- Jun 3, 2018
- 119
I have more recently gotten into malware analysis (the last 4-5 months) and I had a few questions about finding and downloading malware samples.
I download samples to analyze the malware, test AV programs and see how the detection ratios are. Then, I send any samples that are malicious that weren't caught to the AV company. That said, I am not using the samples in a malicious way, far more in a beneficial way. However, since I'm sure some bad, illegitimate people go download the same malware samples with the intent of using them to infect others or using them to learn how malware works so they can make their own, is there anything wrong with downloading malware samples? Do governments put malware analysts on "watchlists" or whatever list possibly suspicious people go onto since they are downloading malware?
Since there are a lot of malware analysts on this forum and I know that many do not work professionally for an AV company, I'm guessing that it's entirely fine, but I just wanted to check on that
Thanks!
I download samples to analyze the malware, test AV programs and see how the detection ratios are. Then, I send any samples that are malicious that weren't caught to the AV company. That said, I am not using the samples in a malicious way, far more in a beneficial way. However, since I'm sure some bad, illegitimate people go download the same malware samples with the intent of using them to infect others or using them to learn how malware works so they can make their own, is there anything wrong with downloading malware samples? Do governments put malware analysts on "watchlists" or whatever list possibly suspicious people go onto since they are downloading malware?
Since there are a lot of malware analysts on this forum and I know that many do not work professionally for an AV company, I'm guessing that it's entirely fine, but I just wanted to check on that
Thanks!