| | | 7ev3n | [] | win.7ev3n | [] | 2018-01-23 | | | |
| | | 9002 RAT | [u'Hydraq', u'McRAT'] | win.9002 | [u'Aurora Panda', u'Group 27'] | 2018-01-08 | | | |
| | | AbaddonPOS | [u'PinkKite'] | win.abaddon_pos | [] | 2018-03-22 | | | |
| | | Abbath Banker | [] | win.abbath_banker | [] | 2016-12-28 | | | |
| | | Acronym | [] | win.acronym | [] | 2017-04-06 | | | |
| | | AdamLocker | [] | win.adam_locker | [] | 2018-01-04 | | | |
| | | AdultSwine | [] | apk.adultswine | [] | 2018-01-23 | | | |
| | | AdWind | [u'AlienSpy', u'JSocket', u'Frutas', u'UNRECOM', u'JBifrost'] | jar.adwind | [] | 2018-03-12 | | | |
| | | Adylkuzz | [] | win.adylkuzz | [] | 2017-05-18 | | | |
| | | Agent Tesla | [] | win.agent_tesla | [] | 2018-05-14 | | | |
| | | Agent.BTZ | [u'ComRAT', u'Sun rootkit'] | win.agent_btz | [u'Turla Group'] | 2017-09-20 | | | |
| | | Alina POS | [u'alina_spark', u'katrina', u'alina_eagle'] | win.alina_pos | [] | 2018-02-04 | | | |
| | | Allaple | [u'Starman'] | win.allaple | [] | 2018-02-10 | | | |
| | | Alma Communicator | [] | win.alma_communicator | [u'OilRig'] | 2017-11-21 | | | |
| | | AlmaLocker | [] | win.alma_locker | [] | 2016-12-26 | | | |
| | | Alphabet Ransomware | [] | win.alphabet_ransomware | [] | 2017-01-10 | | | |
| | | AlphaLocker | [] | win.alphalocker | [] | 2018-01-11 | | | |
| | | AlphaNC | [] | win.alphanc | [u'Lazarus Group'] | 2017-05-23 | | | |
| | | Alreay | [] | win.alreay | [u'Lazarus Group'] | 2017-05-17 | | | |
| | | AMTsol | [u'Adupihan'] | win.amtsol | [u'PLATINUM'] | 2017-06-13 | | | |
| | | Andromeda | [u'Gamarue', u'B106-Gamarue', u'B67-SS-Gamarue', u'b66'] | win.andromeda | [] | 2018-06-19 | | | |
| | | AndroRAT | [] | apk.androrat | [] | 2018-01-04 | | | |
| | | Anel | [] | win.anel | [u'Stone Panda'] | 2018-04-13 | | | |
| | | AnubisSpy | [] | apk.anubisspy | [u'Sphinx (APT-C-15'] | 2017-12-22 | | | |
| | | Apocalipto | [] | win.apocalipto | [] | 2018-04-23 | | | |
| | | Apocalypse | [] | win.apocalypse_ransom | [] | 2016-12-26 | | | |
| | | APT3 Keylogger | [] | win.keylogger_apt3 | [u'UPS'] | 2017-05-12 | | | |
| | | ArdaMax | [] | win.ardamax | [] | 2016-12-26 | | | |
| | | Arefty | [] | win.arefty | [] | 2016-04-25 | | | |
| | | Arik Keylogger | [u'Aaron Keylogger'] | win.arik_keylogger | [] | 2018-02-07 | | | |
| | | ARS VBS Loader | [] | win.ars_loader | [] | 2018-05-29 | | | |
| | | ASPC | [] | win.aspc | [] | 2017-05-19 | | | |
| | | Asprox | [u'Aseljo', u'BadSrc'] | win.asprox | [] | 2017-11-23 | | | |
| | | AthenaGo RAT | [] | win.athenago | [] | 2017-02-13 | | | |
| | | ATI-Agent | [] | win.ati_agent | [u'APT29'] | 2018-06-07 | | | |
| | | ATMii | [] | win.atmii | [] | 2017-11-17 | | | |
| | | ATMitch | [] | win.atmitch | [] | 2017-04-11 | | | |
| | | ATMSpitter | [] | win.atmspitter | [u'Cobalt'] | 2018-05-03 | | | |
| | | August Stealer | [] | win.august_stealer | [] | 2017-01-10 | | | |
| | | Auriga | [u'Riodrv'] | win.auriga | [u'Comment Crew'] | 2018-02-10 | | | |
| | | AvastDisabler | [] | win.avast_disabler | [] | 2017-02-15 | | | |
| | | AVCrypt | [] | win.avcrypt | [] | 2018-03-26 | | | |
| | | Aveo | [] | win.aveo | [] | 2016-12-26 | | | |
| | | Avzhan | [] | win.avzhan | [] | 2018-02-26 | | | |
| | | Ayegent | [] | win.ayegent | [] | 2016-12-28 | | | |
| | | Azorult | [u'PuffStealer', u'Rultazo'] | win.azorult | [] | 2018-05-17 | | | |
| | | Babar | [u'SNOWBALL'] | win.babar | [u'SNOWGLOBE'] | 2017-09-14 | | | |
| | | backspace | [] | win.backspace | [u'APT 30'] | 2018-04-26 | | | |
| | | BackSwap | [] | win.backswap | [] | 2018-05-28 | | | |
| | | BadEncript | [] | win.badencript | [] | 2017-04-29 | | | |
| | | badflick | [] | win.badflick | [u'Leviathan'] | 2018-03-17 | | | |
| | | BadNews | [] | win.badnews | [u'Dropping Elephant'] | 2018-03-27 | | | |
| | | Bahamut | [] | apk.bahamut | [] | 2017-11-17 | | | |
| | | Bahamut | [] | win.bahamut | [] | 2017-11-17 | | | |
| | | Banatrix | [] | win.banatrix | [] | 2017-05-22 | | | |
| | | Banjori | [u'MultiBanker 2', u'BankPatch', u'BackPatcher'] | win.banjori | [] | 2017-11-08 | | | |
| | | BankBot | [] | apk.bankbot | [] | 2017-11-23 | | | |
| | | Bankshot | [] | win.bankshot | [u'Lazarus Group'] | 2018-03-12 | | | |
| | | Bart | [] | win.bart | [] | 2016-12-27 | | | |
| | | Bashlite | [u'gayfgt', u'Gafgyt', u'qbot', u'torlus', u'lizkebab'] | elf.bashlite | [] | 2018-01-12 | | | |
| | | Batel | [] | win.batel | [] | 2016-12-27 | | | |
| | | Bateleur | [] | js.bateleur | [u'Anunak'] | 2017-08-01 | | | |
| | | BBSRAT | [] | win.bbsrat | [] | 2017-11-16 | | | |
| | | Bedep | [] | win.bedep | [] | 2016-04-26 | | | |
| | | Bella | [] | osx.bella | [] | 2018-01-31 | | | |
| | | BernhardPOS | [] | win.bernhardpos | [] | 2018-01-23 | | | |
| | | BetaBot | [u'Neurevt'] | win.betabot | [] | 2018-06-19 | | | |
| | | BfBot | [] | win.bfbot | [] | 2017-04-29 | | | |
| | | BillGates | [] | win.billgates | [] | 2018-01-09 | | | |
| | | Biscuit | [u'zxdosml'] | win.biscuit | [u'Comment Crew'] | 2018-02-10 | | | |
| | | Bitsran | [] | win.bitsran | [u'Lazarus Group'] | 2017-11-17 | | | |
| | | BKA Trojaner | [u'bwin3_bka'] | win.bka_trojaner | [] | 2018-05-28 | | | |
| | | BlackEnergy | [] | win.blackenergy | [u'Sandworm'] | 2016-07-12 | | | |
| | | BlackPOS | [u'POSWDS', u'Reedum', u'Kaptoxa'] | win.blackpos | [] | 2018-03-13 | | | |
| | | BlackRevolution | [] | win.blackrevolution | [] | 2016-05-31 | | | |
| | | BlackShades | [] | win.blackshades | [] | 2016-04-22 | | | |
| | | Boaxxe | [] | win.boaxxe | [] | 2018-03-26 | | | |
| | | Bolek | [u'KBOT'] | win.bolek | [] | 2018-06-04 | | | |
| | | BONDUPDATER | [] | ps1.bondupdater | [u'APT34'] | 2018-05-02 | | | |
| | | Bouncer | [] | win.bouncer | [u'Comment Crew'] | 2018-02-10 | | | |
| | | Bozok | [] | win.bozok | [] | 2018-05-03 | | | |
| | | Brambul | [] | win.brambul | [u'Lazarus Group'] | 2018-06-19 | | | |
| | | BravoNC | [] | win.bravonc | [u'Lazarus Group'] | 2017-05-23 | | | |
| | | Bredolab | [] | win.bredolab | [] | 2018-02-13 | | | |
| | | BrickerBot | [] | py.brickerbot | [] | 2018-01-12 | | | |
| | | BrutPOS | [] | win.brutpos | [] | 2018-04-23 | | | |
| | | BS2005 | [] | win.bs2005 | [u'Mirage'] | 2018-03-12 | | | |
| | | BTCWare | [] | win.btcware | [] | 2017-09-14 | | | |
| | | Bugat | [] | win.bugat_alreadydump | [] | | | | |
| | | Buhtrap | [] | win.buhtrap | [] | 2016-12-27 | | | |
| | | Bundestrojaner | [] | win.bundestrojaner | [] | 2016-05-22 | | | |
| | | Bunitu | [] | win.bunitu | [] | 2017-10-06 | | | |
| | | Buterat | [u'spyvoltar'] | win.buterat | [] | 2018-06-19 | | | |
| | | Buzus | [] | win.buzus | [] | 2017-04-29 | | | |
| | | BYEBY | [] | win.byeby | [] | 2017-11-16 | | | |
| | | c0d0so0 | [] | win.c0d0so0 | [] | 2016-04-25 | | | |
| | | CabArt | [] | win.cabart | [] | 2016-04-18 | | | |
| | | CadelSpy | [u'Cadelle'] | win.cadelspy | [] | 2017-02-16 | | | |
| | | Cannibal Rat | [] | win.cannibal_rat | [] | 2018-03-17 | | | |
| | | Carbanak | [u'Anunak'] | win.carbanak | [u'Anunak'] | 2017-12-10 | | | |
| | | Carberp | [] | win.carberp | [] | 2016-04-18 | | | |
| | | Cardinal RAT | [] | win.cardinal_rat | [] | 2017-05-12 | | | |
| | | Careto | [u'Mask', u'Appetite'] | osx.careto | [] | 2017-08-22 | | | |
| | | Casper | [] | win.casper | [u'SNOWGLOBE'] | 2018-01-17 | | | |
| | | Catelites | [] | apk.catelites | [] | 2017-12-30 | | | |
| | | CCleaner Backdoor | [] | win.ccleaner_backdoor | [] | 2018-04-20 | | | |
| | | CenterPOS | [u'cerebrus'] | win.centerpos | [] | 2018-04-23 | | | |
| | | Cerber | [] | win.cerber | [] | 2017-12-18 | | | |
| | | Cerbu | [] | win.cerbu_miner | [] | 2018-06-05 | | | |
| | | Charger | [] | apk.charger | [] | 2017-01-29 | | | |
| | | ChChes | [u'Ham Backdoor'] | win.chches | [u'Stone Panda'] | 2017-04-06 | | | |
| | | CherryPicker POS | [u'cherrypickerpos', u'cherrypicker', u'cherry_picker'] | win.cherry_picker | [] | 2018-02-10 | | | |
| | | ChewBacca | [] | win.chewbacca | [] | 2018-04-26 | | | |
| | | Chinad | [] | win.chinad | [] | 2018-06-19 | | | |
| | | Chir | [] | win.chir | [] | 2017-01-17 | | | |
| | | Chrysaor | [u'Pegasus', u'JigglyPuff'] | apk.chrysaor | [] | 2017-04-05 | | | |
| | | Chthonic | [] | win.chthonic | [] | 2017-08-18 | | | |
| | | Citadel | [] | win.citadel | [] | 2017-12-23 | | | |
| | | Client Maximus | [] | win.client_maximus | [] | 2017-06-03 | | | |
| | | Cloud Duke | [] | win.cloud_duke | [u'APT 29'] | 2017-05-21 | | | |
| | | CMSBrute | [] | win.cmsbrute | [] | 2017-09-07 | | | |
| | | CMSTAR | [u'meciv'] | win.cmstar | [] | 2017-11-16 | | | |
| | | Cobalt Strike | [] | win.cobalt_strike | [u'Shell Crew', u'Stone Panda'] | 2018-04-11 | | | |
| | | Cobian RAT | [] | win.cobian_rat | [] | 2017-12-23 | | | |
| | | Cobra Carbon System | [u'Carbon'] | win.cobra | [u'Turla Group'] | 2017-01-29 | | | |
| | | CockBlocker | [] | win.cockblocker | [] | 2017-01-10 | | | |
| | | CodeKey | [] | win.codekey | [] | 2017-02-20 | | | |
| | | Cohhoc | [] | win.cohhoc | [] | 2018-04-23 | | | |
| | | Coinminer | [] | win.coinminer | [] | 2018-01-17 | | | |
| | | CoinThief | [] | osx.cointhief | [] | 2017-08-22 | | | |
| | | Coldroot RAT | [] | osx.coldroot_rat | [] | 2018-02-26 | | | |
| | | Colony | [u'Bandios', u'GrayBird'] | win.colony | [] | 2018-04-17 | | | |
| | | Combojack | [] | win.combojack | [] | 2018-03-12 | | | |
| | | Combos | [] | win.combos | [u'Comment Crew'] | 2018-02-10 | | | |
| | | ComodoSec | [] | win.comodosec | [] | 2017-01-10 | | | |
| | | Computrace | [u'lojack'] | win.computrace | [u'Sofacy'] | 2018-05-08 | | | |
| | | ComradeCircle | [] | win.comrade_circle | [] | 2017-02-15 | | | |
| | | Conficker | [] | win.conficker | [] | 2016-12-28 | | | |
| | | Confucius | [] | win.confucius | [] | 2017-11-17 | | | |
| | | Connic | [u'SpyBanker'] | apk.connic | [] | 2017-12-14 | | | |
| | | Contopee | [] | win.contopee | [u'Lazarus Group'] | 2017-05-16 | | | |
| | | CookieBag | [] | win.cookiebag | [u'Comment Crew'] | 2018-02-10 | | | |
| | | Corebot | [] | win.corebot | [] | 2018-01-04 | | | |
| | | Coreshell | [] | win.coreshell | [u'Sofacy'] | 2017-05-03 | | | |
| | | CpuMeaner | [] | osx.cpumeaner | [] | 2017-12-15 | | | |
| | | Cpuminer | [] | apk.cpuminer | [] | 2017-11-08 | | | |
| | | Cpuminer | [] | elf.cpuminer | [] | 2017-11-27 | | | |
| | | CradleCore | [] | win.cradlecore | [] | 2017-05-12 | | | |
| | | CrashOverride | [u'Crash', u'Industroyer'] | win.crashoverride | [u'ELECTRUM'] | 2017-06-13 | | | |
| | | CreativeUpdater | [] | osx.creative_updater | [] | 2018-02-07 | | | |
| | | Credraptor | [] | win.credraptor | [] | 2016-12-27 | | | |
| | | Crimson | [] | win.crimson | [] | 2018-05-16 | | | |
| | | CrossRAT | [u'Trupto'] | jar.crossrat | [] | 2018-01-25 | | | |
| | | Crossrider | [] | osx.crossrider | [] | 2018-05-11 | | | |
| | | Cryakl | [] | win.cryakl | [] | 2018-02-26 | | | |
| | | CryLocker | [] | win.crylocker | [] | 2016-12-27 | | | |
| | | CrypMic | [] | win.crypmic | [] | 2017-12-13 | | | |
| | | Crypt0l0cker | [] | win.crypt0l0cker | [] | 2017-08-04 | | | |
| | | CryptoFortress | [] | win.crypto_fortress | [] | 2018-02-10 | | | |
| | | CryptoLocker | [] | win.cryptolocker | [] | 2018-01-07 | | | |
| | | CryptoLuck | [] | win.cryptoluck | [] | 2016-12-27 | | | |
| | | CryptoMix | [u'CryptFile2'] | win.cryptomix | [] | 2017-12-14 | | | |
| | | CryptoNight | [] | js.cryptonight | [] | 2018-04-24 | | | |
| | | CryptoRansomeware | [] | win.crypto_ransomeware | [] | 2017-02-15 | | | |
| | | Cryptorium | [] | win.cryptorium | [] | | | | |
| | | CryptoShield | [] | win.cryptoshield | [] | 2017-03-23 | | | |
| | | CryptoShuffler | [] | win.cryptoshuffler | [] | 2017-11-17 | | | |
| | | Cryptowall | [] | win.cryptowall | [] | 2016-04-18 | | | |
| | | CryptoWire | [] | win.cryptowire | [] | 2018-06-13 | | | |
| | | CryptXXXX | [] | win.cryptxxxx | [] | 2017-12-13 | | | |
| | | CsExt | [] | win.csext | [u'Cleaver'] | 2017-05-21 | | | |
| | | Cuegoe | [u'Windshield?'] | win.cuegoe | [u'APT32'] | 2017-05-19 | | | |
| | | Cueisfry | [] | win.cueisfry | [] | 2018-03-23 | | | |
| | | CukieGrab | [u'Roblox Trade Assist'] | js.cukiegrab_crx | [] | 2017-09-14 | | | |
| | | Cutlet | [] | win.cutlet | [] | 2018-02-07 | | | |
| | | Cutwail | [] | win.cutwail | [] | 2018-06-13 | | | |
| | | CyberGate | [u'Rebhip'] | win.cybergate | [] | 2017-09-14 | | | |
| | | CyberSplitter | [] | win.cyber_splitter | [] | 2016-12-27 | | | |
| | | CycBot | [] | win.cycbot | [] | 2018-01-19 | | | |
| | | Dairy | [] | win.dairy | [u'Comment Crew'] | 2018-02-10 | | | |
| | | DanaBot | [] | win.danabot | [] | 2018-06-13 | | | |
| | | DarkComet | [u'Fynloski', u'klovbot'] | win.darkcomet | [] | 2018-06-19 | | | |
| | | DarkHotel | [] | win.dubnium_darkhotel | [u'DarkHotel'] | 2017-04-29 | | | |
| | | DarkPulsar | [] | win.darkpulsar | [u'Equation Group'] | 2017-05-01 | | | |
| | | DarkShell | [] | win.darkshell | [] | 2018-01-02 | | | |
| | | Darksky | [] | win.darksky | [] | 2018-03-27 | | | |
| | | Darktrack RAT | [] | win.darktrack_rat | [] | 2017-05-10 | | | |
| | | Daserf | [u'Muirim', u'Nioupale'] | win.daserf | [u'Tick'] | 2017-11-21 | | | |
| | | Datper | [] | win.datper | [u'Tick'] | 2018-01-02 | | | |
| | | DE Loader | [] | win.de_loader | [] | 2018-02-10 | | | |
| | | Decebal | [] | win.decebal | [] | 2018-04-26 | | | |
| | | Delta(Alfa,Bravo, ...) | [] | win.deltas | [u'Lazarus Group'] | 2017-07-12 | | | |
| | | Dented | [] | win.dented | [] | 2017-11-16 | | | |
| | | DeputyDog | [] | win.deputydog | [u'Aurora Panda'] | 2017-05-21 | | | |
| | | DeriaLock | [] | win.deria_lock | [] | | | | |
| | | Derusbi | [] | win.derusbi | [u'Axiom'] | 2017-08-31 | | | |
| | | Devil's Rat | [] | win.devils_rat | [] | 2017-09-18 | | | |
| | | Dexter | [u'LusyPOS'] | win.dexter | [] | 2018-01-25 | | | |
| | | Dharma | [u'Crysis', u'Arena'] | win.dharma | [] | 2017-10-23 | | | |
| | | DiamondFox | [u'Crystal', u'Gorynych', u'Gorynch'] | win.diamondfox | [] | 2018-02-21 | | | |
| | | Dimnie | [] | win.dimnie | [] | 2017-04-06 | | | |
| | | DirCrypt | [] | win.dircrypt | [] | 2018-02-07 | | | |
| | | DistTrack | [] | win.disttrack | [u'Shamoon', u'Magic Hound', u'Timberworm', u'COBALT GIPSY'] | 2017-01-17 | | | |
| | | DMA Locker | [] | win.dma_locker | [] | 2016-05-31 | | | |
| | | DogHousePower | [u'Shelma'] | win.doghousepower | [] | 2018-01-03 | | | |
| | | Dok | [u'Retefe'] | osx.retefe | [] | 2017-08-10 | | | |
| | | Dorshel | [] | win.dorshel | [u'Energetic Bear'] | 2017-09-14 | | | |
| | | DoubleLocker | [] | apk.doublelocker | [] | 2017-10-20 | | | |
| | | DoublePulsar | [] | win.doublepulsar | [u'Equation Group'] | 2017-05-12 | | | |
| | | Downdelph | [u'DELPHACY'] | win.downdelph | [u'Sofacy'] | 2017-05-03 | | | |
| | | Downeks | [] | win.downeks | [] | 2017-02-15 | | | |
| | | DownPaper | [] | win.downpaper | [u'Charming Kitten'] | 2017-12-15 | | | |
| | | DreamBot | [] | win.dreambot | [] | 2018-01-10 | | | |
| | | Dridex | [] | win.dridex | [] | 2018-05-14 | | | |
| | | DROPSHOT | [] | win.dropshot | [u'APT33'] | 2018-05-22 | | | |
| | | DtBackdoor | [] | win.dtbackdoor | [] | 2017-04-29 | | | |
| | | DualToy | [] | apk.dualtoy | [] | 2017-02-15 | | | |
| | | DualToy | [] | ios.dualtoy | [] | 2017-02-15 | | | |
| | | DualToy | [] | win.dualtoy | [] | 2018-01-22 | | | |
| | | DuQu | [] | win.duqu | [] | 2017-07-17 | | | |
| | | Duuzer | [] | win.duuzer | [u'Lazarus Group'] | 2017-05-23 | | | |
| | | Dvmap | [] | apk.dvmap | [] | 2017-06-13 | | | |
| | | Dyre | [u'Dyreza'] | win.dyre | [] | 2017-12-16 | | | |
| | | Ebury | [] | elf.ebury | [] | 2018-04-14 | | | |
| | | EDA2 | [] | win.eda2_ransom | [] | 2017-02-15 | | | |
| | | EHDevel | [] | win.ehdevel | [] | 2017-09-14 | | | |
| | | elf.vpnfilter | [] | elf.vpnfilter | [] | 2018-06-06 | | | |
| | | Elirks | [] | win.elirks | [] | 2018-04-13 | | | |
| | | Elise | [] | win.elise | [u'Lotus Blossom'] | 2018-02-26 | | | |
| | | Emdivi | [] | win.emdivi | [u'Stone Panda'] | 2018-01-11 | | | |
| | | Empire Downloader | [] | win.empire_downloader | [] | 2018-05-08 | | | |
| | | Enfal | [u'Lurid'] | win.enfal | [] | 2017-02-15 | | | |
| | | EquationDrug | [] | win.equationdrug | [u'Equation Group'] | 2018-02-15 | | | |
| | | Equationgroup (Sorting) | [] | win.equationgroup | [] | 2017-09-26 | | | |
| | | Erebus | [] | elf.erebus | [] | 2018-02-21 | | | |
| | | Erebus | [] | win.erebus | [] | 2017-02-15 | | | |
| | | EternalPetya | [u'ExPetr', u'Pnyetya', u'Petna', u'NotPetya', u'Nyetya', u'NonPetya', u'nPetya', u'Diskcoder.C', u'BadRabbit'] | win.eternal_petya | [u'TeleBots', u'Sandworm'] | 2018-01-14 | | | |
| | | EtumBot | [u'HighTide'] | win.etumbot | [u'IXESHE'] | 2018-01-11 | | | |
| | | Evilbunny | [] | win.evilbunny | [u'SNOWGLOBE'] | 2017-09-14 | | | |
| | | EvilGrab | [u'Vidgrab'] | win.evilgrab | [] | 2017-04-05 | | | |
| | | EvilOSX | [] | osx.evilosx | [] | 2018-02-26 | | | |
| | | EvilPony | [u'CREstealer'] | win.evilpony | [] | 2017-10-20 | | | |
| | | Evrial | [] | win.evrial | [] | 2018-02-01 | | | |
| | | Excalibur | [u'Sabresac', u'Saber'] | win.excalibur | [] | 2018-04-26 | | | |
| | | Eye Pyramid | [] | win.eye_pyramid | [] | 2017-02-15 | | | |
| | | Fake Pornhub | [] | apk.pornhub | [] | 2017-02-15 | | | |
| | | FakeDGA | [u'WillExec'] | win.fakedga | [] | 2018-02-26 | | | |
| | | FakeRean | [u'Braviax'] | win.fakerean | [] | 2018-02-05 | | | |
| | | FakeTC | [] | win.faketc | [u'Sandworm'] | | | | |
| | | Fanny | [] | win.fanny | [u'Equation Group'] | 2017-09-18 | | | |
| | | FantomCrypt | [] | win.fantomcrypt | [] | 2018-01-11 | | | |
| | | FastPOS | [] | win.fast_pos | [] | 2018-02-15 | | | |
| | | Felismus | [] | win.felismus | [u'Sowbug'] | 2017-11-21 | | | |
| | | Feodo | [u'Cridex', u'Bugat'] | win.feodo | [] | 2017-05-31 | | | |
| | | FF RAT | [] | win.ff_rat | [] | 2017-07-11 | | | |
| | | Filecoder | [] | win.unidentified_030 | [] | 2017-07-11 | | | |
| | | FileIce | [] | win.fileice_ransom | [] | 2018-02-13 | | | |
| | | FindPOS | [u'Poseidon'] | win.findpos | [] | 2018-03-01 | | | |
| | | FinFisher RAT | [u'FinSpy'] | win.finfisher | [] | 2018-03-02 | | | |
| | | Fireball | [] | win.fireball | [] | 2017-07-11 | | | |
| | | FireCrypt | [] | win.firecrypt | [] | | | | |
| | | FireMalv | [] | win.firemalv | [u'Rocket Kitten'] | 2018-04-17 | | | |
| | | FirstRansom | [] | win.first_ransom | [] | 2017-02-15 | | | |
| | | FlashBack | [] | osx.flashback | [] | 2017-08-22 | | | |
| | | FlawedAmmyy | [] | win.flawedammyy | [] | 2018-06-19 | | | |
| | | FlexiSpy | [] | apk.flexispy | [] | 2017-05-01 | | | |
| | | FlexiSpy | [] | symbian.flexispy | [] | 2017-05-01 | | | |
| | | FlexiSpy | [] | win.flexispy | [] | 2017-05-01 | | | |
| | | FlexNet | [u'gugi'] | apk.flexnet | [] | 2017-07-26 | | | |
| | | FlokiBot | [] | win.floki_bot | [] | 2018-01-22 | | | |
| | | Floxif | [] | win.floxif | [] | 2017-02-15 | | | |
| | | Fobber | [] | win.fobber | [] | 2017-08-01 | | | |
| | | Formbook | [] | win.formbook | [] | 2018-03-31 | | | |
| | | FormerFirstRAT | [u'ffrat'] | win.former_first_rat | [u'DragonOK'] | 2018-03-27 | | | |
| | | Freenki Loader | [] | win.freenki | [u'APT37'] | 2017-11-16 | | | |
| | | FriedEx | [] | win.friedex | [] | 2018-02-02 | | | |
| | | FruitFly | [u'Quimitchin'] | osx.fruitfly | [] | 2018-01-12 | | | |
| | | Furtim | [] | win.furtim | [] | 2017-02-15 | | | |
| | | GalaxyLoader | [] | win.galaxyloader | [] | 2018-03-26 | | | |
| | | gamapos | [u'pios'] | win.gamapos | [] | 2018-04-25 | | | |
| | | Gameover DGA | [] | win.gameover_dga | [] | 2016-04-18 | | | |
| | | Gameover P2P | [u'ZeuS P2P', u'GOZ'] | win.gameover_p2p | [] | 2018-02-21 | | | |
| | | Gaudox | [] | win.gaudox | [] | 2017-11-21 | | | |
| | | Gazer | [u'WhiteBear'] | win.gazer | [u'Turla Group'] | 2017-08-31 | | | |
| | | GearInformer | [] | win.gearinformer | [] | 2017-11-21 | | | |
| | | Geodo | [u'Emotet', u'Heodo'] | win.geodo | [] | 2018-05-30 | | | |
| | | GetMail | [] | win.getmail | [u'Comment Crew'] | 2018-02-10 | | | |
| | | GetMyPass | [u'getmypos'] | win.getmypass | [] | 2018-02-04 | | | |
| | | Ghole | [u'CoreImpact (Modified)'] | win.ghole | [u'Rocket Kitten'] | 2017-05-17 | | | |
| | | Ghost RAT | [u'PCRat', u'Gh0st RAT'] | win.ghost_rat | [u'Emissary Panda', u'Lazarus Group'] | 2016-04-26 | | | |
| | | GhostAdmin | [u'Ghost iBot'] | win.ghost_admin | [] | 2017-04-05 | | | |
| | | GhostCtrl | [] | apk.ghostctrl | [] | 2017-07-19 | | | |
| | | Glasses | [u'Wordpress Bruteforcer'] | win.glasses | [] | 2016-12-29 | | | |
| | | GlassRAT | [] | win.glassrat | [] | 2018-03-26 | | | |
| | | Globe | [] | win.globe_ransom | [] | 2017-02-15 | | | |
| | | GlobeImposter | [] | win.globeimposter | [] | 2018-03-09 | | | |
| | | GlooxMail | [] | win.glooxmail | [u'Comment Crew'] | 2018-02-13 | | | |
| | | Godzilla Loader | [] | win.godzilla_loader | [] | 2017-08-21 | | | |
| | | Goggles | [] | win.goggles | [u'Comment Crew'] | 2018-02-10 | | | |
| | | GoldDragon | [] | win.gold_dragon | [] | 2018-02-13 | | | |
| | | GoldenEye | [u'Petya/Mischa'] | win.goldeneye | [] | 2017-07-17 | | | |
| | | Golroted | [] | win.golroted | [] | 2017-12-14 | | | |
| | | Goodor | [u'Fuerboos'] | win.goodor | [] | 2018-04-13 | | | |
| | | GoogleDrive RAT | [] | win.google_drive_rat | [u'OilRig'] | 2018-03-26 | | | |
| | | GooPic Drooper | [] | win.goopic | [] | 2018-01-25 | | | |
| | | GootKit | [u'Xswkit'] | win.gootkit | [] | 2018-05-22 | | | |
| | | GovRAT | [] | win.govrat | [] | 2018-04-20 | | | |
| | | Gozi | [u'CRM', u'Gozi CRM', u'Papras', u'Snifula', u'Ursnif'] | win.gozi | [] | 2018-01-10 | | | |
| | | GPCode | [] | win.gpcode | [] | 2018-02-09 | | | |
| | | GrabBot | [] | win.grabbot | [] | 2017-03-28 | | | |
| | | Graftor | [] | win.graftor | [] | 2017-09-14 | | | |
| | | Grateful POS | [] | win.grateful_pos | [] | 2018-01-25 | | | |
| | | Gratem | [] | win.gratem | [] | 2017-04-06 | | | |
| | | Gravity RAT | [] | win.gravity_rat | [] | 2018-05-02 | | | |
| | | GreenShaitan | [u'eoehttp'] | win.greenshaitan | [] | 2018-04-23 | | | |
| | | GROK | [] | win.grok | [u'Equation Group'] | 2017-05-03 | | | |
| | | gsecdump | [] | win.gsecdump | [] | 2018-04-17 | | | |
| | | GuiInject | [] | ios.guiinject | [] | 2017-02-15 | | | |
| | | H1N1 Loader | [] | win.h1n1 | [] | 2016-12-27 | | | |
| | | Hacksfase | [] | win.hacksfase | [u'Comment Crew'] | 2018-02-13 | | | |
| | | HackSpy | [] | win.hackspy | [] | 2018-02-21 | | | |
| | | Hajime | [] | elf.hajime | [] | 2018-04-13 | | | |
| | | Hamweq | [] | win.hamweq | [] | 2018-02-26 | | | |
| | | Hancitor | [u'Chanitor'] | win.hancitor | [] | 2018-03-01 | | | |
| | | HappyLocker (HiddenTear?) | [] | win.happy_locker | [] | 2017-04-29 | | | |
| | | Harnig | [u'Piptea'] | win.harnig | [] | 2018-01-22 | | | |
| | | Havex RAT | [] | win.havex_rat | [] | 2018-01-13 | | | |
| | | HawkEye Keylogger | [u'Predator Pain'] | win.hawkeye_keylogger | [] | 2017-09-13 | | | |
| | | Helauto | [] | win.helauto | [u'Comment Crew'] | 2018-02-10 | | | |
| | | Helminth | [] | win.helminth | [] | 2017-02-15 | | | |
| | | Heloag | [] | win.heloag | [] | 2018-01-25 | | | |
| | | Herbst | [] | win.herbst | [] | 2018-01-29 | | | |
| | | Heriplor | [] | win.heriplor | [u'Energetic Bear'] | 2017-09-14 | | | |
| | | Hermes | [] | win.hermes | [u'Lazarus Group'] | 2017-11-17 | | | |
| | | HerpesBot | [] | win.herpes | [] | 2016-05-31 | | | |
| | | HesperBot | [] | win.hesperbot | [] | 2016-04-18 | | | |
| | | Hi-Zor RAT | [] | win.hi_zor_rat | [] | 2018-02-15 | | | |
| | | HiddenLotus | [] | osx.hiddenlotus | [] | 2018-03-23 | | | |
| | | HiddenTear | [] | win.hiddentear | [] | 2017-02-15 | | | |
| | | Hide and Seek | [] | elf.hideandseek | [] | 2018-05-14 | | | |
| | | HideDRV | [] | win.hidedrv | [] | 2017-05-03 | | | |
| | | HiKit | [] | win.hikit | [u'Aurora Panda'] | 2017-05-17 | | | |
| | | HLUX | [] | win.hlux | [] | 2016-04-26 | | | |
| | | homefry | [] | win.homefry | [u'Leviathan'] | 2018-03-17 | | | |
| | | HtBot | [] | win.htbot | [] | 2017-05-29 | | | |
| | | HTML5 Encoding | [] | js.turla_ff_ext | [u'Turla Group'] | 2017-07-11 | | | |
| | | htpRAT | [] | win.htprat | [] | 2017-12-13 | | | |
| | | HTran | [u'HUC Packet Transmit Tool'] | win.htran | [] | 2018-04-23 | | | |
| | | HttpBrowser | [] | win.httpbrowser | [u'Wekby', u'Emissary Panda'] | 2017-02-15 | | | |
| | | Hworm | [u'houdini'] | win.hworm | [] | 2016-12-27 | | | |
| | | HyperBro | [] | win.hyperbro | [u'Emissary Panda'] | 2018-06-19 | | | |
| | | Ice IX | [] | win.ice_ix | [] | 2018-02-13 | | | |
| | | IcedID | [u'BokBot'] | win.icedid | [] | 2018-03-20 | | | |
| | | IcedID Downloader | [] | win.icedid_downloader | [] | 2017-12-05 | | | |
| | | Icefog | [] | win.icefog | [] | 2018-02-27 | | | |
| | | IDKEY | [] | win.idkey | [] | 2017-09-20 | | | |
| | | IISniff | [] | win.iisniff | [] | 2018-05-14 | | | |
| | | Imminent Monitor RAT | [] | win.imminent_monitor_rat | [] | 2017-05-15 | | | |
| | | Infy | [u'Foudre'] | win.infy | [] | 2017-08-02 | | | |
| | | InnaputRAT | [] | win.innaput_rat | [] | 2018-05-14 | | | |
| | | InvisiMole | [] | win.invisimole | [] | 2018-06-13 | | | |
| | | IoT Reaper | [u'IoTroop', u'Reaper'] | elf.iot_reaper | [] | 2017-10-24 | | | |
| | | Irc16 | [] | elf.backdoor_irc16 | [] | 2017-02-15 | | | |
| | | IRRat | [] | apk.irrat | [] | 2018-03-22 | | | |
| | | ISFB | [u'Gozi ISFB', u'IAP', u'Pandemyia'] | win.isfb | [] | 2018-04-26 | | | |
| | | ISMAgent | [] | win.ismagent | [u'Greenbug'] | 2017-09-18 | | | |
| | | ISMDoor | [] | win.ismdoor | [u'Greenbug'] | 2017-02-15 | | | |
| | | iSpy Keylogger | [] | win.ispy_keylogger | [] | 2016-12-27 | | | |
| | | ISR Stealer | [] | win.isr_stealer | [] | 2017-07-18 | | | |
| | | IsSpace | [] | win.isspace | [u'DragonOK'] | 2017-02-15 | | | |
| | | JackPOS | [] | win.jackpos | [] | 2018-04-26 | | | |
| | | JadeRAT | [] | apk.jaderat | [] | 2017-11-17 | | | |
| | | Jaff | [] | win.jaff | [] | 2017-08-01 | | | |
| | | Jager Decryptor | [] | win.jager_decryptor | [] | 2016-12-28 | | | |
| | | Jaku | [u'Reconcyc'] | win.jaku | [] | 2017-05-01 | | | |
| | | Jasus | [] | win.jasus | [u'Cleaver'] | 2017-05-21 | | | |
| | | JenX | [] | elf.jenx | [] | 2018-02-26 | | | |
| | | Jigsaw | [] | win.jigsaw | [] | 2016-04-19 | | | |
| | | Jimmy | [] | win.jimmy | [] | | | | |
| | | Joanap | [] | win.joanap | [u'Lazarus Group'] | 2018-06-19 | | | |
| | | Joao | [] | win.joao | [] | 2017-08-23 | | | |
| | | Jolob | [] | win.jolob | [] | 2018-05-03 | | | |
| | | JQJSNICKER | [] | win.jqjsnicker | [u'CIA'] | 2017-03-28 | | | |
| | | jRAT | [u'Jacksbot'] | jar.jrat | [] | 2017-12-18 | | | |
| | | JripBot | [] | win.jripbot | [u'WildNeutron'] | 2017-06-06 | | | |
| | | jSpy | [] | jar.jspy | [] | 2018-05-14 | | | |
| | | KAgent | [] | win.kagent | [u'Cleaver'] | 2017-05-21 | | | |
| | | Kaiten | [u'STD'] | elf.kaiten | [] | 2017-02-15 | | | |
| | | Karagany | [] | win.karagany | [u'Energetic Bear'] | 2017-08-04 | | | |
| | | Karius | [] | win.karius | [] | 2018-06-14 | | | |
| | | KasperAgent | [] | win.kasperagent | [] | 2017-07-11 | | | |
| | | Kazuar | [] | win.kazuar | [u'Turla Group'] | 2017-05-12 | | | |
| | | Kegotip | [] | win.kegotip | [] | 2016-04-19 | | | |
| | | Kelihos | [] | win.kelihos | [] | 2018-06-19 | | | |
| | | KeRanger | [] | osx.keranger | [] | 2017-02-15 | | | |
| | | KevDroid | [] | apk.kevdroid | [u'APT37'] | 2018-04-24 | | | |
| | | KeyBoy | [] | win.keyboy | [u'Tropic Trooper'] | 2017-11-17 | | | |
| | | Keydnap | [] | osx.keydnap | [] | 2017-02-15 | | | |
| | | KHRAT | [] | win.khrat | [u'DragonOK'] | 2017-09-01 | | | |
| | | KillDisk | [] | win.killdisk | [u'TeleBots', u'Sandworm'] | 2018-01-17 | | | |
| | | KINS | [u'Kasper Internet Non-Security', u'Maple'] | win.kins | [] | 2017-10-14 | | | |
| | | Kitmos | [u'KitM'] | osx.kitmos | [] | 2018-03-17 | | | |
| | | KLRD | [] | win.klrd | [u'Anunak'] | 2018-01-25 | | | |
| | | Koadic | [] | win.koadic | [u'Sofacy'] | 2018-06-07 | | | |
| | | KokoKrypt | [] | win.kokokrypt | [] | | | | |
| | | Koler | [] | apk.koler | [] | 2017-11-21 | | | |
| | | Komplex | [u'SedUploader', u'JHUHUGIT', u'JKEYSKW'] | osx.komplex | [u'Sofacy'] | 2017-02-15 | | | |
| | | Konni | [] | win.konni | [] | 2017-09-14 | | | |
| | | KoobFace | [] | win.koobface | [] | 2016-04-19 | | | |
| | | KopiLuwak | [] | js.kopiluwak | [u'Turla Group'] | 2017-02-02 | | | |
| | | Korlia | [u'bisonal'] | win.korlia | [] | 2018-01-25 | | | |
| | | Kovter | [] | win.kovter | [] | 2016-12-28 | | | |
| | | KrBanker | [u'BlackMoon'] | win.krbanker | [] | 2017-05-12 | | | |
| | | KrDownloader | [] | win.krdownloader | [] | 2017-05-12 | | | |
| | | Kronos | [] | win.kronos | [] | 2018-01-25 | | | |
| | | Kuaibu | [u'Barys', u'Gofot', u'Kuaibpy'] | win.kuaibu8 | [] | 2017-03-29 | | | |
| | | Kuluoz | [] | win.kuluoz | [] | 2017-11-23 | | | |
| | | Kurton | [] | win.kurton | [u'Comment Crew'] | 2018-02-13 | | | |
| | | Kwampirs | [] | win.kwampirs | [u'Orangeworm'] | 2018-04-24 | | | |
| | | Lady | [] | elf.lady | [] | 2017-04-06 | | | |
| | | Lambert | [] | win.lambert | [u'Longhorn'] | 2017-06-09 | | | |
| | | Lamdelin | [] | win.lamdelin | [] | 2018-04-12 | | | |
| | | Laoshu | [] | osx.laoshu | [] | 2017-08-28 | | | |
| | | LatentBot | [] | win.latentbot | [] | 2017-06-11 | | | |
| | | Lazarus | [] | apk.lazarus | [u'Lazarus Group'] | 2017-11-21 | | | |
| | | Lazarus | [] | win.lazarus | [u'Lazarus Group'] | 2017-04-29 | | | |
| | | Lazarus ELF Backdoor | [] | apk.lazarus_elf | [u'Lazarus Group'] | 2017-12-22 | | | |
| | | Laziok | [] | win.laziok | [] | 2018-01-17 | | | |
| | | Leash | [] | win.leash | [u'Magic Hound'] | 2017-12-15 | | | |
| | | Lethic | [] | win.lethic | [] | 2017-11-21 | | | |
| | | Leverage | [] | osx.leverage | [] | 2017-08-31 | | | |
| | | Limitail | [] | win.limitail | [] | 2017-04-29 | | | |
| | | Listrix | [] | win.listrix | [u'Energetic Bear'] | 2017-09-14 | | | |
| | | LockPOS | [] | win.lock_pos | [] | 2018-02-26 | | | |
| | | Locky | [] | win.locky | [] | 2017-11-09 | | | |
| | | Locky (Decryptor) | [] | win.locky_decryptor | [] | 2016-04-19 | | | |
| | | Locky Loader | [] | win.locky_loader | [] | 2018-01-11 | | | |
| | | Loda | [u'Nymeria'] | win.loda | [] | 2018-01-25 | | | |
| | | Logedrut | [] | win.logedrut | [] | 2018-04-13 | | | |
| | | LogPOS | [] | win.logpos | [] | 2018-02-10 | | | |
| | | Loki | [] | apk.loki | [] | 2017-03-24 | | | |
| | | LokiBot | [] | apk.lokibot | [] | 2018-06-19 | | | |
| | | LokiBot | [] | win.lokibot | [] | 2018-03-01 | | | |
| | | Luminosity RAT | [] | win.luminosity_rat | [] | 2018-02-08 | | | |
| | | Lurk | [] | win.lurk | [] | 2016-05-10 | | | |
| | | Luzo | [] | win.luzo | [] | 2016-05-31 | | | |
| | | Lyposit | [u'Lucky Locker', u'Adneukine', u'Bomba Locker'] | win.lyposit | [] | 2017-12-29 | | | |
| | | MacDownloader | [] | osx.macdownloader | [] | 2017-02-15 | | | |
| | | Machete | [u'El Machete'] | win.machete | [] | 2017-07-12 | | | |
| | | MacInstaller | [] | osx.macinstaller | [] | 2017-02-15 | | | |
| | | MacRansom | [] | osx.macransom | [] | 2017-06-13 | | | |
| | | MacSpy | [] | osx.macspy | [] | 2017-06-13 | | | |
| | | MacVX | [] | osx.macvx | [] | 2017-02-15 | | | |
| | | MadMax | [] | win.madmax | [] | 2016-12-28 | | | |
| | | Magala | [] | win.magala | [] | 2017-08-01 | | | |
| | | Magniber | [] | win.magniber | [] | 2018-04-11 | | | |
| | | Maintools.js | [] | js.turla_maintools | [u'Turla Group'] | 2017-11-17 | | | |
| | | MajikPos | [] | win.majik_pos | [] | 2017-05-01 | | | |
| | | Maktub | [] | win.maktub | [] | 2016-04-19 | | | |
| | | MalumPOS | [] | win.malumpos | [] | 2018-04-23 | | | |
| | | Mamba | [u'HDDCryptor', u'DiskCryptor'] | win.mamba | [] | 2017-02-15 | | | |
| | | MaMi | [] | osx.mami | [] | 2018-01-14 | | | |
| | | ManameCrypt | [u'CryptoHost'] | win.manamecrypt | [] | 2018-02-05 | | | |
| | | Mangzamel | [u'junidor', u'mengkite', u'vedratve'] | win.mangzamel | [] | 2018-01-19 | | | |
| | | Manifestus | [] | win.manifestus_ransomware | [] | | | | |
| | | ManItsMe | [] | win.manitsme | [u'Comment Crew'] | 2018-02-13 | | | |
| | | MAPIget | [] | win.mapiget | [u'Comment Crew'] | 2018-02-10 | | | |
| | | Marcher | [u'ExoBot'] | apk.marcher | [] | 2017-08-31 | | | |
| | | Matrix Banker | [] | win.matrix_banker | [] | 2017-07-11 | | | |
| | | Matrix Ransom | [] | win.matrix_ransom | [] | 2017-07-19 | | | |
| | | Matryoshka RAT | [] | win.matryoshka_rat | [u'Rocket Kitten'] | 2017-09-14 | | | |
| | | Matsnu | [] | win.matsnu | [] | 2016-04-19 | | | |
| | | MazarBot | [] | apk.mazarbot | [] | 2017-04-19 | | | |
| | | MBRlock | [u'DexLocker'] | win.mbrlock | [] | 2018-03-01 | | | |
| | | Mewsei | [] | win.mewsei | [] | 2016-04-19 | | | |
| | | Miancha | [] | win.miancha | [] | 2017-05-21 | | | |
| | | Micrass | [] | win.micrass | [] | 2018-04-13 | | | |
| | | Microcin | [] | win.microcin | [] | 2017-11-09 | | | |
| | | Micropsia | [] | win.micropsia | [] | 2017-07-11 | | | |
| | | MiKey | [] | elf.mikey | [] | | | | |
| | | Mikoponi | [] | win.mikoponi | [] | | | | |
| | | MILKMAID | [] | win.milkmaid | [u'APT 30'] | 2018-04-26 | | | |
| | | MimiKatz | [] | win.mimikatz | [] | 2017-12-22 | | | |
| | | MiniASP | [] | win.miniasp | [u'Comment Crew'] | 2018-02-10 | | | |
| | | Mirage | [] | win.mirage | [u'Mirage'] | 2018-06-19 | | | |
| | | MirageFox | [] | win.miragefox | [u'Mirage'] | 2018-06-19 | | | |
| | | Mirai | [] | elf.mirai | [] | 2018-01-12 | | | |
| | | Mirai | [] | win.mirai | [] | 2017-02-13 | | | |
| | | Misdat | [] | win.misdat | [u'Dust Storm'] | 2018-01-23 | | | |
| | | Misfox | [u'MixFox', u'ModPack'] | win.misfox | [] | 2017-10-20 | | | |
| | | Miuref | [] | win.miuref | [] | 2016-04-19 | | | |
| | | MM Core | [] | win.mm_core | [] | 2017-04-06 | | | |
| | | MobiRAT | [] | win.mobi_rat | [] | 2017-08-31 | | | |
| | | Mocton | [] | win.mocton | [] | 2016-04-19 | | | |
| | | ModPOS | [u'straxbot'] | win.modpos | [] | 2018-04-23 | | | |
| | | Moker | [] | win.moker | [] | 2017-05-01 | | | |
| | | Mokes | [] | elf.mokes | [] | 2017-10-25 | | | |
| | | Mokes | [] | osx.mokes | [] | 2017-02-15 | | | |
| | | Mokes | [] | win.mokes | [] | 2017-10-25 | | | |
| | | Mole | [] | win.mole | [] | 2017-12-13 | | | |
| | | Molerat Loader | [] | win.molerat_loader | [u'Molerats'] | 2017-04-29 | | | |
| | | Monero Miner | [u'CoinMiner'] | win.monero_miner | [] | 2017-11-16 | | | |
| | | MoonWind | [] | win.moonwind | [] | 2017-04-05 | | | |
| | | Moose | [] | elf.moose | [] | 2017-02-15 | | | |
| | | Morphine | [] | win.morphine | [] | 2017-08-22 | | | |
| | | Mosquito | [] | win.mosquito | [u'Turla Group'] | 2018-02-07 | | | |
| | | Moure | [] | win.moure | [] | 2016-04-19 | | | |
| | | mozart | [] | win.mozart | [] | 2018-01-25 | | | |
| | | MPK | [] | win.mpk | [u'Magic Hound', u'Rocket Kitten'] | 2017-12-15 | | | |
| | | MrBlack | [] | elf.mrblack | [] | 2017-02-15 | | | |
| | | MS Exchange Tool | [] | win.exchange_tool | [u'Mirage'] | 2018-03-12 | | | |
| | | Mughthesec | [] | osx.mughthesec | [] | 2017-08-10 | | | |
| | | Multigrain POS | [] | win.multigrain_pos | [] | 2018-02-07 | | | |
| | | murkytop | [] | win.murkytop | [u'Leviathan'] | 2018-03-17 | | | |
| | | Murofet | [] | win.murofet | [] | 2016-05-10 | | | |
| | | Mutabaha | [] | win.mutabaha | [] | 2017-02-15 | | | |
| | | MyKings Spreader | [] | win.mykings_spreader | [] | 2018-02-07 | | | |
| | | MysteryBot | [] | apk.mysterybot | [] | 2018-06-19 | | | |
| | | Nabucur | [] | win.nabucur | [] | 2016-05-31 | | | |
| | | Nagini | [] | win.nagini | [] | 2017-02-15 | | | |
| | | Naikon | [] | win.naikon | [u'Naikon'] | | | | |
| | | Nanocore RAT | [] | win.nanocore | [u'APT33'] | 2017-09-29 | | | |
| | | NanoLocker | [] | win.nano_locker | [] | 2017-02-15 | | | |
| | | Nautilus | [] | win.nautilus | [u'Turla Group'] | 2018-02-26 | | | |
| | | NavRAT | [] | win.navrat | [u'APT37'] | 2018-06-07 | | | |
| | | Necurs | [u'nucurs'] | win.necurs | [] | 2018-06-19 | | | |
| | | Nemim | [] | win.nemim | [u'DarkHotel'] | 2018-05-03 | | | |
| | | NetC | [] | win.netc | [u'Cleaver'] | 2017-05-21 | | | |
| | | NETEAGLE | [u'ScoutEagle'] | win.neteagle | [u'APT 30'] | 2018-04-26 | | | |
| | | Netrepser | [] | win.netrepser_keylogger | [] | 2017-05-12 | | | |
| | | NetSupportManager RAT | [] | win.netsupportmanager_rat | [] | 2017-09-14 | | | |
| | | NetTraveler | [u'TravNet'] | win.nettraveler | [u'NetTraveler'] | 2017-05-21 | | | |
| | | NetWire RC | [u'Recam'] | win.netwire | [u'APT33'] | 2017-12-21 | | | |
| | | Neuron | [] | win.neuron | [u'Turla Group'] | 2017-11-23 | | | |
| | | Neutrino | [u'Kasidet'] | win.neutrino | [] | 2016-04-19 | | | |
| | | Neutrino POS | [u'Jimmy'] | win.neutrino_pos | [] | 2017-07-12 | | | |
| | | NewCore RAT | [] | win.newcore_rat | [] | 2017-09-14 | | | |
| | | NewCT | [u'CT'] | win.new_ct | [u'DragonOK'] | 2018-03-27 | | | |
| | | NewPosThings | [] | win.newposthings | [] | 2018-04-23 | | | |
| | | NewsReels | [] | win.newsreels | [u'Comment Crew'] | 2018-02-10 | | | |
| | | Nexster Bot | [] | win.nexster_bot | [] | 2017-04-29 | | | |
| | | NexusLogger | [] | win.nexus_logger | [] | 2017-03-28 | | | |
| | | NgrBot | [] | win.dorkbot_ngrbot | [] | 2018-06-19 | | | |
| | | Nitol | [] | win.nitol | [] | 2017-09-14 | | | |
| | | NjRAT | [u'Bladabindi'] | win.njrat | [] | 2018-01-17 | | | |
| | | Nocturnal Stealer | [] | win.nocturnalstealer | [] | 2018-06-13 | | | |
| | | nRansom | [] | win.nransom | [] | 2017-09-26 | | | |
| | | Nymaim | [u'nymain'] | win.nymaim | [] | 2018-06-19 | | | |
| | | Nymaim2 | [] | win.nymaim2 | [] | 2018-05-01 | | | |
| | | OceanLotus | [] | osx.oceanlotus | [u'APT32'] | 2018-04-05 | | | |
| | | OddJob | [] | win.oddjob | [u'Equation Group'] | 2017-05-01 | | | |
| | | Odinaff | [] | win.odinaff | [] | 2017-02-15 | | | |
| | | Olympic Destroyer | [] | win.olympic_destroyer | [] | 2018-06-19 | | | |
| | | OmniRAT | [] | apk.omnirat | [] | 2018-01-11 | | | |
| | | OneKeyLocker | [] | win.onekeylocker | [] | 2018-06-07 | | | |
| | | ONHAT | [] | win.onhat | [] | 2018-04-23 | | | |
| | | OnlinerSpambot | [u'SBot', u'Onliner'] | win.onliner | [] | 2018-01-17 | | | |
| | | Opachki | [] | win.opachki | [] | 2016-04-27 | | | |
| | | OpBlockBuster | [] | win.op_blockbuster | [u'Lazarus Group'] | 2017-05-17 | | | |
| | | OpGhoul | [] | win.opghoul | [] | 2017-04-29 | | | |
| | | Orcus RAT | [] | win.orcus_rat | [] | 2018-01-13 | | | |
| | | Ordinypt | [] | win.ordinypt | [] | 2017-11-21 | | | |
| | | OvidiyStealer | [] | win.ovidiystealer | [] | 2017-08-03 | | | |
| | | owaauth | [u'luckyowa'] | win.owaauth | [] | 2018-04-17 | | | |
| | | PadCrypt | [] | win.padcrypt | [] | 2017-02-15 | | | |
| | | PandaBanker | [u'ZeusPanda'] | win.pandabanker | [] | 2018-05-28 | | | |
| | | PAS | [] | php.pas | [] | 2017-02-15 | | | |
| | | Patcher | [u'Findzip'] | osx.patcher | [] | 2017-02-24 | | | |
| | | PC Surveillance System | [u'PSS'] | win.pss | [] | 2018-02-07 | | | |
| | | Penquin Turla | [] | elf.penquin_turla | [u'Turla Group'] | 2017-04-05 | | | |
| | | Persirai | [] | elf.persirai | [] | 2017-05-09 | | | |
| | | PetrWrap | [] | win.petrwrap | [] | 2017-07-17 | | | |
| | | Petya | [] | win.petya | [] | 2017-07-27 | | | |
| | | pgift | [u'ReRol'] | win.pgift | [u'Pitty Panda'] | 2018-01-25 | | | |
| | | Philadephia Ransom | [] | win.philadelphia_ransom | [] | 2018-01-25 | | | |
| | | pirpi | [] | win.pirpi | [u'UPS'] | 2018-04-13 | | | |
| | | Pirrit | [] | osx.pirrit | [] | 2017-02-15 | | | |
| | | Pitou | [] | win.pitou | [] | 2018-02-01 | | | |
| | | PittyTiger RAT | [] | win.pittytiger_rat | [] | 2018-01-19 | | | |
| | | Pkybot | [u'Pykbot', u'TBag', u'Bublik'] | win.pkybot | [] | 2018-02-15 | | | |
| | | PLEAD | [u'TSCookie'] | win.plead | [] | 2018-03-12 | | | |
| | | Plexor | [] | win.plexor | [u'Longhorn'] | 2017-05-01 | | | |
| | | Ploutus ATM | [] | win.ploutus_atm | [] | 2018-03-09 | | | |
| | | PlugX | [u'Korplug'] | win.plugx | [u'Stone Panda', u'Emissary Panda', u'DragonOK', u'Hurricane Panda'] | 2018-03-23 | | | |
| | | Poison Ivy | [u'poisonivy'] | win.poison_ivy | [] | 2018-06-19 | | | |
| | | Polyglot | [] | win.polyglot_ransom | [] | 2017-02-15 | | | |
| | | Pony | [u'Fareit'] | win.pony | [] | 2017-12-14 | | | |
| | | PoohMilk Loader | [] | win.poohmilk | [u'APT37'] | 2017-11-16 | | | |
| | | Popcorn Time | [] | win.popcorn_time | [] | 2017-02-15 | | | |
| | | POSHSPY | [] | ps1.poshspy | [u'APT 29'] | 2018-05-30 | | | |
| | | Poweliks Dropper | [] | win.poweliks_dropper | [] | 2016-12-29 | | | |
| | | PowerDuke | [] | win.powerduke | [u'APT 29'] | 2017-09-24 | | | |
| | | PowerRatankba | [] | win.power_ratankba | [] | 2018-01-28 | | | |
| | | Powersniff | [] | win.powersniff | [] | 2017-06-02 | | | |
| | | PowerWare | [] | ps1.powerware | [] | 2016-05-10 | | | |
| | | Powmet | [] | js.powmet | [] | 2017-08-03 | | | |
| | | POWRUNER | [] | ps1.powruner | [u'APT34'] | 2018-05-02 | | | |
| | | Prikorma | [] | win.prikormka | [] | 2018-02-21 | | | |
| | | Prilex | [] | win.prilex | [] | 2018-03-16 | | | |
| | | PrincessLocker | [] | win.princess_locker | [] | 2018-01-14 | | | |
| | | Project Alice | [] | win.alice_atm | [] | 2017-01-10 | | | |
| | | Proton RAT | [] | osx.proton_rat | [] | 2017-11-22 | | | |
| | | Pteranodon | [] | win.pteranodon | [u'Gamaredon Group', u'Operation Armageddon'] | 2018-02-26 | | | |
| | | PubNubRAT | [] | win.pubnubrat | [] | 2018-04-24 | | | |
| | | Punkey POS | [] | win.punkey_pos | [] | 2018-02-08 | | | |
| | | Pushdo | [] | win.pushdo | [] | 2016-07-11 | | | |
| | | PvzOut | [] | win.pvzout | [u'Cleaver'] | 2017-05-21 | | | |
| | | Pwnet | [] | osx.pwnet | [] | 2018-01-28 | | | |
| | | Pykspa | [] | win.pykspa | [] | 2018-01-25 | | | |
| | | Qadars | [] | win.qadars | [] | 2018-03-01 | | | |
| | | QakBot | [u'Qbot', u'Pinkslipbot'] | win.qakbot | [] | 2017-06-13 | | | |
| | | Qarallax RAT | [] | jar.qarallax_rat | [] | 2018-02-08 | | | |
| | | QHost | [u'Tolouge'] | win.qhost | [] | 2018-02-07 | | | |
| | | QRat | [u'Quaverse RAT'] | jar.qrat | [] | 2018-02-02 | | | |
| | | QtBot | [u'qtproject'] | win.qtbot | [] | 2017-11-07 | | | |
| | | Quant Loader | [] | win.quant_loader | [] | 2018-05-02 | | | |
| | | Quasar RAT | [] | win.quasar_rat | [u'Stone Panda', u'Dropping Elephant'] | 2018-05-14 | | | |
| | | r2r2 | [] | elf.r2r2 | [] | 2018-06-13 | | | |
| | | r980 | [] | win.r980 | [] | 2017-02-15 | | | |
| | | Radamant | [] | win.radamant | [] | 2017-02-15 | | | |
| | | RadRAT | [] | win.radrat | [] | 2018-04-23 | | | |
| | | Rakos | [] | elf.rakos | [] | 2017-02-15 | | | |
| | | Rambo | [u'brebsd'] | win.rambo | [u'DragonOK'] | 2018-01-25 | | | |
| | | Ramdo | [] | win.ramdo | [] | 2016-04-20 | | | |
| | | Ramnit | [u'Nimnul'] | win.ramnit | [] | 2018-02-26 | | | |
| | | Ranbyus | [] | win.ranbyus | [] | 2018-02-10 | | | |
| | | Ranscam | [] | win.ranscam | [] | 2017-02-15 | | | |
| | | Ransoc | [] | win.ransoc | [] | 2016-12-28 | | | |
| | | Ransomlock | [u'WinLock'] | win.ransomlock | [] | 2018-01-02 | | | |
| | | Rapid Ransom | [] | win.rapid_ransom | [] | 2018-06-13 | | | |
| | | RapidStealer | [] | win.rapid_stealer | [u'IXESHE'] | 2017-05-21 | | | |
| | | RatabankaPOS | [] | win.ratabankapos | [u'Lazarus Group'] | 2018-02-27 | | | |
| | | Ratty | [] | jar.ratty | [] | 2018-05-16 | | | |
| | | RawPOS | [] | win.rawpos | [] | 2017-05-12 | | | |
| | | Raxir | [] | apk.raxir | [] | 2017-02-15 | | | |
| | | Razy | [u'xcmkds'] | win.razy | [] | 2017-02-15 | | | |
| | | RCS | [u'Remote Control System', u'Crisis'] | win.rcs | [] | 2018-03-12 | | | |
| | | rdasrv | [] | win.rdasrv | [] | 2018-04-26 | | | |
| | | ReactorBot | [] | win.reactorbot | [] | 2017-06-07 | | | |
| | | Reaver | [] | win.reaver | [] | 2018-02-26 | | | |
| | | Red Alert | [] | win.red_alert | [] | 2017-02-15 | | | |
| | | RedAlert2 | [] | apk.redalert2 | [] | 2017-12-30 | | | |
| | | RedLeaves | [] | win.redleaves | [u'Stone Panda'] | 2018-05-02 | | | |
| | | reGeorg | [] | win.regeorg | [] | 2018-04-13 | | | |
| | | Regin | [] | win.regin | [] | 2018-06-19 | | | |
| | | Remcos | [] | win.remcos | [] | 2018-03-13 | | | |
| | | Remexi | [] | win.remexi | [] | 2018-03-12 | | | |
| | | Remsec | [] | win.remsec_strider | [u'ProjectSauron'] | 2017-02-15 | | | |
| | | Retadup | [] | win.retadup | [] | 2017-07-12 | | | |
| | | Retefe | [] | apk.retefe | [] | 2017-12-19 | | | |
| | | Retefe | [u'Tsukuba', u'Werdlod'] | win.retefe | [] | 2018-01-07 | | | |
| | | Revenge RAT | [] | win.revenge_rat | [] | 2018-01-19 | | | |
| | | Rex | [] | elf.rex | [] | 2017-02-15 | | | |
| | | RGDoor | [] | win.rgdoor | [] | 2018-01-28 | | | |
| | | Rincux | [] | win.rincux | [] | 2017-03-23 | | | |
| | | Ripper ATM | [] | win.ripper_atm | [] | 2017-02-15 | | | |
| | | Roaming Mantis | [] | apk.roaming_mantis | [] | 2018-05-29 | | | |
| | | Rockloader | [] | win.rockloader | [] | 2016-04-20 | | | |
| | | Rofin | [] | win.rofin | [] | 2016-04-20 | | | |
| | | Rokku | [] | win.rokku | [] | 2016-04-20 | | | |
| | | RokRAT | [] | win.rokrat | [u'APT37'] | 2018-03-12 | | | |
| | | Rombertik | [u'CarbonGrabber'] | win.rombertik | [] | 2017-05-21 | | | |
| | | Romeo(Alfa,Bravo, ...) | [] | win.romeos | [u'Lazarus Group'] | 2017-05-17 | | | |
| | | Rootnik | [] | apk.rootnik | [] | 2017-02-02 | | | |
| | | Roseam | [] | win.roseam | [u'Wekby'] | 2016-12-28 | | | |
| | | Rover | [] | win.rover | [] | 2016-04-20 | | | |
| | | Rovnix | [u'Mayachok', u'Cidox', u'BkLoader'] | win.rovnix | [] | 2017-07-05 | | | |
| | | Royal DNS | [] | win.royal_dns | [u'Mirage'] | 2018-03-12 | | | |
| | | RoyalCli | [] | win.royalcli | [u'Mirage'] | 2018-03-12 | | | |
| | | RTM | [] | win.rtm | [] | 2017-04-06 | | | |
| | | Ruckguv | [] | win.ruckguv | [] | 2018-03-01 | | | |
| | | running_rat | [] | win.runningrat | [] | 2018-02-13 | | | |
| | | Rurktar | [u'RCSU'] | win.rurktar | [] | 2017-08-31 | | | |
| | | SAGE | [u'Saga'] | win.sage_ransom | [] | 2017-11-09 | | | |
| | | Sakula RAT | [u'Sakurel'] | win.sakula_rat | [u'Hurricane Panda'] | 2018-01-19 | | | |
| | | Salgorea | [] | win.salgorea | [u'APT32'] | 2018-03-14 | | | |
| | | Sality | [] | win.sality | [] | 2017-05-11 | | | |
| | | SamSam | [] | win.samsam | [u'Boss Spider'] | 2018-05-02 | | | |
| | | Saphyra | [] | py.saphyra | [] | 2017-02-15 | | | |
| | | Sarhust | [] | win.sarhust | [] | 2018-05-03 | | | |
| | | Satan Ransomware | [] | win.satan | [] | 2018-04-13 | | | |
| | | Satana | [] | win.satana | [] | 2018-01-11 | | | |
| | | Sathurbot | [] | win.sathurbot | [] | 2017-04-10 | | | |
| | | Satori | [] | elf.satori | [] | 2018-03-09 | | | |
| | | scanbox | [] | js.scanbox | [] | 2018-03-27 | | | |
| | | ScanPOS | [] | win.scanpos | [] | 2018-01-25 | | | |
| | | Schneiken | [] | win.schneiken | [] | 2018-04-27 | | | |
| | | Scote | [] | win.scote | [u'TopHat', u'DustySky'] | 2018-02-26 | | | |
| | | ScreenLocker | [] | win.screenlocker | [] | 2017-02-15 | | | |
| | | SeaDaddy | [] | win.seadaddy | [u'APT 29'] | 2017-05-03 | | | |
| | | SeaSalt | [] | win.seasalt | [u'Comment Crew'] | 2018-02-13 | | | |
| | | SeDll | [] | win.sedll | [u'Leviathan'] | 2018-06-13 | | | |
| | | Sedreco | [u'azzy', u'eviltoss'] | win.sedreco | [u'Sofacy'] | 2017-05-03 | | | |
| | | Seduploader | [u'jhuhugit', u'jkeyskw', u'downrage', u'carberplike'] | win.seduploader | [u'Sofacy'] | 2017-09-01 | | | |
| | | SendSafe | [] | win.sendsafe | [] | 2017-05-19 | | | |
| | | Serpico | [] | win.serpico | [] | 2017-02-15 | | | |
| | | ShadowPad | [u'XShellGhost'] | win.shadowpad | [u'Axiom'] | 2017-11-21 | | | |
| | | Shakti | [] | win.shakti | [] | 2017-02-15 | | | |
| | | SHAPESHIFT | [] | win.shapeshift | [u'APT33'] | 2017-09-29 | | | |
| | | shareip | [u'remotecmd'] | win.shareip | [u'UPS'] | 2018-04-17 | | | |
| | | SHARPKNOT | [u'Bitrep'] | win.sharpknot | [u'Silent Chollima'] | 2018-04-13 | | | |
| | | ShellBind | [] | elf.shellbind | [] | 2017-08-31 | | | |
| | | ShellLocker | [] | win.shelllocker | [] | 2017-02-15 | | | |
| | | Shifu | [] | win.shifu | [] | 2016-04-20 | | | |
| | | Shim RAT | [] | win.shimrat | [u'Mofang'] | 2018-02-13 | | | |
| | | Shishiga | [] | elf.shishiga | [] | 2017-05-01 | | | |
| | | Shujin | [] | win.shujin | [] | 2018-02-21 | | | |
| | | Shurl0ckr | [] | win.shurl0ckr | [] | 2018-02-27 | | | |
| | | Shylock | [u'Caphaw'] | win.shylock | [] | 2018-02-04 | | | |
| | | Sierra(Alfa,Bravo, ...) | [u'Destover'] | win.sierras | [u'Lazarus Group'] | 2018-04-27 | | | |
| | | Siggen6 | [] | win.siggen6 | [] | 2016-12-28 | | | |
| | | Silence | [] | win.silence | [] | 2017-11-17 | | | |
| | | Simda | [u'iBank'] | win.simda | [] | 2018-03-21 | | | |
| | | Sinowal | [u'Quarian', u'Mebroot', u'Theola', u'Anserin'] | win.sinowal | [] | 2018-01-14 | | | |
| | | Sisfader | [] | win.sisfader | [] | 2018-06-13 | | | |
| | | Skarab Ransom | [] | win.skarab_ransom | [] | 2017-12-14 | | | |
| | | Skygofree | [] | apk.skygofree | [] | 2018-02-07 | | | |
| | | Skyplex | [] | win.skyplex | [] | 2017-02-15 | | | |
| | | Slave | [] | win.slave | [] | 2017-05-22 | | | |
| | | Slempo | [u'SlemBunk'] | apk.slempo | [] | 2018-01-29 | | | |
| | | Slingshot | [] | win.slingshot | [] | 2018-03-12 | | | |
| | | Slocker | [] | apk.slocker | [] | 2017-07-07 | | | |
| | | smac | [u'speccom'] | win.smac | [] | 2018-01-25 | | | |
| | | SmokeLoader | [u'Dofoil'] | win.smokeloader | [] | 2018-04-20 | | | |
| | | Smominru | [u'Ismo'] | win.smominru | [] | 2018-02-07 | | | |
| | | SMSspy | [] | apk.smsspy | [] | 2017-11-09 | | | |
| | | SnatchLoader | [] | win.snatch_loader | [] | 2017-12-15 | | | |
| | | SNEEPY | [u'ByeByeShell'] | win.sneepy | [] | 2017-11-17 | | | |
| | | Snifula | [u'Ursnif'] | win.snifula | [] | 2017-05-30 | | | |
| | | Snojan | [] | win.snojan | [] | 2018-01-23 | | | |
| | | SNS Locker | [] | win.snslocker | [] | 2016-06-02 | | | |
| | | Socks5 Systemz | [] | win.socks5_systemz | [] | 2016-05-10 | | | |
| | | SocksBot | [] | win.socksbot | [u'Dropping Elephant'] | 2017-12-14 | | | |
| | | Solarbot | [u'Napolar'] | win.solarbot | [] | 2017-05-11 | | | |
| | | soraya | [] | win.soraya | [] | 2018-01-28 | | | |
| | | SOUNDBITE | [u'denis'] | win.soundbite | [u'APT32'] | 2018-04-26 | | | |
| | | Spamtorte | [] | elf.spamtorte | [] | 2017-02-15 | | | |
| | | Spora | [] | win.spora_ransom | [] | 2017-12-18 | | | |
| | | SpyBanker | [] | apk.spybanker | [] | 2017-02-24 | | | |
| | | SpyBot | [] | win.spybot | [] | 2016-04-26 | | | |
| | | SquirtDanger | [] | win.squirtdanger | [] | 2018-04-18 | | | |
| | | SslMM | [] | win.sslmm | [u'Naikon'] | | | | |
| | | Stabuniq | [] | win.stabuniq | [] | | | | |
| | | Stampedo | [] | win.stampedo | [] | 2017-02-15 | | | |
| | | Stantinko | [] | elf.stantinko | [] | 2017-12-07 | | | |
| | | StarCruft | [] | win.starcruft | [u'APT37'] | 2018-04-26 | | | |
| | | StarLoader | [] | win.starloader | [u'Sowbug'] | 2017-11-21 | | | |
| | | StarsyPound | [] | win.starsypound | [u'Comment Crew'] | 2018-02-10 | | | |
| | | Stealth Mango | [] | apk.stealthmango | [u'Stealth Mango'] | 2018-05-16 | | | |
| | | StealthAgent | [] | apk.stealthagent | [] | 2018-05-16 | | | |
| | | StegoLoader | [] | win.stegoloader | [] | 2017-02-15 | | | |
| | | Stinger | [] | win.stinger | [] | 2018-03-19 | | | |
| | | Stresspaint | [] | win.stresspaint | [] | 2018-04-20 | | | |
| | | StrongPity | [] | win.strongpity | [u'StrongPity'] | 2017-12-15 | | | |
| | | Stuxnet | [] | win.stuxnet | [] | 2017-05-12 | | | |
| | | SunOrcal | [] | win.sunorcal | [] | 2017-11-21 | | | |
| | | SuppoBox | [] | win.suppobox | [] | 2016-04-20 | | | |
| | | Svpeng | [] | apk.svpeng | [] | 2017-08-04 | | | |
| | | Swift? | [] | win.swift | [u'Lazarus Group'] | 2017-05-17 | | | |
| | | Switcher | [] | apk.switcher | [] | 2017-02-15 | | | |
| | | Sword | [] | win.sword | [u'Comment Crew'] | 2018-02-13 | | | |
| | | sykipot | [u'getkys'] | win.sykipot | [] | 2018-02-21 | | | |
| | | SynAck | [] | win.synack | [] | 2018-05-14 | | | |
| | | SyncCrypt | [] | win.synccrypt | [] | 2017-09-14 | | | |
| | | SynFlooder | [] | win.synflooder | [u'Cleaver'] | 2017-05-21 | | | |
| | | Synth Loader | [] | win.synth_loader | [] | 2017-02-15 | | | |
| | | Sys10 | [] | win.sys10 | [u'Naikon'] | | | | |
| | | Syscon | [] | win.syscon | [] | 2018-03-09 | | | |
| | | SysGet | [] | win.sysget | [u'DragonOK'] | 2017-02-15 | | | |
| | | SysScan | [] | win.sysscan | [] | 2017-02-15 | | | |
| | | systemd | [] | osx.systemd | [] | 2018-01-28 | | | |
| | | Szribi | [] | win.szribi | [] | 2018-01-17 | | | |
| | | TabMsgSQL | [] | win.tabmsgsql | [u'Comment Crew'] | 2018-02-13 | | | |
| | | taidoor | [u'simbot'] | win.taidoor | [] | 2018-02-10 | | | |
| | | Taleret | [] | win.taleret | [] | 2018-02-10 | | | |
| | | Tapaoux | [] | win.tapaoux | [u'DarkHotel'] | 2018-05-03 | | | |
| | | Tarsip | [] | win.tarsip | [u'Comment Crew'] | 2018-02-10 | | | |
| | | Tater PrivEsc | [] | ps1.tater | [] | 2017-02-04 | | | |
| | | tDiscoverer | [] | win.tdiscoverer | [u'APT 29'] | 2017-02-15 | | | |
| | | TDTESS | [] | win.tdtess | [u'Rocket Kitten'] | 2017-09-14 | | | |
| | | TeleBot | [] | win.telebot | [u'TeleBots', u'Sandworm'] | 2017-02-15 | | | |
| | | TeleDoor | [] | win.teledoor | [u'TeleBots', u'Sandworm'] | 2017-07-12 | | | |
| | | TeleRAT | [] | apk.telerat | [] | 2018-03-22 | | | |
| | | Tempedreve | [] | win.tempedreve | [] | 2016-04-20 | | | |
| | | TemptingCedar Spyware | [] | apk.tempting_cedar | [] | 2018-02-26 | | | |
| | | Terminator RAT | [u'Fakem RAT'] | win.terminator_rat | [] | 2018-01-21 | | | |
| | | TeslaCrypt | [] | win.teslacrypt | [] | 2018-03-01 | | | |
| | | Thanatos | [u'Alphabot'] | win.thanatos | [] | 2017-01-05 | | | |
| | | ThreeByte | [] | win.threebyte | [u'IXESHE'] | 2017-05-21 | | | |
| | | ThumbThief | [] | win.thumbthief | [] | | | | |
| | | ThunderShell | [] | ps.thundershell | [] | 2017-11-16 | | | |
| | | Tidepool | [] | win.tidepool | [u'Mirage'] | 2017-02-15 | | | |
| | | Tinba | [u'Zusy', u'TinyBanker', u'Illi'] | win.tinba | [] | 2017-08-01 | | | |
| | | TinyLoader | [] | win.tinyloader | [] | 2016-12-28 | | | |
| | | TinyNuke | [u'NukeBot', u'Nuclear Bot', u'MicroBankingTrojan', u'Xbot'] | win.tinynuke | [] | 2018-02-05 | | | |
| | | TinyTyphon | [] | win.tinytyphon | [u'Dropping Elephant'] | 2017-02-15 | | | |
| | | TinyZ | [u'Catelites Android Bot', u'MarsElite Android Bot'] | apk.tinyz | [u'cron'] | 2017-05-29 | | | |
| | | TinyZbot | [] | win.tinyzbot | [u'Cleaver'] | 2017-05-21 | | | |
| | | Tofsee | [u'Gheg'] | win.tofsee | [] | 2017-10-20 | | | |
| | | TorrentLocker | [] | win.torrentlocker | [] | 2017-05-11 | | | |
| | | TreasureHunter | [u'huntpos'] | win.treasurehunter | [] | 2018-05-14 | | | |
| | | Triada | [] | apk.triada | [] | 2018-02-26 | | | |
| | | TrickBot | [u'Trickster', u'TheTrick', u'TrickLoader'] | win.trickbot | [] | 2018-05-28 | | | |
| | | Trochilus RAT | [] | win.trochilus_rat | [u'Stone Panda'] | 2017-04-05 | | | |
| | | Troldesh | [u'Shade'] | win.troldesh | [] | 2017-09-07 | | | |
| | | Trump Bot | [] | elf.trump_bot | [] | 2017-07-12 | | | |
| | | Trump Ransom | [] | win.trump_ransom | [] | 2017-02-15 | | | |
| | | Tsifiri | [] | win.tsifiri | [] | 2016-05-10 | | | |
| | | Tsunami | [u'Amnesia', u'Radiation'] | elf.tsunami | [] | 2017-04-07 | | | |
| | | Turla RAT | [] | elf.turla_rat | [] | | | | |
| | | TURNEDUP | [] | win.turnedup | [u'APT33'] | 2017-09-29 | | | |
| | | Tyupkin | [] | win.tyupkin | [] | 2018-01-23 | | | |
| | | UACMe | [u'Akagi'] | win.uacme | [] | 2017-12-07 | | | |
| | | UDPoS | [] | win.udpos | [] | 2018-03-01 | | | |
| | | Uiwix | [] | win.uiwix | [] | 2017-05-20 | | | |
| | | Umbreon | [] | elf.umbreon | [] | 2017-02-15 | | | |
| | | Unidentified 001 | [] | win.unidentified_001 | [] | 2016-12-29 | | | |
| | | Unidentified 003 | [] | win.unidentified_003 | [] | 2016-12-29 | | | |
| | | Unidentified 006 | [] | win.unidentified_006 | [] | 2016-05-10 | | | |
| | | Unidentified 013 (Korean) | [] | win.unidentified_013_korean_malware | [] | 2017-04-29 | | | |
| | | Unidentified 020 (Vault7) | [] | win.unidentified_020_cia_vault7 | [u'Longhorn'] | 2017-05-02 | | | |
| | | Unidentified 022 (Ransom) | [] | win.unidentified_022_ransom | [] | 2017-04-29 | | | |
| | | Unidentified 023 | [] | win.unidentified_023 | [] | 2017-04-29 | | | |
| | | Unidentified 024 (Ransomware) | [] | win.unidentified_024_ransom | [] | | | | |
| | | Unidentified 025 (Clickfraud) | [] | win.unidentified_025_clickfraud | [] | 2017-04-29 | | | |
| | | Unidentified 028 | [] | win.unidentified_028 | [] | 2017-04-29 | | | |
| | | Unidentified 029 | [] | win.unidentified_029 | [] | 2017-07-05 | | | |
| | | Unidentified 031 | [] | win.unidentified_031 | [] | 2017-08-22 | | | |
| | | Unidentified 032 | [] | win.unidentified_032 | [u'Lazarus Group'] | 2017-09-14 | | | |
| | | Unidentified 033 | [] | win.unidentified_033 | [] | 2017-09-25 | | | |
| | | Unidentified 034 | [] | win.unidentified_034 | [] | 2017-09-26 | | | |
| | | Unidentified 035 | [] | win.unidentified_035 | [] | 2017-10-20 | | | |
| | | Unidentified 037 | [] | win.unidentified_037 | [] | 2017-11-16 | | | |
| | | Unidentified 038 | [] | win.unidentified_038 | [] | 2017-11-16 | | | |
| | | Unidentified 039 | [] | win.unidentified_039 | [] | 2017-11-16 | | | |
| | | Unidentified 041 | [] | win.unidentified_041 | [] | 2018-03-16 | | | |
| | | Unidentified 042 | [] | win.unidentified_042 | [u'Lazarus Group'] | 2018-03-28 | | | |
| | | Unidentified 043 | [] | win.unidentified_043 | [] | 2018-05-08 | | | |
| | | Unidentified 044 | [] | win.unidentified_044 | [] | 2018-05-17 | | | |
| | | Unidentified 045 | [] | win.unidentified_045 | [] | 2018-06-13 | | | |
| | | Unidentified 046 | [] | win.unidentified_046 | [] | 2018-06-13 | | | |
| | | Unidentified 047 | [] | win.unidentified_047 | [u'Dropping Elephant'] | 2018-06-13 | | | |
| | | Unidentified 048 (Lazarus?) | [] | win.unidentified_048 | [u'Lazarus Group'] | 2018-06-13 | | | |
| | | Unidentified 049 (Lazarus/RAT) | [] | win.unidentified_049 | [u'Lazarus Group'] | 2018-06-13 | | | |
| | | Unidentified APK 001 | [] | apk.unidentified_001 | [] | | | | |
| | | Unidentified APK 002 | [] | apk.unidentified_002 | [] | 2017-08-31 | | | |
| | | Unlock92 | [] | win.unlock92 | [] | 2018-03-20 | | | |
| | | UPAS | [u'Rombrast'] | win.upas | [] | 2018-06-13 | | | |
| | | Upatre | [] | win.upatre | [] | 2017-07-17 | | | |
| | | Urausy | [] | win.urausy | [] | | | | |
| | | UrlZone | [u'Bebloh', u'Shiotob'] | win.urlzone | [] | 2018-02-01 | | | |
| | | Uroburos | [] | osx.uroburos | [u'Turla Group'] | 2017-05-12 | | | |
| | | Uroburos | [u'Snake'] | win.uroburos | [u'Turla Group'] | 2018-03-12 | | | |
| | | Vawtrak | [u'NeverQuest'] | win.vawtrak | [] | 2017-12-16 | | | |
| | | Velso Ransomware | [] | win.velso | [] | 2018-02-13 | | | |
| | | Venus Locker | [] | win.venus_locker | [] | 2017-02-15 | | | |
| | | Vermin | [] | win.vermin | [] | 2018-01-30 | | | |
| | | Vflooder | [] | win.vflooder | [] | 2018-01-04 | | | |
| | | Viper RAT | [] | apk.viper_rat | [] | 2017-02-19 | | | |
| | | Virut | [] | win.virut | [] | 2018-03-02 | | | |
| | | VM Zeus | [u'VMzeus', u'ZeusVM', u'Zberp'] | win.vmzeus | [] | 2018-05-22 | | | |
| | | Volgmer | [u'FALLCHILL', u'Manuscrypt'] | win.volgmer | [u'Lazarus Group'] | 2017-11-21 | | | |
| | | Vreikstadi | [] | win.vreikstadi | [] | 2018-02-16 | | | |
| | | vSkimmer | [] | win.vskimmer | [] | 2018-04-26 | | | |
| | | w32times | [] | win.w32times | [u'UPS'] | 2018-04-13 | | | |
| | | WannaCryptor | [u'Wcry', u'WannaCry', u'Wana Decrypt0r'] | win.wannacryptor | [] | 2017-11-09 | | | |
| | | WaterSpout | [] | win.waterspout | [u'IXESHE'] | 2017-05-21 | | | |
| | | WebC2-AdSpace | [] | win.webc2_adspace | [u'Comment Crew'] | 2018-02-10 | | | |
| | | WebC2-Ausov | [] | win.webc2_ausov | [u'Comment Crew'] | 2018-02-13 | | | |
| | | WebC2-Bolid | [] | win.webc2_bolid | [u'Comment Crew'] | 2018-02-13 | | | |
| | | WebC2-Cson | [] | win.webc2_cson | [u'Comment Crew'] | 2018-02-10 | | | |
| | | WebC2-DIV | [] | win.webc2_div | [u'Comment Crew'] | 2018-02-10 | | | |
| | | WebC2-GreenCat | [] | win.webc2_greencat | [u'Comment Crew'] | 2018-02-10 | | | |
| | | WebC2-Head | [] | win.webc2_head | [u'Comment Crew'] | 2018-02-10 | | | |
| | | WebC2-Kt3 | [] | win.webc2_kt3 | [u'Comment Crew'] | 2018-02-10 | | | |
| | | WebC2-Qbp | [] | win.webc2_qbp | [u'Comment Crew'] | 2018-02-10 | | | |
| | | WebC2-Rave | [] | win.webc2_rave | [u'Comment Crew'] | 2018-02-13 | | | |
| | | WebC2-Table | [] | win.webc2_table | [u'Comment Crew'] | 2018-02-13 | | | |
| | | WebC2-UGX | [] | win.webc2_ugx | [u'Comment Crew'] | 2018-02-10 | | | |
| | | WebC2-Yahoo | [] | win.webc2_yahoo | [u'Comment Crew'] | 2018-02-10 | | | |
| | | WebMonitor RAT | [] | win.webmonitor | [] | 2018-04-24 | | | |
| | | WildFire | [] | win.wildfire | [] | 2016-12-28 | | | |
| | | win.flusihoc | [] | win.flusihoc | [] | 2017-10-09 | | | |
| | | win.gandcrab | [] | win.gandcrab | [] | 2018-05-14 | | | |
| | | win.glupteba | [] | win.glupteba | [] | 2018-03-26 | | | |
| | | win.medusa | [] | win.medusa | [] | 2017-12-22 | | | |
| | | win.phorpiex | [u'Trik'] | win.phorpiex | [] | 2018-06-13 | | | |
| | | win.remy | [] | win.remy | [] | 2018-03-14 | | | |
| | | win.spynet_rat | [] | win.spynet_rat | [] | | | | |
| | | win.triton | [u'Trisis', u'HatMan'] | win.triton | [] | 2018-01-22 | | | |
| | | win.unidentified_005 | [] | win.unidentified_005 | [] | | | | |
| | | WinMM | [] | win.winmm | [u'Naikon'] | | | | |
| | | Winnti | [] | osx.winnti | [u'Axiom'] | 2018-01-17 | | | |
| | | Winnti | [] | win.winnti | [u'Axiom'] | 2018-03-09 | | | |
| | | Winsloader | [] | win.winsloader | [u'Tropic Trooper'] | | | | |
| | | Wipbot | [] | win.wipbot | [u'Turla Group'] | 2018-05-14 | | | |
| | | WireLurker | [] | ios.wirelurker | [] | 2018-03-19 | | | |
| | | WireLurker | [] | osx.wirelurker | [] | 2018-03-17 | | | |
| | | WireX | [] | apk.wirex | [] | 2017-08-28 | | | |
| | | witchcoven | [] | js.witchcoven | [] | 2018-04-26 | | | |
| | | WMI Ghost | [u'Wimmie', u'Syndicasec'] | win.wmighost | [] | 2018-03-26 | | | |
| | | WMImplant | [] | ps1.wmimplant | [] | 2017-04-06 | | | |
| | | WndTest | [] | win.wndtest | [u'Cleaver'] | 2017-05-21 | | | |
| | | Wonknu | [] | win.wonknu | [] | 2018-04-17 | | | |
| | | woody | [] | win.woody | [] | 2018-04-26 | | | |
| | | Woolger | [u'WoolenLogger'] | win.woolger | [u'Rocket Kitten'] | 2017-05-21 | | | |
| | | WSO | [u'Webshell by Orb'] | php.wso | [u'Energetic Bear'] | 2018-04-24 | | | |
| | | X-Agent | [u'Popr-d30'] | apk.popr-d30 | [u'Sofacy'] | 2017-01-09 | | | |
| | | X-Agent | [u'splm', u'chopstick', u'fysbis'] | elf.xagent | [u'Sofacy'] | 2017-05-03 | | | |
| | | X-Agent | [] | osx.xagent | [u'Sofacy'] | 2017-03-28 | | | |
| | | X-Agent | [u'splm', u'chopstick'] | win.xagent | [u'Sofacy'] | 2017-05-03 | | | |
| | | X-Tunnel | [u'xaps'] | win.xtunnel | [u'Sofacy'] | 2017-05-03 | | | |
| | | Xaynnalc | [] | elf.xaynnalc | [] | 2017-03-28 | | | |
| | | Xbot | [] | apk.xbot | [] | 2017-09-14 | | | |
| | | XBot POS | [] | win.xbot_pos | [] | 2017-09-14 | | | |
| | | XBTL | [] | win.xbtl | [] | 2016-05-10 | | | |
| | | XOR DDoS | [] | elf.xorddos | [] | 2018-04-17 | | | |
| | | XP PrivEsc (CVE-2014-4076) | [] | win.xp_privesc | [u'Sofacy'] | 2017-02-15 | | | |
| | | Xpan | [] | win.xpan | [u'TeamXRat'] | 2017-02-15 | | | |
| | | XPCTRA | [u'Expectra'] | win.xpctra | [] | 2018-02-13 | | | |
| | | XRat | [] | apk.xrat | [] | 2017-09-14 | | | |
| | | XSLCmd | [] | osx.xslcmd | [] | 2017-02-15 | | | |
| | | xsPlus | [u'nokian'] | win.xsplus | [u'Naikon'] | | | | |
| | | Xtreme RAT | [u'ExtRat'] | win.extreme_rat | [u'Molerats'] | 2018-03-01 | | | |
| | | xxmm | [u'ShadowWalker'] | win.xxmm | [u'Tick'] | 2017-11-21 | | | |
| | | Yahoyah | [u'KeyBoy'] | win.yahoyah | [u'Tropic Trooper'] | 2017-02-15 | | | |
| | | YoungLotus | [u'DarkShare'] | win.younglotus | [] | 2018-05-28 | | | |
| | | yty | [] | win.yty | [u'Donot Team', u'EHDevel'] | 2018-03-12 | | | |
| | | Zebrocy | [] | win.zebrocy | [u'Sofacy'] | 2018-04-26 | | | |
| | | Zebrocy (AutoIT) | [] | win.zebrocy_au3 | [u'Sofacy'] | 2018-05-03 | | | |
| | | ZeroAccess | [] | win.zeroaccess | [] | 2016-04-26 | | | |
| | | ZeroT | [] | win.zerot | [] | 2017-02-04 | | | |
| | | Zeus | [] | win.zeus | [] | 2017-01-10 | | | |
| | | Zeus MailSniffer | [] | win.zeus_mailsniffer | [] | 2016-12-28 | | | |
| | | Zeus Sphinx | [] | win.zeus_sphinx | [] | 2018-01-21 | | | |
| | | Zeus SSL | [] | win.zeus_ssl | [] | 2018-01-22 | | | |
| | | Zezin | [] | win.zezin | [] | 2018-01-02 | | | |
| | | ZhCat | [] | win.zhcat | [] | 2018-04-17 | | | |
| | | ZhMimikatz | [] | win.zhmimikatz | [u'Cleaver'] | 2017-05-21 | | | |
| | | Zloader | [u'Zeus Terdot'] | win.zloader | [] | 2017-12-07 | | | |
| | | Zollard | [u'darlloz'] | elf.zollard | [] | 2018-04-17 | | | |
| | | ZooPark | [] | apk.zoopark | [] | 2018-05-08 | | | |
| | | ZoxPNG | [u'gresim'] | win.zoxpng | [] | 2018-04-20 | | | |
| | | Ztorg | [u'Qysly'] | apk.ztorg | [] | 2017-07-11 | | | |
| | | ZXShell | [u'Sensocode'] | win.zxshell | [] | 2017-07-12 | | | |
| | | Zyklon | [] | win.zyklon | [] | 2018-01-19 | | | |