{ "id": "7175e666-4006-4459-8cb0-5045961a9415", "created_at": "2026-04-06T00:10:04.353679Z", "updated_at": "2026-04-10T13:12:46.322523Z", "deleted_at": null, "sha1_hash": "d065f2adc363dd47645a0385ee49f24168ff634a", "title": "OnionDuke samples", "llm_title": "", "authors": "", "file_creation_date": "0001-01-01T00:00:00Z", "file_modification_date": "0001-01-01T00:00:00Z", "file_size": 32471, "plain_text": "OnionDuke samples\r\nArchived: 2026-04-05 17:34:58 UTC\r\nhttps://www.virustotal.com/en/file/366affd094cc63e2c19c5d57a6866b487889dab5d1b07c084fff94262d8a390b/analysis/\r\nSHA256: 366affd094cc63e2c19c5d57a6866b487889dab5d1b07c084fff94262d8a390b\r\nFile name: 366affd094cc63e2c19c5d57a6866b487889dab5d1b07c084fff94262d8a390b\r\nDetection ratio: 8 / 52\r\nAnalysis date: 2014-11-15 18:37:30 UTC ( 8 hours, 44 minutes ago ) \r\nAntivirus Result Update\r\nBaidu-International Trojan.Win32.Agent.adYf 20141107\r\nF-Secure Backdoor:W32/OnionDuke.B 20141115\r\nIkarus Trojan.Win32.Agent 20141115\r\nKaspersky Backdoor.Win32.MiniDuke.x 20141115\r\nNorman OnionDuke.A 20141115\r\nSophos Troj/Ransom-ALA 20141115\r\nSymantec Backdoor.Miniduke!gen4 20141115\r\nTencent Win32.Trojan.Agent.Tbsl 20141115\r\nhttps://www.virustotal.com/en/file/366affd094cc63e2c19c5d57a6866b487889dab5d1b07c084fff94262d8a390b/analysis/\r\nSHA256: 366affd094cc63e2c19c5d57a6866b487889dab5d1b07c084fff94262d8a390b\r\nFile name: 366affd094cc63e2c19c5d57a6866b487889dab5d1b07c084fff94262d8a390b\r\nDetection ratio: 8 / 52\r\nAntivirus Result Update\r\nBaidu-International Trojan.Win32.Agent.adYf 20141107\r\nF-Secure Backdoor:W32/OnionDuke.B 20141115\r\nIkarus Trojan.Win32.Agent 20141115\r\nKaspersky Backdoor.Win32.MiniDuke.x 20141115\r\nNorman OnionDuke.A 20141115\r\nhttp://contagiodump.blogspot.com/2014/11/onionduke-samples.html\r\nPage 1 of 3\n\nSophos Troj/Ransom-ALA 20141115\r\nSymantec Backdoor.Miniduke!gen4 20141115\r\nTencent Win32.Trojan.Agent.Tbsl 20141115\r\nhttps://www.virustotal.com/en/file/0102777ec0357655c4313419be3a15c4ca17c4f9cb4a440bfb16195239905ade/analysis/\r\nSHA256: 0102777ec0357655c4313419be3a15c4ca17c4f9cb4a440bfb16195239905ade\r\nFile name: 0102777ec0357655c4313419be3a15c4ca17c4f9cb4a440bfb16195239905ade\r\nDetection ratio: 19 / 55\r\nAnalysis date: 2014-11-15 18:37:25 UTC ( 8 hours, 47 minutes ago ) \r\nAntivirus Result Update\r\nAVware Trojan.Win32.Generic!BT 20141115\r\nAd-Aware Backdoor.Generic.933739 20141115\r\nBaidu-International Trojan.Win32.OnionDuke.BA 20141107\r\nBitDefender Backdoor.Generic.933739 20141115\r\nESET-NOD32 a variant of Win32/OnionDuke.A 20141115\r\nEmsisoft Backdoor.Generic.933739 (B) 20141115\r\nF-Secure Backdoor:W32/OnionDuke.A 20141115\r\nGData Backdoor.Generic.933739 20141115\r\nIkarus Trojan.Win32.Onionduke 20141115\r\nKaspersky Backdoor.Win32.MiniDuke.x 20141115\r\nMcAfee RDN/Generic BackDoor!zw 20141115\r\nMcAfee-GW-Edition BehavesLike.Win32.Trojan.fh 20141114\r\nMicroWorld-eScan Backdoor.Generic.933739 20141115\r\nNorman OnionDuke.B 20141115\r\nSophos Troj/Ransom-ANU 20141115\r\nSymantec Backdoor.Miniduke!gen4 20141115\r\nTrendMicro BKDR_ONIONDUKE.AD 20141115\r\nTrendMicro-HouseCall BKDR_ONIONDUKE.AD 20141115\r\nhttp://contagiodump.blogspot.com/2014/11/onionduke-samples.html\r\nPage 2 of 3\n\nVIPRE Trojan.Win32.Generic!BT 20141115\r\nSource: http://contagiodump.blogspot.com/2014/11/onionduke-samples.html\r\nhttp://contagiodump.blogspot.com/2014/11/onionduke-samples.html\r\nPage 3 of 3", "extraction_quality": 1, "language": "EN", "sources": [ "ETDA", "Malpedia" ], "origins": [ "web" ], "references": [ "http://contagiodump.blogspot.com/2014/11/onionduke-samples.html" ], "report_names": [ "onionduke-samples.html" ], "threat_actors": [], "ts_created_at": 1775434204, "ts_updated_at": 1775826766, "ts_creation_date": 0, "ts_modification_date": 0, "files": { "pdf": "https://archive.orkl.eu/d065f2adc363dd47645a0385ee49f24168ff634a.pdf", "text": "https://archive.orkl.eu/d065f2adc363dd47645a0385ee49f24168ff634a.txt", "img": "https://archive.orkl.eu/d065f2adc363dd47645a0385ee49f24168ff634a.jpg" } }