Resources for testing capa

Data to test capa's code and rules.

Naming conventions

We use the following conventions to organize the capa test data.

File name
- MD5 or SHA256 hash, all lower case, e.g.
  - d41d8cd98f00b204e9800998ecf8427e
  - e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
- Descriptive name, e.g.
  - kernel32
  - Practical Malware Analysis Lab 01-01
File extension
- .exe_
- .dll_
- .sys_
- .elf_
- .raw32 (32-bit shellcode)
- .raw64 (64-bit shellcode)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Resources for testing capa

Naming conventions

About

Releases

Packages

Languages

Name		Name	Last commit message	Last commit date
Latest commit History 311 Commits
.github		.github
dotnet		dotnet
sigs		sigs
.gitattributes		.gitattributes
.gitignore		.gitignore
.gitmodules		.gitmodules
02179f3ba93663074740b5c0d283bae2.exe_		02179f3ba93663074740b5c0d283bae2.exe_
021f49678cd633dc8cf99c61b3af3dda.exe_		021f49678cd633dc8cf99c61b3af3dda.exe_
034b7231a49387604e81a5a5d2fe7e08f6982c418a28b719d2faace3c312ebb5.exe_		034b7231a49387604e81a5a5d2fe7e08f6982c418a28b719d2faace3c312ebb5.exe_
03b236b23b1ec37c663527c1f53af3fe.dll_		03b236b23b1ec37c663527c1f53af3fe.dll_
055da8e6ccfe5a9380231ea04b850e18.elf_		055da8e6ccfe5a9380231ea04b850e18.elf_
0596c4ea5aa8def47f22c85d75aaca95.exe_		0596c4ea5aa8def47f22c85d75aaca95.exe_
068a76d4823419b376d418cf03215d5c.exe_		068a76d4823419b376d418cf03215d5c.exe_
071f2d1c4c2201ee95ffe2aa965000f5f615a11a12d345e33b9fb060e5597740.dll_		071f2d1c4c2201ee95ffe2aa965000f5f615a11a12d345e33b9fb060e5597740.dll_
0731679c5f99e8ee65d8b29a3cabfc6b.exe_		0731679c5f99e8ee65d8b29a3cabfc6b.exe_
0761142efbda6c4b1e801223de723578.dll_		0761142efbda6c4b1e801223de723578.dll_
0796f1c1ea0a142fc1eb7109a44c86cb.exe_		0796f1c1ea0a142fc1eb7109a44c86cb.exe_
07f7846bbcda782e5639292ad93907eb.exe_		07f7846bbcda782e5639292ad93907eb.exe_
08ac667c65d36d6542917655571e61c8.exe_		08ac667c65d36d6542917655571e61c8.exe_
0a0882b8da225406cc838991b5f67d11.exe_		0a0882b8da225406cc838991b5f67d11.exe_
0cd2b334aede270b14868db28211cde3.exe_		0cd2b334aede270b14868db28211cde3.exe_
112f9f0e8d349858a80dd8c14190e620.exe_		112f9f0e8d349858a80dd8c14190e620.exe_
1195d0d18be9362fb8dd9e1738404c9d.exe_		1195d0d18be9362fb8dd9e1738404c9d.exe_
138c71e94961fe9e31cec5dfba62a639.exe_		138c71e94961fe9e31cec5dfba62a639.exe_
152d4c9f63efb332ccb134c6953c0104.exe_		152d4c9f63efb332ccb134c6953c0104.exe_
17264e3126a97c319a6a0c61e6da951e.dll_		17264e3126a97c319a6a0c61e6da951e.dll_
1d8fd13c890060464019c0f07b928b1a.exe_		1d8fd13c890060464019c0f07b928b1a.exe_
1e2791877da02d49998dea79515a89ca.dll_		1e2791877da02d49998dea79515a89ca.dll_
1e609dffd12a59ea5d5c9b3055939b1f.exe_		1e609dffd12a59ea5d5c9b3055939b1f.exe_
203bd48bcc18434314ad60f4c8bc21e3d3422eb0624b22b827410f9bc63b4082.exe_		203bd48bcc18434314ad60f4c8bc21e3d3422eb0624b22b827410f9bc63b4082.exe_
2055994ff75b4309eee3a49c5749d306.exe_		2055994ff75b4309eee3a49c5749d306.exe_
22d0a2e4c9c2163b2bf5f0e41a2e1762.exe_		22d0a2e4c9c2163b2bf5f0e41a2e1762.exe_
232b0a8546035d9017fadf68398826edb0a1e055566bc1d356d6c9fdf1d7e485.dll_		232b0a8546035d9017fadf68398826edb0a1e055566bc1d356d6c9fdf1d7e485.dll_
23e19068ecba68d4396bc097e0278b8eca7e7dcaa4978e34d683231ad2219ae3.exe_		23e19068ecba68d4396bc097e0278b8eca7e7dcaa4978e34d683231ad2219ae3.exe_
276f691a3df25481f59d79781799e35f.exe_		276f691a3df25481f59d79781799e35f.exe_
2826b762b9c268601a44974ef469a671b441e798a6c3cbb40070450c6c030ba2.exe_		2826b762b9c268601a44974ef469a671b441e798a6c3cbb40070450c6c030ba2.exe_
294b8db1f2702b60fb2e42fdc50c2cee6a5046112da9a5703a548a4fa50477bc.elf_		294b8db1f2702b60fb2e42fdc50c2cee6a5046112da9a5703a548a4fa50477bc.elf_
2a584dfc657348d164274a12bff9bbd8.exe_		2a584dfc657348d164274a12bff9bbd8.exe_
2a7429d60040465f9bd27bbae2beef88.exe_		2a7429d60040465f9bd27bbae2beef88.exe_
2b8bec5bcb1777eaa155d832f7afc797.exe_		2b8bec5bcb1777eaa155d832f7afc797.exe_
2d3edc218a90f03089cc01715a9f047f.exe_		2d3edc218a90f03089cc01715a9f047f.exe_
2ebadd04f0ada89c36c1409b6e96423a68dd77b513db8db3da203c36d3753e5f.exe_		2ebadd04f0ada89c36c1409b6e96423a68dd77b513db8db3da203c36d3753e5f.exe_
2f43138aa75fb12ac482b486cbc98569.dll_		2f43138aa75fb12ac482b486cbc98569.dll_
2f7f5fb5de175e770d7eae87666f9831.elf_		2f7f5fb5de175e770d7eae87666f9831.elf_
2fd45662e3d0ec0077ea2fa66b6378f0.exe_		2fd45662e3d0ec0077ea2fa66b6378f0.exe_
31600ad0d1a7ea615690df111ae36c73.exe_		31600ad0d1a7ea615690df111ae36c73.exe_
31bd8dd48ac0de3d4da340bf29f4d280.exe_		31bd8dd48ac0de3d4da340bf29f4d280.exe_
31cee4f66cf3b537e3d2d37a71f339f4.exe_		31cee4f66cf3b537e3d2d37a71f339f4.exe_
321338196a46b600ea330fc5d98d0699.exe_		321338196a46b600ea330fc5d98d0699.exe_
3265b2b0afc6d2ad0bdd55af8edb9b37.exe_		3265b2b0afc6d2ad0bdd55af8edb9b37.exe_
32bb43f8847ecf158c1e96891ed9a28c.dll_		32bb43f8847ecf158c1e96891ed9a28c.dll_
34404a3fb9804977c6ab86cb991fb130.exe_		34404a3fb9804977c6ab86cb991fb130.exe_
3446b3889a52d81119d8c482a2a282b9.exe_		3446b3889a52d81119d8c482a2a282b9.exe_
3583f7f97ab207be7ab2ec0a507e2481.dll_		3583f7f97ab207be7ab2ec0a507e2481.dll_
378ecc1b2e60129c9f06bb6bb8042f2b95feca5f526a4c26a5c39707807fa259.exe_		378ecc1b2e60129c9f06bb6bb8042f2b95feca5f526a4c26a5c39707807fa259.exe_
3808f21e56dede99bc914d90aeabe47a.exe_		3808f21e56dede99bc914d90aeabe47a.exe_
395eb0ddd99d2c9e37b6d0b73485ee9c.exe_		395eb0ddd99d2c9e37b6d0b73485ee9c.exe_
39c05b15e9834ac93f206bc114d0a00c357c888db567ba8f5345da0529cbed41.dll_		39c05b15e9834ac93f206bc114d0a00c357c888db567ba8f5345da0529cbed41.dll_
3aa7ee4d67f562933bc998f352b1f319.dll_		3aa7ee4d67f562933bc998f352b1f319.dll_
3b13b6f1d7cd14dc4a097a12e2e505c0a4cff495262261e2bfc991df238b9b04.dll_		3b13b6f1d7cd14dc4a097a12e2e505c0a4cff495262261e2bfc991df238b9b04.dll_
3ca359f5085bb96a7950d4735b089ffe.exe_		3ca359f5085bb96a7950d4735b089ffe.exe_
3d0d79c4715e5b6dd2f8704e4878d57646d5a92e1116aec2ef81a5679ba45cd8.exe_		3d0d79c4715e5b6dd2f8704e4878d57646d5a92e1116aec2ef81a5679ba45cd8.exe_
3d760b6fc84571c928bed835863fc302.exe_		3d760b6fc84571c928bed835863fc302.exe_
3f3bbcf8fd90bdcdcdc5494314ed4225.exe_		3f3bbcf8fd90bdcdcdc5494314ed4225.exe_
3fdfb2d522e7deecaaaf2f87420f7e75.exe_		3fdfb2d522e7deecaaaf2f87420f7e75.exe_
4122acca2f9ea98fc3f3ad040688e4ce.exe_		4122acca2f9ea98fc3f3ad040688e4ce.exe_
42e81cc1145ba3c1936a6cf9b8da0ccd.dll_		42e81cc1145ba3c1936a6cf9b8da0ccd.dll_
464ef2ca59782ce697bc329713698ccc.exe_		464ef2ca59782ce697bc329713698ccc.exe_
477743976643213d96b66ed5041a3b12.exe_		477743976643213d96b66ed5041a3b12.exe_
48c7ad2d9d482cb11898f2719638ceed.exe_		48c7ad2d9d482cb11898f2719638ceed.exe_
493167e85e45363d09495d0841c30648.sys_		493167e85e45363d09495d0841c30648.sys_
499c2a85f6e8142c3f48d4251c9c7cd6.raw32		499c2a85f6e8142c3f48d4251c9c7cd6.raw32
49a34cfbeed733c24392c9217ef46bb6.exe_		49a34cfbeed733c24392c9217ef46bb6.exe_
4b796a64abe7675254cd6f8a6c9b83949673158840a4a04c36e7c9068ec14cc8.dll_		4b796a64abe7675254cd6f8a6c9b83949673158840a4a04c36e7c9068ec14cc8.dll_
4bdd67ff852c221112337fecd0681eac.exe_		4bdd67ff852c221112337fecd0681eac.exe_
4e9c546a54e40d0da89bb4616dd7f8c4.exe_		4e9c546a54e40d0da89bb4616dd7f8c4.exe_
4f11bdb380dafa2518053c6d20147a05.exe_		4f11bdb380dafa2518053c6d20147a05.exe_
50d5ee1ce2ca5e30c6b1019ee64eeec2.exe_		50d5ee1ce2ca5e30c6b1019ee64eeec2.exe_
54ac78733552a62d1d05ea4ba3fc604bb49fe000d7fc948da45335b726e64d75.dll_		54ac78733552a62d1d05ea4ba3fc604bb49fe000d7fc948da45335b726e64d75.dll_
55d77ab16377a8a314982f723fcc6fae.exe_		55d77ab16377a8a314982f723fcc6fae.exe_
563653399b82cd443f120eceff836ea3678d4cf11d9b351bb737573c2d856299.exe_		563653399b82cd443f120eceff836ea3678d4cf11d9b351bb737573c2d856299.exe_
5789181cba467fa940cdce809b88b9bf7e0e9d4e079e32a68d2b911a8cc47da9.exe_		5789181cba467fa940cdce809b88b9bf7e0e9d4e079e32a68d2b911a8cc47da9.exe_
580c37831fe98a254eb6c61c692c70d8.exe_		580c37831fe98a254eb6c61c692c70d8.exe_
58adc2e97fbee01b71073ccd7ff1b9a4.exe_		58adc2e97fbee01b71073ccd7ff1b9a4.exe_
5a2f620f29ca2f44fc22df67b674198f.exe_		5a2f620f29ca2f44fc22df67b674198f.exe_
5b3968b47eb16a1cb88525e3b565eab1.exe_		5b3968b47eb16a1cb88525e3b565eab1.exe_
5d7c34b6854d48d3da4f96b71550a221.exe_		5d7c34b6854d48d3da4f96b71550a221.exe_
5dd0b130d5c3d40c69e3972f39fd7d62.exe_		5dd0b130d5c3d40c69e3972f39fd7d62.exe_
5e6764534b3a1e4d3abacc4810b6985d.exe_		5e6764534b3a1e4d3abacc4810b6985d.exe_
5f66b82558ca92e54e77f216ef4c066c.exe_		5f66b82558ca92e54e77f216ef4c066c.exe_
5fbbfeed28b258c42e0cfeb16718b31c.exe_		5fbbfeed28b258c42e0cfeb16718b31c.exe_
638dcc3d37b3a574044233c9637d7288.exe_		638dcc3d37b3a574044233c9637d7288.exe_
648fc498110b11b4313a47a776e6ba40.exe_		648fc498110b11b4313a47a776e6ba40.exe_
64d9f7d96b99467f36e22fada623c3bb.dll_		64d9f7d96b99467f36e22fada623c3bb.dll_
64e9f62840db2f65fc717cfaf99081f9.dll_		64e9f62840db2f65fc717cfaf99081f9.dll_
658b0502b53f718bd0611a638dfd5969.exe_		658b0502b53f718bd0611a638dfd5969.exe_
66602b5fab602cb4e6f754748d249542.exe_		66602b5fab602cb4e6f754748d249542.exe_
67f8302a2fd28d15f62d6d20d748bfe350334e5353cbdef112bd1f8231b5599d.exe_		67f8302a2fd28d15f62d6d20d748bfe350334e5353cbdef112bd1f8231b5599d.exe_
6a352c3e55e8ae5ed39dc1be7fb964b1.dll_		6a352c3e55e8ae5ed39dc1be7fb964b1.dll_
6b25f1e754ef486bbb28a66d46bababe.exe_		6b25f1e754ef486bbb28a66d46bababe.exe_

adamstorek/capa-testfiles

Folders and files

Latest commit

History

Repository files navigation

Resources for testing capa

Naming conventions

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages