Malware Families

Enter keywords to filter the families below

Common Name	Alternative Names	Name	Actors	Last Updated
Maze	['ChaCha']	win.maze	['FIN6', 'TA2101']	2025-05-28
More_eggs	['SpicyOmelette', 'SKID']	js.more_eggs	['Cobalt', 'FIN6', 'VENOM SPIDER']	2025-05-28
Vidar	[]	win.vidar	[]	2025-05-28
Stealc	[]	win.stealc	[]	2025-05-28
SafePay	[]	win.safepay	[]	2025-05-28
CHERRYSPY	[]	py.cherryspy	['UAC-0063']	2025-05-26
HATVIBE	[]	vbs.hatvibe	['UAC-0063']	2025-05-26
BPFDoor	['JustForFun']	elf.bpfdoor	['Red Menshen']	2025-05-26
Tetra Loader	[]	win.tetra_loader	[]	2025-05-26
BTMOB RAT	[]	apk.btmob	[]	2025-05-26
Careto	['Mask', 'Appetite']	osx.careto	[]	2025-05-26
Careto	['TheMask']	win.careto	['Careto']	2025-05-26
Gremlin	[]	win.gremlin	[]	2025-05-26
Statc	['Statc Stealer', 'Static Stealer']	win.statc	[]	2025-05-23
DanaBot	['DanaTools']	win.danabot	['SCULLY SPIDER']	2025-05-26
Aisuru	[]	elf.aisuru	[]	2025-05-26
AIRASHI	[]	elf.airashi	[]	2025-05-26
BeaverTail	[]	js.beavertail	['WageMole']	2025-05-20
OtterCookie	[]	js.otter_cookie	['WageMole']	2025-05-12
InvisibleFerret	[]	py.invisibleferret	['WageMole']	2025-05-20
Szribi	['Srizbi']	win.szribi	[]	2025-05-26
Sarcoma	[]	win.sarcoma	[]	2025-05-23
PEBBLEDASH	[]	win.pebbledash	[]	2025-05-23
AsyncRAT	[]	win.asyncrat	[]	2025-05-23
Aurotun Stealer	[]	win.aurotun_stealer	[]	2025-05-23
DarkCloud Stealer	[]	win.darkcloud	[]	2025-05-23
Moriya	[]	win.moriya	[]	2025-05-22
TerraStealer	['StealerOne', 'SONE', 'Taurus Loader Stealer Module']	win.terra_stealer	['VENOM SPIDER', 'FIN6']	2025-05-12
KRNRAT	[]	win.krnrat	[]	2025-05-22
Pterois	[]	win.pterois	['Swan Vector']	2025-05-28
Akemi	[]	jar.akemi	[]	2025-05-22
Unidentified 122 (Stealer)	[]	win.unidentified_122	[]	2025-05-22
Headlace	[]	win.headlace	[]	2025-05-22
STEELHOOK	[]	ps1.steelhook	['APT28']	2025-05-22
MASEPIE	[]	py.masepie	['APT28']	2025-05-22
Lumma Stealer	['LummaC2 Stealer']	win.lumma	['Angry Likho']	2025-05-22
Murofet	['Licat']	win.murofet	[]	2024-09-04
Geost	[]	apk.geost	[]	2025-04-25
PureLogs Stealer	[]	win.purelogs	[]	2025-05-21
ScoutC2	[]	win.scoutc2	[]	2025-05-21
AndroxGh0st	['AndroxGhost', 'Androx']	py.androxgh0st	['Xcatze']	2025-05-21
Akira	['REDBIKE']	win.akira	['Storm-1567']	2025-05-21
WebMonitor RAT	['RevCode']	win.webmonitor	[]	2020-11-19
WRECKSTEEL	[]	ps1.wrecksteel	[]	2025-05-21
StrelaStealer	[]	win.strelastealer	[]	2025-05-21
ZXShell	['Sensocode']	win.zxshell	['APT41', 'EMISSARY PANDA', 'Leviathan']	2025-05-21
Poison Ivy	['SPIVY', 'pivy', 'poisonivy']	win.poison_ivy	['GALLIUM', 'Molerats', 'Mustang Panda', 'Nightshade Panda', 'Pirate Panda', 'Stone Panda', 'TA428', 'Temper Panda']	2025-05-21
FrostyFerret	[]	osx.frostyferret	['WageMole']	2025-04-27
GolangGhost	[]	osx.golangghost	[]	2025-05-21
Rhysida	[]	win.rhysida	['Vanilla Tempest']	2025-05-21
Interlock	[]	win.interlock	[]	2025-05-21
Latrodectus	['BLACKWIDOW', 'IceNova', 'Latrodectus', 'Lotus']	win.latrodectus	[]	2025-04-25
TheMoon	[]	elf.themoon	[]	2025-05-21
Mimic Ransomware	[]	win.mimic	[]	2025-05-21
MimiKatz	[]	win.mimikatz	['APT32', 'Anunak', 'GALLIUM']	2025-05-21
Nitrogen Loader	[]	win.nitrogen	[]	2025-05-21
LZRD	[]	elf.lzrd	[]	2025-05-20
LOSTKEYS	[]	vbs.lostkeys	['Callisto']	2025-05-20
SpyPress	[]	js.spypress	['APT28']	2025-05-20
Havoc	['Havokiz']	win.havoc	[]	2025-05-20
Crimson RAT	['SEEDOOR', 'Scarimson']	win.crimson	['Operation C-Major']	2025-05-20
GolangGhost	['BitStep RAT', 'WeaselStore']	win.golangghost	[]	2025-05-20
DragonForce	[]	win.dragonforce	[]	2025-05-20
RansomHub	[]	win.ransomhub	['RansomHub']	2025-05-20
BlackCat	['ALPHV', 'Noberus']	win.blackcat	['Vanilla Tempest']	2025-05-20
KrustyLoader	[]	elf.krustyloader	[]	2025-05-20
SNOWLIGHT	[]	elf.snowlight	['UNC5174']	2025-05-20
Vshell	[]	win.vshell	[]	2025-05-20
Ratty	[]	jar.ratty	[]	2025-05-20
RokRAT	['DOGCALL']	win.rokrat	['APT37']	2025-05-20
BumbleBee	['COLDTRAIN', 'SHELLSTING', 'Shindig']	win.bumblebee	['EXOTIC LILY', 'GOLD CABIN', 'TA578', 'TA579']	2025-05-20
Koi Loader	[]	win.koiloader	[]	2025-05-20
KongTuke	['TAG-124', 'js.LandUpdate808']	js.kongtuke	[]	2025-05-20
FAKEUPDATES	['FakeUpdate', 'SocGholish']	js.fakeupdates	['GOLD PRELUDE']	2025-05-20
MintsLoader	[]	js.mints_loader	[]	2025-05-20
Broomstick	['CLEANBOOST', 'CleanUp', 'CleanUpLoader', 'Oyster']	win.broomstick	[]	2025-05-20
Rhysida	[]	elf.rhysida	['Vanilla Tempest']	2025-05-20
Remcos	['RemcosRAT', 'Remvio', 'Socmer']	win.remcos	['APT33', 'The Gorgon Group', 'UAC-0050']	2025-05-20
WarmCookie	['Badspace', 'Carrotstick', 'QUICKBIND']	win.warmcookie	[]	2025-05-20
Sagerunex	[]	win.sagerunex	['LOTUS PANDA']	2025-05-20
DBatLoader	['ModiLoader', 'NatsoLoader']	win.dbatloader	[]	2025-05-20
VanHelsing	[]	win.vanhelsing	[]	2025-05-20
NetfilterRootkit	[]	win.netfilter	[]	2025-05-20
SmokeLoader	['Dofoil', 'Sharik', 'Smoke', 'Smoke Loader']	win.smokeloader	['SMOKY SPIDER', 'UAC-0006']	2025-05-19
Raccoon	['Mohazo', 'RaccoonStealer', 'Racealer', 'Racoon']	win.raccoon	[]	2025-05-19
LockBit	['ABCD Ransomware']	win.lockbit	[]	2025-05-19
LockBit	[]	elf.lockbit	[]	2025-05-19
LockBit	[]	osx.lockbit	[]	2025-05-19
Chihuahua	[]	win.chihuahua	[]	2025-05-19
Terralogger	[]	win.terralogger	['VENOM SPIDER']	2025-05-19
TransferLoader	[]	win.transferloader	[]	2025-05-19
SnipVex	[]	win.snipvex	[]	2025-05-19
SharpRhino	[]	win.sharp_rhino	[]	2025-05-19
Hunters International	[]	win.hunters_international	['Storm-0501']	2025-05-19
AdaptixC2	[]	win.adaptix_c2	[]	2025-05-19
Ave Maria	['AVE_MARIA', 'AveMariaRAT', 'Warzone RAT', 'WarzoneRAT', 'avemaria']	win.ave_maria	['Anunak']	2025-05-19
Cobalt Strike	['Agentemis', 'BEACON', 'CobaltStrike', 'cobeacon']	win.cobalt_strike	['APT 29', 'APT29', 'APT32', 'APT41', 'AQUATIC PANDA', 'Anunak', 'Cobalt', 'Codoso', 'CopyKittens', 'DarkHydrus', 'Earth Baxia', 'FIN6', 'FIN7', 'Leviathan', 'Mustang Panda', 'Shell Crew', 'Stone Panda', 'TianWu', 'UNC1878', 'UNC2452', 'Winnti Umbrella']	2025-05-12
Emmenhtal	['IDATDropper', 'PEAKLIGHT']	win.emmenhtal	[]	2025-05-12
Akira	['REDBIKE']	elf.akira	['Storm-1567']	2025-05-19
GootLoader	['SLOWPOUR']	js.gootloader	['Storm-0249']	2025-05-09