SUMMARY

Malware is part of almost everyone that uses technology, at some point of their life. Us, researchers, must be able to access malware to understand it and, more importantly, to know how to protect ourselves and others from these threats.
As a cybersecurity enthusiast and researcher, as I gained experience, I found and saved some useful websites and repositories that would provide some malware samples, so I decided to share these resources as a list (sorted by malware type) for those who want quick access to malware samples.
Every source listed below contains more than 1 malware.

Disclaimer: Don’t use any of the samples listed on these sources to attack or even ‘troll’ someone (or some entity). Use them at your own risk. Be careful!

LIST OF MALWARE SAMPLES SOURCES

Source Type Registration Needed Resource Link
Net4Sec General Website https://support.clean-mx.de/clean-mx/viruses.php
MalwareTips General Website https://malwaretips.com/forums/malware-samples.104/
Contagio General   Website https://contagiodump.blogspot.com/
VirusShare General Website https://virusshare.com/
MalShare General Website https://malshare.com/
DangerousZone General   Repository https://github.com/malwares/DangerousZone
MalwareBazaar General   Website https://bazaar.abuse.ch/browse/
SoReL-20M General   Dataset https://github.com/sophos/SOREL-20M
ANY.RUN General Website https://app.any.run/submissions/
CAPE Sandbox General Website https://capesandbox.com
Das Malwerk General   Website https://dasmalwerk.eu/
Triage General Website https://tria.ge/reports/public
malware-samples General   Repository https://github.com/InQuest/malware-samples
Malware-Threat-Reports General   Repository https://github.com/MalwareSamples/Malware-Feed/
YOMI General Website https://yomi.yoroi.company/submissions/public
Malware collection General   Repository https://github.com/Red-Laboratory/Malware-collection
Hybrid Analysis Submissions General Website https://www.hybrid-analysis.com/submissions/sandbox/files
VirusSign General Website http://samples.virussign.com/
some-samples General   Repository https://github.com/wolfvan/some-samples
malware-sample-library General   Repository https://github.com/mstfknn/malware-sample-library
VirusBay General Website https://virusbay.io/sample/browse
Hybrid Analysis File Collections General Website https://www.hybrid-analysis.com/file-collections
Malware.lu General   Website https://malware.lu/
APT-Sample General   Repository https://github.com/Cherishao/APT-Sample
Malware Database General   Repository https://github.com/Endermanch/MalwareDatabase
TekDefense General   Website http://www.tekdefense.com/downloads/malware-samples/
Malware and Virus Samples General Website https://www.virussamples.com/
vx-underground General   Drive https://samples.vx-underground.org/
InQuest Labs General Website https://labs.inquest.net/dfi
PolySwarm General Website https://polyswarm.network/
URLhaus General   Website https://urlhaus.abuse.ch/browse/
VirusBay Beta General Website https://beta.virusbay.io/sample/browse
VirusSign Malware List General Website https://www.virussign.com/malwarelist.html
Malware General (+ Source)   Repository https://github.com/RamadhanAmizudin/malware
MalwareSourceCode General (+ Source)   Repository https://github.com/vxunderground/MalwareSourceCode
theZoo General (+ Source)   Repository https://github.com/ytisf/theZoo
Malware Source General (+ Source)   Repository https://github.com/orgs/mwsrc/repositories
Malicious-Software General (+ Source)   Repository https://github.com/mwsrc/Malicious-Software
Javascript Malware Collection General (+ Source)   Repository https://github.com/HynekPetrak/javascript-malware-collection
DeepEnd Research Network   Drive https://www.dropbox.com/sh/wje7mxs4nour40k/AAC3Zpoa5wLNwsGRvKxR9AnVa?dl=0
Packets Network   Repository https://github.com/chrissanders/packets
Malware-Traffic-Analysis.net Network   Website https://malware-traffic-analysis.net
PacketTotal Network   Website https://packettotal.com/malware-archive.html
Contagio Mobile Mobile   Website https://contagiominidump.blogspot.com/
Android Malware Samples Mobile   Repository https://github.com/ashishb/android-malware
Android Malware Samples Mobile   Repository https://github.com/MalwareSamples/Android-Malware-Samples
VirusSign Android List Mobile Website https://www.virussign.com/android.html
MacOS Malware Samples MacOS   Repository https://github.com/MalwareSamples/Macos-Malware-Samples/
Objective-See MacOS   Website https://objective-see.org/malware.html
Linux Malware Samples Linux   Repository https://github.com/MalwareSamples/Linux-Malware-Samples
Crypter Windows Crypter (+ Source)   Repository https://github.com/malwares/Crypter
Remote-Access-Trojan Windows RAT (+ Source)   Repository https://github.com/malwares/Remote-Access-Trojan
Exploitkit Exploit Kit (+ Source)   Repository https://github.com/malwares/ExploitKit
Botnet Botnet (+ Source)   Repository https://github.com/malwares/Botnet
botnets Botnet (+ Source)   Repository https://github.com/maestron/botnets
MalWAReX RAT (+ Source)   Repository https://github.com/0x48piraj/MalWAReX
Ransomware Malware Samples Ransomware   Repository https://github.com/MalwareSamples/Ransomware-Malware-Samples
PhishingKitTracker Phishing   Repository https://github.com/marcoramilli/PhishingKitTracker

LEGEND

Types of sources:

  • General: Contains several types of malware
  • Network: Packet captures from malware traffic
  • Mobile: Malware developed for mobile devices (i.e.: Android; IOS)
  • MacOS: MacOS targeted malware
  • Linux: Linux targeted malware
  • Windows: Windows targeted malware
  • RAT: Remote-Access-Trojan malware
  • Phishing: Source specifically containing phishing content
  • Ransomware: Ransomware malware
  • Botnet: Botnet malware
  • Exploit Kit: Exploit/Malware kits
  • Crypter: Crypter malware
  • (+ Source): Contains malware source code