Malware Families

Enter keywords to filter the families below

Common Name	Alternative Names	Name	Actors	Last Updated
tsunami	[]	win.tsunami	['Lazarus Group']	2025-05-05
Supper	[]	win.supper	[]	2025-05-02
GIFTEDCROOK	[]	win.giftedcrook	[]	2025-05-02
WRECKSTEEL	[]	ps1.wrecksteel	[]	2025-05-02
DCRat	['DarkCrystal RAT']	win.dcrat	[]	2025-05-02
PerlBot	['ShellBot', 'DDoS Perl IrcBot']	elf.perlbot	[]	2025-05-02
COOKBOX	[]	ps1.cookbox	['UAC-0149']	2025-05-02
StormKittyRAT	[]	win.stormkitty_rat	[]	2025-05-02
Cobalt Strike	['Agentemis', 'BEACON', 'CobaltStrike', 'cobeacon']	win.cobalt_strike	['APT 29', 'APT32', 'APT41', 'AQUATIC PANDA', 'Anunak', 'Cobalt', 'Codoso', 'CopyKittens', 'DarkHydrus', 'Earth Baxia', 'FIN6', 'FIN7', 'Leviathan', 'Mustang Panda', 'Shell Crew', 'Stone Panda', 'TianWu', 'UNC1878', 'UNC2452', 'Winnti Umbrella']	2025-05-02
Owowa	[]	win.owowa	[]	2025-05-02
ResolverRAT	[]	win.resolver_rat	[]	2025-04-15
GolangGhost	[]	osx.golangghost	[]	2025-04-27
FrostyFerret	[]	osx.frostyferret	['WageMole']	2025-04-27
GolangGhost	['BitStep RAT']	win.golangghost	[]	2025-04-27
Mocky LNK	[]	win.mocky_lnk	['APT28']	2025-05-02
OCEANMAP	[]	win.oceanmap	['APT28']	2025-05-02
STEELHOOK	[]	ps1.steelhook	['APT28']	2025-05-02
MASEPIE	[]	py.masepie	['APT28']	2025-05-02
Fog	[]	win.fog	[]	2025-05-02
STOP	['KeyPass', 'Djvu']	win.stop	[]	2025-05-02
Stealc	[]	win.stealc	[]	2025-05-02
InvisibleFerret	[]	py.invisibleferret	['WageMole']	2025-04-28
BeaverTail	[]	js.beavertail	['WageMole']	2025-04-28
OtterCookie	[]	js.otter_cookie	['WageMole']	2025-04-28
KongTuke	[]	js.kongtuke	[]	2025-05-02
B0	[]	win.b0	[]	2025-05-02
Virut	[]	win.virut	[]	2025-05-02
GhostWeaver	[]	ps1.ghostweaver	[]	2025-05-01
MintsLoader	[]	js.mints_loader	[]	2025-05-01
FAKEUPDATES	['FakeUpdate', 'SocGholish']	js.fakeupdates	['GOLD PRELUDE']	2025-05-01
RansomHub	[]	win.ransomhub	['RansomHub']	2025-05-01
Oski Stealer	[]	win.oski	[]	2025-05-01
PlugX	['Destroy RAT', 'Kaba', 'Korplug', 'Sogu', 'TIGERPLUG', 'RedDelta']	win.plugx	['APT 22', 'APT 26', 'APT31', 'APT41', 'Aurora Panda', 'Calypso group', 'DragonOK', 'EMISSARY PANDA', 'Hellsing', 'Hurricane Panda', 'Leviathan', 'Mirage', 'Mustang Panda', 'NetTraveler', 'Nightshade Panda', 'SLIME29', 'Samurai Panda', 'Stone Panda', 'UPS', 'Violin Panda']	2025-03-21
Lumma Stealer	['LummaC2 Stealer']	win.lumma	[]	2025-04-25
Venom RAT	[]	win.venom	[]	2025-04-28
Unidentified 121	[]	win.unidentified_121	[]	2025-04-28
AsyncRAT	[]	win.asyncrat	[]	2025-04-28
win.beast	['blacklockbit']	win.beast	[]	2025-04-28
Black Basta	['no_name_software']	win.blackbasta	['GOLD REBELLION', 'STAC5143', 'Storm-0506', 'Storm-0826', 'TA2101', 'UNC3973', 'UNC4393']	2025-04-28
LockBit	[]	osx.lockbit	[]	2025-04-28
GootLoader	['SLOWPOUR']	js.gootloader	[]	2025-04-28
Black Basta	[]	elf.blackbasta	[]	2025-04-28
Akira	['REDBIKE']	elf.akira	[]	2025-04-28
Akira	['REDBIKE']	win.akira	[]	2025-04-28
WIREFIRE	['GIFTEDVISITOR']	py.wirefire	[]	2025-04-28
LockBit	[]	elf.lockbit	[]	2025-04-28
SystemBC	[]	elf.systembc	[]	2025-04-28
SystemBC	['Coroxy', 'DroxiDat']	win.systembc	[]	2025-04-28
LockBit	['ABCD Ransomware']	win.lockbit	[]	2025-04-28
Pyramid	[]	py.pyramid	[]	2025-04-28
MASOL	[]	elf.masol	['Earth Estries']	2025-04-28
LightNeuron	['NETTRANS', 'XTRANS']	win.lightneuron	['Turla']	2025-04-28
XOR DDoS	['XORDDOS']	elf.xorddos	[]	2025-04-28
Quasar RAT	['CinaRAT', 'QuasarRAT', 'Yggdrasil']	win.quasar_rat	['APT33', 'Dropping Elephant', 'Stone Panda', 'The Gorgon Group']	2025-04-28
NjRAT	['Bladabindi', 'Lime-Worm']	win.njrat	['AQUATIC PANDA', 'Earth Lusca', 'Operation C-Major', 'The Gorgon Group']	2025-04-28
Parallax RAT	['ParallaxRAT']	win.parallax	[]	2025-04-28
MysterySnail	[]	win.mystery_snail	[]	2025-04-27
Lilith	[]	win.lilith	['Silent Chollima', 'Tick']	2025-04-25
PipeMagic	[]	win.pipemagic	[]	2025-04-25
GUIDLOADER	[]	win.guidloader	[]	2025-04-25
PATHLOADER	[]	win.pathloader	[]	2025-04-25
FINALDRAFT	[]	win.finaldraft	[]	2025-04-25
FINALDRAFT	[]	elf.finaldraft	[]	2025-04-25
RansomEXX	['Ransom X', 'Defray777']	win.ransomexx	['GOLD DUPONT']	2025-04-25
Latrodectus	['BLACKWIDOW', 'IceNova', 'Latrodectus', 'Lotus']	win.latrodectus	[]	2025-04-25
Remcos	['RemcosRAT', 'Remvio', 'Socmer']	win.remcos	['APT33', 'The Gorgon Group', 'UAC-0050']	2025-04-25
Brute Ratel C4	['BOLDBADGER', 'BruteRatel']	win.brute_ratel_c4	[]	2025-04-25
CloudEyE	['GuLoader', 'vbdropper']	win.cloudeye	[]	2025-04-25
XiebroC2	[]	win.xiebroc2	[]	2025-04-25
Geost	[]	apk.geost	[]	2025-04-25
XWorm	[]	win.xworm	[]	2025-04-25
TargetCompany	['Fargo', 'Mallox', 'Tohnichi']	win.targetcompany	[]	2025-04-25
StrelaStealer	[]	win.strelastealer	[]	2025-04-25
Pteranodon	['Pterodo']	win.pteranodon	['Gamaredon Group', 'Operation Armageddon']	2025-04-25
DarkGate	['Meh', 'MehCrypter']	win.darkgate	[]	2025-04-25
Industroyer	['Crash', 'CrashOverride']	win.industroyer	['ELECTRUM']	2025-04-25
INDUSTROYER2	[]	win.industroyer2	['Sandworm']	2025-04-25
FrostyGoop	['BUSTLEBERM']	win.frostygoop	[]	2025-04-25
Sliver	[]	win.sliver	[]	2025-04-25
Vshell	[]	win.vshell	[]	2025-04-25
SNOWLIGHT	[]	elf.snowlight	['UNC5174']	2025-04-25
Interlock	[]	elf.interlock	[]	2025-04-17
Interlock	[]	win.interlock	[]	2025-04-17
Berserk Stealer	[]	win.berserk_stealer	[]	2025-04-17
BLACKCOFFEE	['PNGRAT', 'gresim', 'ZoxPNG']	win.blackcoffee	['APT41', 'Aurora Panda', 'Leviathan']	2025-04-17
Derusbi	['PHOTO']	win.derusbi	['APT41', 'APT17', 'Leviathan', 'Stone Panda']	2025-04-17
HiKit	[]	win.hikit	['Aurora Panda', 'Hurricane Panda']	2025-04-17
WINELOADER	[]	win.wineloader	['APT29']	2025-04-16
GRAPELOADER	[]	win.grapeloader	['APT29']	2025-04-16
Lynx	[]	win.lynx	[]	2025-04-16
PortStarter	[]	win.portstarter	[]	2024-10-15
RN Stealer	[]	py.rn_stealer	['TraderTraitor']	2025-04-15
AIRASHI	[]	elf.airashi	[]	2025-04-10
BPFDoor	['JustForFun']	elf.bpfdoor	['Red Menshen']	2025-04-14
WhiteSnake Stealer	[]	win.whitesnake	[]	2025-04-14
neshta	[]	win.neshta	[]	2025-04-14
JSOutProx	[]	win.jsoutprox	['SOLAR SPIDER']	2024-04-08
Octowave Loader	[]	win.octowave	[]	2025-04-01
ReedBed	[]	win.reedbed	['MALLARD SPIDER', 'UNC4393']	2025-03-28
Sheriff	[]	win.sheriff	[]	2025-04-10