This is a non-IMPACT record, meaning that access to the data is not controlled by IMPACT. For access, see the directions below.

This Resource is offered and provided outside of the IMPACT mediation framework. IMPACT and the IMPACT Coordination Council/Blackfire Technology, Inc. expressly disclaim all conditions, representations and warranties including but not limited to Resource availability, quality, accuracy, non-infringement, and non-interference. All Resource information and access is controlled by entities and under terms that are external to the IMPACT legal framework.


External Tool
External Data Source
56 (lowest rank is 56)

Category & Restrictions

cyber attack, computer worms, malware


A repository of LIVE malware for your own joy and pleasure. theZoo's objective is to offer a fast and easy way of retrieving malware samples and source code in an organized fashion in hopes of promoting malware research.

theZoo is a project created to make the possibility of malware analysis open and available to the public. Since we have found out that almost all versions of malware are very hard to come by in a way which will allow analysis, we have decided to gather all of them for you in an accessible and safe way.theZoo was born by Yuval tisf Nativ and is now maintained by Shahak Shalev.

Disclaimer: theZoo s purpose is to allow the study of malware and enable people who are interested in malware analysis (or maybe even as a part of their job) to have access to live malware, analyse the ways they operate, and maybe even enable advanced and savvy people to block specific malware within their own environment.

Please remember that these are live and dangerous malware! They come encrypted and locked for a reason! Do NOT run them unless you are absolutely sure of what you are doing! They are to be used only for educational purposes (and we mean that!) !!!

We recommend running them in a VM which has no internet connection (or an internal virtual network if you must) and without guest additions or any equivalents. Some of them are worms and will automatically try to spread out. Running them unconstrained means that you will infect yourself or others with vicious and dangerous malware!!!

Additional Details

thezoo, 1230, source, external data source, corporation, external, inferlink, inferlink corporation, malware, live, easy, joy, samples, repository, retrieving, code, hopes, promoting, objective, organized, offer, fast, pleasure, fashion, analysis, people, enable, dangerous, running, infect, public, equivalents, remember, automatically, recommend, network, encrypted, hard, shalev, born, yuval, spread, unconstrained, environment, additions, specific, disclaimer, possibility, purpose, access, gather, savvy, created, reason, vicious, educational, locked, maintained, connection, block, decided, project, analyse, advanced, operate, versions, other, virtual, internal, study, shahak, accessible, tisf, job, guest, safe, vm, absolutely, purposes, nativ, worms