Malware.lu is a repository of malware and technical analyses to security researchers.

Malware.lu provides an expert team in malwares analyses and incident response for private and government entities.

Disclaimer:

Malware.lu contains malware samples. Malware.lu will not be held responsible for any damage brought to your equipment, including virus infection, caused by accessing, using or displaying this website or by downloading any information. You are accessing this website at your own risk.

If you would like to download or submit samples, you need to have an account. To request an account, please send an email to with a username and a short explanation about "why you want an account".

In collaboration with itrust consulting located in Luxembourg, we offer services to private and government entities.

Our expertise allow us to provide a high quality of work. We can provide malwares analysis (static/reverse engineer & dynamic), reverse engineering and incident response. We do not simply use standard tools but each analysis is made rigorously and semi-manually
We also use a wide discretion.

Malware analyses and reverse engineering
We have a deep expertise in malware analysis and reverse engineering. We can provide a quality service to company insterested to outsource their analyses.
To show the quality of our work, we provide a public report to our potential customers. You can download the report here and the archive with the source code and samples analyzed in the report here.
For more information or to receive a quote please contact us at .

Incident response capability
In case of incident, the malware.lu team is able to take in charge the complete managment of a incident or being in technical support of the team already in charge of the incident. We have worked with many customers and we have gained considerable expertise in the management of this kind of incident. More information here.
For more information or to receive a quote please contact us at .

Training
We offer training sessions to help companies and security researchers to adequately address safety malware analysis. For each part of the training, we provide samples form our database in order to test the techniques in real conditions.
The training program is listed below:

Malware analysis training
- identification of the malware
  - malware presentation & behaviour
    - backdoors
    - stealers
    - Persistence techniques
  - artefacts collect
    - collecting & analysing the filesystem
    - collecting & analysing the registry
    - collecting & analysing the event log
  - memory dump analysis
    - how to make a dump
    - how to analyse a dump with volatility

- malware analysis
  - basic techniques
  - dynamic analysis
    - how to use sandbox (cuckoo)
    - how to use a debugger (OllyDBG)
    - how to monitor a malware
    - obfuscation techniques
    - custom techniques
  - static analysis
     - IDA Pro presentation
     - reverse engineering techniques
  - packer
    - how to unpack a packer on the stack
    - how to unpack a packer on the heap
  - malware signature
     - yara
     - clamav
     - network signature

- Anti-analysis techniques
     - anti-reverse
     - anti-debug
     - anti-VM

For more information or to receive a quote please contact us at .