remove the need for the keys.
Authors: Pim Trouerbach, Yashar Hashemi
Example output listed below
███╗ ███╗ █████╗ ██╗ ██╗ ██╗ █████╗ ██████╗ ███████╗██████╗ ██████╗
████╗ ████║██╔══██╗██║ ██║ ██║██╔══██╗██╔══██╗██╔════╝██╔══██╗██╔══██╗
██╔████╔██║███████║██║ ██║ █╗ ██║███████║██████╔╝█████╗ ██║ ██║██████╔╝
██║╚██╔╝██║██╔══██║██║ ██║███╗██║██╔══██║██╔══██╗██╔══╝ ██║ ██║██╔══██╗
██║ ╚═╝ ██║██║ ██║███████╗╚███╔███╔╝██║ ██║██║ ██║███████╗██████╔╝██████╔╝
╚═╝ ╚═╝╚═╝ ╚═╝╚══════╝ ╚══╝╚══╝ ╚═╝ ╚═╝╚═╝ ╚═╝╚══════╝╚═════╝ ╚═════╝
uu$$$$$$$$$$$uu
uu$$$$$$$$$$$$$$$$$uu
u$$$$$$$$$$$$$$$$$$$$$u
u$$$$$$$$$$$$$$$$$$$$$$$u
u$$$$$$$$$$$$$$$$$$$$$$$$$u
u$$$$$$* *$$$* *$$$$$$u
*$$$$* u$u $$$$*
$$$u u$u u$$$
$$$u u$$$u u$$$
*$$$$uu$$$ $$$uu$$$$*
*$$$$$$$* *$$$$$$$*
u$$$$$$$u$$$$$$$u
u$*$*$*$*$*$*$u
uuu $$u$ $ $ $ $u$$ uuu
u$$$$ $$$$$u$u$u$$$ u$$$$
$$$$$uu *$$$$$$$$$* uu$$$$$$
u$$$$$$$$$$$uu ***** uuuu$$$$$$$$$
$$$$***$$$$$$$$$$uuu uu$$$$$$$$$***$$$*
*** **$$$$$$$$$$$uu **$***
uuuu **$$$$$$$$$$uuu
u$$$uuu$$$$$$$$$uu **$$$$$$$$$$$uuu$$$
$$$$$$$$$$**** **$$$$$$$$$$$*
*$$$$$* **$$$$**
$$$* $$$$*
malwares.co $> list-all
+-----+----------+------+------+----------+-----+------------------------------+
| UID | NAME | ARCH | LANG | PLATFORM | VIP | LOCATION |
+-----+----------+------+------+----------+-----+------------------------------+
| 1 | WannaCry | X86 | cpp | windows | 0 | Ransomware.WannaCry.zip |
+-----+----------+------+------+----------+-----+------------------------------+
| 2 | Artemis | x86 | bin | Win32 | 0 | Artemis.zip |
+-----+----------+------+------+----------+-----+------------------------------+
| 3 | Petya | x86 | bin | Win32 | 0 | Ransomware.Petrwrap.zip |
+-----+----------+------+------+----------+-----+------------------------------+
malwares.co $> use WannaCry
malwares.co WannaCry$> info
+-----+----------+------+------+----------+-----+------------------------------+
| UID | NAME | ARCH | LANG | PLATFORM | VIP | LOCATION |
+-----+----------+------+------+----------+-----+------------------------------+
| 1 | WannaCry | X86 | cpp | windows | 0 | Ransomware.WannaCry.zip |
+-----+----------+------+------+----------+-----+------------------------------+
malwares.co WannaCry$> help
+------------+-----------------------------------------------------------------+
| COMMAND | DESCRIPTION |
+------------+-----------------------------------------------------------------+
| help | Displays this help menu |
+------------+-----------------------------------------------------------------+
| use | selects a malware module |
+------------+-----------------------------------------------------------------+
| info | displays information about a malware sample |
+------------+-----------------------------------------------------------------+
| download | downloads the selected malware sample |
+------------+-----------------------------------------------------------------+
| exit | leaves the malwareDB |
+------------+-----------------------------------------------------------------+
| search | allows the user to search for a sample |
+------------+-----------------------------------------------------------------+
| attributes | shows the attribute categories for malware |
+------------+-----------------------------------------------------------------+
| list-all | lists all malware |
+------------+-----------------------------------------------------------------+
| delete | deletes a file |
+------------+-----------------------------------------------------------------+
| add | adds a file |
+------------+-----------------------------------------------------------------+
malwares.co WannaCry$>
