{"id":5148,"date":"2023-06-15T09:28:54","date_gmt":"2023-06-15T09:28:54","guid":{"rendered":"\/cybersecurity-blog\/?p=5148"},"modified":"2023-06-15T09:47:08","modified_gmt":"2023-06-15T09:47:08","slug":"help-us-find-new-malware","status":"publish","type":"post","link":"https:\/\/any.run\/cybersecurity-blog\/help-us-find-new-malware\/","title":{"rendered":"Help Us Find New Malware by Submitting Threats and Samples\u00a0"},"content":{"rendered":"\n

At ANY.RUN, our analysts work constantly to identify new threats and create detection rules. But with over 6000 new malware released<\/a> every month, it is a battle we can only win together. Thankfully, our community members often spot new samples and send them to us for further analysis. <\/strong>And <\/strong>you can help too!\u00a0<\/p>\n\n\n\n

Want to help us make ANY.RUN detection better? <\/h2>\n\n\n\n

Think you have found a new malware sample or version? If yes, we’d be really thankful if you could send us that suspicious file, or link <\/strong>as well as any notes you believe are important. <\/p>\n\n\n\n

To make this easy, we’ve set up a new email address for you to send those samples: <\/p>\n\n\n\n

SEND US NEW SAMPLES<\/strong>

newvirus@any.run<\/a>\u00a0<\/strong><\/p><\/blockquote><\/figure>\n\n\n\n

<\/p>\n\n\n\n

<\/p>\n\n\n\n

Your Submissions Help Make a Difference <\/h2>\n\n\n\n

Take a recent incident where a user shared an <\/strong>interesting sample<\/strong><\/a> with us<\/strong>. <\/p>\n\n\n\n

This turned out to be a stealer \u2014 it gathered system information, browser history, and captured screenshots. All the harvested data was then sent back to its Command and Control (C2) server. <\/p>\n\n\n\n

We decided to analyze the sample and quickly identified it as Blackguard<\/strong>. Interestingly, it self-declared its name and version in the Information.txt file, which also held various details about the compromised system. <\/p>\n\n\n\n

Based on this insight, we developed new YARA rules <\/strong>to identify the Blackguard family in future analyses. We also created a malware config extractor<\/strong>. <\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

This means that even if Blackguard doesn’t fully execute in upcoming tasks \u2014 for instance, if its C2 is down during the analysis \u2014 ANY.RUN<\/strong><\/a> users<\/strong> will always have comprehensive details about this family<\/strong>. The config data will reveal key facts, such as the C2’s IP address, and specify which directories the malware targets for information theft. <\/p>\n\n\n\n

Thank you for your help. Every little bit counts in the fight against cybercrime!<\/strong> <\/p>\n","protected":false},"excerpt":{"rendered":"

At ANY.RUN, our analysts work constantly to identify new threats and create detection rules. But with over 6000 new malware released every month, it is a battle we can only win together. Thankfully, our community members often spot new samples and send them to us for further analysis. And you can help too!\u00a0 Want to […]<\/p>\n","protected":false},"author":2,"featured_media":5149,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[9],"tags":[34],"class_list":["post-5148","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-service-updates","tag-malware-analysis"],"acf":[],"yoast_head":"\nHelp Us Find New Malware by Submitting Threats and Samples\u00a0<\/title>\n<meta name=\"description\" content=\"If you find new malware, send it at newvirus@any.run. Help us improve ANY.RUN detection by submitting threats and samples.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/any.run\/cybersecurity-blog\/help-us-find-new-malware\/\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"ANY.RUN\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/any.run\/cybersecurity-blog\/help-us-find-new-malware\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/any.run\/cybersecurity-blog\/help-us-find-new-malware\/\"},\"author\":{\"name\":\"ANY.RUN\",\"@id\":\"https:\/\/any.run\/\"},\"headline\":\"Help Us Find New Malware by Submitting Threats and Samples\u00a0\",\"datePublished\":\"2023-06-15T09:28:54+00:00\",\"dateModified\":\"2023-06-15T09:47:08+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/any.run\/cybersecurity-blog\/help-us-find-new-malware\/\"},\"wordCount\":322,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/any.run\/\"},\"keywords\":[\"malware analysis\"],\"articleSection\":[\"Service Updates\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/any.run\/cybersecurity-blog\/help-us-find-new-malware\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/any.run\/cybersecurity-blog\/help-us-find-new-malware\/\",\"url\":\"https:\/\/any.run\/cybersecurity-blog\/help-us-find-new-malware\/\",\"name\":\"Help Us Find New Malware by Submitting Threats and Samples\u00a0\",\"isPartOf\":{\"@id\":\"https:\/\/any.run\/\"},\"datePublished\":\"2023-06-15T09:28:54+00:00\",\"dateModified\":\"2023-06-15T09:47:08+00:00\",\"description\":\"If you find new malware, send it at newvirus@any.run. Help us improve ANY.RUN detection by submitting threats and samples.\",\"breadcrumb\":{\"@id\":\"https:\/\/any.run\/cybersecurity-blog\/help-us-find-new-malware\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/any.run\/cybersecurity-blog\/help-us-find-new-malware\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/any.run\/cybersecurity-blog\/help-us-find-new-malware\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/any.run\/cybersecurity-blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Service Updates\",\"item\":\"https:\/\/any.run\/cybersecurity-blog\/category\/service-updates\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Help Us Find New Malware by Submitting Threats and Samples\u00a0\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/any.run\/\",\"url\":\"https:\/\/any.run\/\",\"name\":\"ANY.RUN's Cybersecurity Blog\",\"description\":\"Cybersecurity Blog covers topics for experienced professionals as well as for those new to it.\",\"publisher\":{\"@id\":\"https:\/\/any.run\/\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/any.run\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/any.run\/\",\"name\":\"ANY.RUN\",\"url\":\"https:\/\/any.run\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/any.run\/\",\"url\":\"https:\/\/any.run\/cybersecurity-blog\/wp-content\/uploads\/2020\/08\/ANYRUN-Icon.svg\",\"contentUrl\":\"https:\/\/any.run\/cybersecurity-blog\/wp-content\/uploads\/2020\/08\/ANYRUN-Icon.svg\",\"width\":1,\"height\":1,\"caption\":\"ANY.RUN\"},\"image\":{\"@id\":\"https:\/\/any.run\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/www.any.run\/\",\"https:\/\/twitter.com\/anyrun_app\",\"https:\/\/www.linkedin.com\/company\/30692044\",\"https:\/\/www.youtube.com\/channel\/UCOgCPho7lzmH7m6fPNlukrQ\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/any.run\/\",\"name\":\"ANY.RUN\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/any.run\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/c4ce3a6c672056b4a8cd6b0110782215?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/c4ce3a6c672056b4a8cd6b0110782215?s=96&d=mm&r=g\",\"caption\":\"ANY.RUN\"},\"url\":\"https:\/\/any.run\/cybersecurity-blog\/author\/a-bespalova\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Help Us Find New Malware by Submitting Threats and Samples\u00a0","description":"If you find new malware, send it at newvirus@any.run. Help us improve ANY.RUN detection by submitting threats and samples.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/any.run\/cybersecurity-blog\/help-us-find-new-malware\/","twitter_misc":{"Written by":"ANY.RUN","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/any.run\/cybersecurity-blog\/help-us-find-new-malware\/#article","isPartOf":{"@id":"https:\/\/any.run\/cybersecurity-blog\/help-us-find-new-malware\/"},"author":{"name":"ANY.RUN","@id":"https:\/\/any.run\/"},"headline":"Help Us Find New Malware by Submitting Threats and Samples\u00a0","datePublished":"2023-06-15T09:28:54+00:00","dateModified":"2023-06-15T09:47:08+00:00","mainEntityOfPage":{"@id":"https:\/\/any.run\/cybersecurity-blog\/help-us-find-new-malware\/"},"wordCount":322,"commentCount":0,"publisher":{"@id":"https:\/\/any.run\/"},"keywords":["malware analysis"],"articleSection":["Service Updates"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/any.run\/cybersecurity-blog\/help-us-find-new-malware\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/any.run\/cybersecurity-blog\/help-us-find-new-malware\/","url":"https:\/\/any.run\/cybersecurity-blog\/help-us-find-new-malware\/","name":"Help Us Find New Malware by Submitting Threats and Samples\u00a0","isPartOf":{"@id":"https:\/\/any.run\/"},"datePublished":"2023-06-15T09:28:54+00:00","dateModified":"2023-06-15T09:47:08+00:00","description":"If you find new malware, send it at newvirus@any.run. Help us improve ANY.RUN detection by submitting threats and samples.","breadcrumb":{"@id":"https:\/\/any.run\/cybersecurity-blog\/help-us-find-new-malware\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/any.run\/cybersecurity-blog\/help-us-find-new-malware\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/any.run\/cybersecurity-blog\/help-us-find-new-malware\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/any.run\/cybersecurity-blog\/"},{"@type":"ListItem","position":2,"name":"Service Updates","item":"https:\/\/any.run\/cybersecurity-blog\/category\/service-updates\/"},{"@type":"ListItem","position":3,"name":"Help Us Find New Malware by Submitting Threats and Samples\u00a0"}]},{"@type":"WebSite","@id":"https:\/\/any.run\/","url":"https:\/\/any.run\/","name":"ANY.RUN's Cybersecurity Blog","description":"Cybersecurity Blog covers topics for experienced professionals as well as for those new to it.","publisher":{"@id":"https:\/\/any.run\/"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/any.run\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/any.run\/","name":"ANY.RUN","url":"https:\/\/any.run\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/any.run\/","url":"https:\/\/any.run\/cybersecurity-blog\/wp-content\/uploads\/2020\/08\/ANYRUN-Icon.svg","contentUrl":"https:\/\/any.run\/cybersecurity-blog\/wp-content\/uploads\/2020\/08\/ANYRUN-Icon.svg","width":1,"height":1,"caption":"ANY.RUN"},"image":{"@id":"https:\/\/any.run\/"},"sameAs":["https:\/\/www.facebook.com\/www.any.run\/","https:\/\/twitter.com\/anyrun_app","https:\/\/www.linkedin.com\/company\/30692044","https:\/\/www.youtube.com\/channel\/UCOgCPho7lzmH7m6fPNlukrQ"]},{"@type":"Person","@id":"https:\/\/any.run\/","name":"ANY.RUN","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/any.run\/","url":"https:\/\/secure.gravatar.com\/avatar\/c4ce3a6c672056b4a8cd6b0110782215?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/c4ce3a6c672056b4a8cd6b0110782215?s=96&d=mm&r=g","caption":"ANY.RUN"},"url":"https:\/\/any.run\/cybersecurity-blog\/author\/a-bespalova\/"}]}},"_links":{"self":[{"href":"https:\/\/any.run\/cybersecurity-blog\/wp-json\/wp\/v2\/posts\/5148"}],"collection":[{"href":"https:\/\/any.run\/cybersecurity-blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/any.run\/cybersecurity-blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/any.run\/cybersecurity-blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/any.run\/cybersecurity-blog\/wp-json\/wp\/v2\/comments?post=5148"}],"version-history":[{"count":7,"href":"https:\/\/any.run\/cybersecurity-blog\/wp-json\/wp\/v2\/posts\/5148\/revisions"}],"predecessor-version":[{"id":5169,"href":"https:\/\/any.run\/cybersecurity-blog\/wp-json\/wp\/v2\/posts\/5148\/revisions\/5169"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/any.run\/cybersecurity-blog\/wp-json\/wp\/v2\/media\/5149"}],"wp:attachment":[{"href":"https:\/\/any.run\/cybersecurity-blog\/wp-json\/wp\/v2\/media?parent=5148"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/any.run\/cybersecurity-blog\/wp-json\/wp\/v2\/categories?post=5148"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/any.run\/cybersecurity-blog\/wp-json\/wp\/v2\/tags?post=5148"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}