To request access this dataset you will need to login with an IMPACT account. Accounts are free. If you don't have one please register.
GT Malware API Call Daily Feed
This dataset contains a daily feed of structured host-level API call information produced by the Georgia Tech Information Security Center's malware analysis system. Metadata included with the feed associates each API call log with a specific suspect Windows executable, which is run in a sterile, isolated environment, with controlled access to the Internet, for a short period of time. Each sample's interactions with the operating system is recorded, analyzed, and made available as structured plaintext.
This feed is organized as a set of archives that each correspond to a single day of sample processing-based API call data. Each archive decompresses to a top-level folder containing files that are named according to the SHA256 of the sample that generated them.
This dataset is the subject of ongoing measurement and data collection. As such the data is continuously growing. Researchers who are granted access will be able to download updates for a period of one year after their request.
Size is growing as more data is collected
cybercrime, metadata, application programming interface, technological universities in the united states, business intelligence, universities and colleges in atlanta, malware analysis, 1457, security and maintenance, georgia tech, api calls, computer architecture, georgia institute of technology, universities and colleges in georgia, crime, malware, people associated with computer security, operating system, technical communication, analysis, engineering universities and colleges in georgia, atlantic coast conference schools, gt malware api call daily feed, host level, threat intelligence, threat, exploit, microsoft windows security technology, university system of georgia
cybercrime, metadata, malware, analysis, threat intelligence, host-level, api calls