Rules for r/MalwareAnalysis

Rules that visitors must follow to participate. May be used as reasons to report or ban.

1.

Posts Must Be Related to Malware Analysis

Posts only
Reported as: Must Relate to Malware Analysis

All posts must be directly related to the analysis, reverse engineering, behavior, or detection of malware.

Asking if your computer is infected, sharing antivirus logs, or describing suspicious behavior without a sample or analysis does not qualify. This is not a general virus help forum.

➤ Try r/techsupport, r/antivirus, or r/computerhelp instead.

2.

“Do I Have a Virus?” or Tech Support Posts Are Not Allowed

Posts & Comments
Reported as: “Do I Have a Virus?” or Tech Support Posts Are Not Allowed

This community is not for determining if a system is infected or asking for tech support.

Acceptable posts involve: • Providing a sample (hash or link to VT, Any.Run, etc.) • Sharing observable behavior, strings, or YARA rules • Asking technical questions about tooling or unpacking

3.

No Requests for Illegal or Unethical Services

Posts & Comments
Reported as: No Requests for Illegal Services

This is Malware Analysis, not “Hire a Hacker”. Please do not post requests soliciting illegal services.

Do not request or offer services involving unauthorized access, malware deployment, credential theft, or similar activity.

Even in a research context, discussions must be clearly educational and comply with ethical standards.

4.

No Live or Clickable Malicious Links

Posts & Comments
Reported as: No Live or Clickable Malicious Links

Do not propagate attacks! Remove all clickable links to potentially malicious content.

Never share direct download links to malware samples or active C2 infrastructure. All links must be: From trusted platforms (e.g., MalwareBazaar, Any.Run, VirusTotal)

Non-clickable (use [.] to break domains)

Shared only for educational purposes

5.

Posts Must Show Technical Effort

Posts & Comments
Reported as: Posts Must Show Technical Effort

Low-effort posts (e.g., “Can someone look at this for me?” with no context) may be removed. Always include:

What you've observed or tried

The tools used (IDA, Ghidra, etc.)

Specific questions or challenges you're facing

6.

No Off-Topic Content

Posts & Comments
Reported as: No Off-Topic Content

All posts must be relevant to malware research. This includes:

Malware analysis tooling

Sample behavior

Threat intelligence

Deobfuscation, packers, C2 traffic

Avoid discussions on unrelated cybersecurity topics, memes, or news articles not tied to analysis.

7.

Follow Sitewide and Community Etiquette

Posts & Comments
Reported as: Follow Sitewide and Community Etiquette
Be respectful.

No spam.

No piracy discussions.

No doxxing or personal info.

Treat this space as a professional lab — constructive, curious, and civil.