Malware Families

Enter keywords to filter the families below

Common Name	Alternative Names	Name	Actors	Last Updated
Lumma Stealer	['LummaC2 Stealer']	win.lumma	[]	2025-04-17
Supper	[]	win.supper	[]	2025-04-17
Interlock	[]	win.interlock	[]	2025-04-17
Interlock	[]	elf.interlock	[]	2025-04-17
Berserk Stealer	[]	win.berserk_stealer	[]	2025-04-17
BLACKCOFFEE	['PNGRAT', 'gresim', 'ZoxPNG']	win.blackcoffee	['APT41', 'Aurora Panda', 'Leviathan']	2025-04-17
Derusbi	['PHOTO']	win.derusbi	['APT41', 'APT17', 'Leviathan', 'Stone Panda']	2025-04-17
HiKit	[]	win.hikit	['Aurora Panda', 'Hurricane Panda']	2025-04-17
WINELOADER	[]	win.wineloader	['APT29']	2025-04-16
SNOWLIGHT	[]	elf.snowlight	['UNC5174']	2025-04-16
GRAPELOADER	[]	win.grapeloader	['APT29']	2025-04-16
Lynx	[]	win.lynx	[]	2025-04-16
BeaverTail	[]	js.beavertail	['WageMole']	2025-04-10
InvisibleFerret	[]	py.invisibleferret	['WageMole']	2025-04-09
ResolverRAT	[]	win.resolver_rat	[]	2025-04-15
PortStarter	[]	win.portstarter	[]	2024-10-15
RN Stealer	[]	py.rn_stealer	['TraderTraitor']	2025-04-15
AIRASHI	[]	elf.airashi	[]	2025-04-10
BPFDoor	['JustForFun']	elf.bpfdoor	['Red Menshen']	2025-04-14
WhiteSnake Stealer	[]	win.whitesnake	[]	2025-04-14
neshta	[]	win.neshta	[]	2025-04-14
JSOutProx	[]	win.jsoutprox	['SOLAR SPIDER']	2024-04-08
GolangGhost	[]	osx.golangghost	[]	2025-04-09
FrostyFerret	[]	osx.frostyferret	['WageMole']	2025-04-09
Sheriff	[]	win.sheriff	[]	2025-04-10
Octowave Loader	[]	win.octowave	[]	2025-04-01
ReedBed	[]	win.reedbed	['MALLARD SPIDER', 'UNC4393']	2025-03-28
SPAWNSNARE	[]	elf.spawnsnare	[]	2025-04-11
RAILSETTER	[]	win.railsetter	[]	2025-04-11
Stealc	[]	win.stealc	[]	2025-04-11
Godzilla Webshell	[]	jsp.godzilla_webshell	[]	2025-04-11
Cobalt Strike	['Agentemis', 'BEACON', 'CobaltStrike', 'cobeacon']	win.cobalt_strike	['APT 29', 'APT32', 'APT41', 'AQUATIC PANDA', 'Anunak', 'Cobalt', 'Codoso', 'CopyKittens', 'DarkHydrus', 'Earth Baxia', 'FIN6', 'FIN7', 'Leviathan', 'Mustang Panda', 'Shell Crew', 'Stone Panda', 'TianWu', 'UNC1878', 'UNC2452', 'Winnti Umbrella']	2025-04-11
Rhysida	[]	elf.rhysida	[]	2025-04-11
MintsLoader	[]	js.mints_loader	[]	2025-04-11
FAKEUPDATES	['FakeUpdate', 'SocGholish']	js.fakeupdates	['GOLD PRELUDE']	2025-04-11
Broomstick	['CLEANBOOST', 'CleanUp', 'CleanUpLoader', 'Oyster']	win.broomstick	[]	2025-04-11
Remcos	['RemcosRAT', 'Remvio', 'Socmer']	win.remcos	['APT33', 'The Gorgon Group', 'UAC-0050']	2025-04-11
Rhysida	[]	win.rhysida	[]	2025-04-11
WarmCookie	['Badspace', 'Carrotstick', 'QUICKBIND']	win.warmcookie	[]	2025-04-11
HyperSSL	['SysUpdate']	elf.hyperssl	['APT27']	2023-03-13
GolangGhost	['BitStep RAT']	win.golangghost	[]	2025-04-10
Latrodectus	['BLACKWIDOW', 'IceNova', 'Latrodectus', 'Lotus']	win.latrodectus	[]	2025-02-10
Kematian Stealer	[]	win.kematian	[]	2025-04-11
Rhadamanthys	[]	win.rhadamanthys	['Sandworm']	2025-04-11
SilentPrism	[]	ps1.silent_prism	['Larva-208']	2025-04-11
DarkWisp	[]	ps1.dark_wisp	['Larva-208']	2025-04-11
INCONTROLLER	[]	win.incontroller	[]	2025-04-10
HijackLoader	['DOILoader', 'GHOSTPULSE', 'IDAT Loader', 'SHADOWLADDER']	win.hijackloader	[]	2025-04-10
Crocodilus	[]	apk.crocodilus	[]	2025-04-10
TsarBot	[]	apk.tsarbot	[]	2025-04-10
Salvador Stealer	[]	apk.salvador	[]	2025-04-10
Aisuru	[]	elf.aisuru	[]	2025-04-10
kitty-socks5	[]	elf.kitty_soks5	[]	2025-04-10
Deputy	[]	win.deputy	[]	2025-04-10
Black Basta	[]	elf.blackbasta	[]	2025-04-10
Black Basta	['no_name_software']	win.blackbasta	['GOLD REBELLION', 'STAC5143', 'Storm-0506', 'Storm-0826', 'TA2101', 'UNC3973', 'UNC4393']	2025-04-10
VIP Keylogger	[]	win.vipkeylogger	[]	2025-04-09
CurlBack RAT	[]	win.curlback	['SideCopy']	2025-04-09
badbazaar	[]	apk.badbazaar	['APT15']	2025-04-09
XenoRAT	[]	win.xenorat	[]	2025-04-09
ShadowPad	['POISONPLUG.SHADOW', 'XShellGhost']	win.shadowpad	['APT23', 'APT41', 'APT17', 'DAGGER PANDA', 'Earth Lusca', 'Tonto Team', 'WET PANDA']	2025-04-09
ValleyRAT	['Winos']	win.valley_rat	[]	2025-04-09
Rugmi	['Penguish']	win.rugmi	[]	2025-04-09
RansomHub	[]	win.ransomhub	['RansomHub']	2025-04-09
SmokeLoader	['Dofoil', 'Sharik', 'Smoke', 'Smoke Loader']	win.smokeloader	['SMOKY SPIDER', 'UAC-0006']	2025-04-09
Grenam	['Renamer', 'gnamer']	win.grenam	[]	2025-04-07
SystemBC	['Coroxy', 'DroxiDat']	win.systembc	[]	2025-03-05
Nitrogen Loader	[]	win.nitrogen	[]	2025-02-13
Auto-Color	[]	elf.auto_color	[]	2025-04-01
DOPLUGS	[]	win.doplugs	['MUSTANG PANDA']	2025-03-21
NetSupportManager RAT	['NetSupport']	win.netsupportmanager_rat	[]	2025-04-01
sLoad	['Starslord']	ps1.sload	[]	2025-04-01
AsyncRAT	[]	win.asyncrat	[]	2025-04-01
GootLoader	['SLOWPOUR']	js.gootloader	[]	2025-04-01
CHINACHOPPER	[]	win.chinachopper	['APT41', 'EMISSARY PANDA', 'GALLIUM', 'HAFNIUM', 'Hurricane Panda', 'Leviathan']	2025-03-28
reGeorg	[]	win.regeorg	[]	2025-03-28
Roshtyak	[]	win.roshtyak	[]	2025-03-27
Raspberry Robin	['RaspberryRobin', 'QNAP-Worm', 'LINK_MSIEXEC']	win.raspberry_robin	[]	2025-03-27
CoffeeLoader	[]	win.coffee_loader	[]	2025-03-27
RALord	[]	win.ralord	[]	2025-03-27
Adylkuzz	[]	win.adylkuzz	[]	2025-03-27
Anubis Backdoor	[]	py.anubisbackdoor	['FIN7']	2025-03-26
GhostSocks	[]	win.ghostsocks	[]	2025-03-26
FROZENHILL	[]	win.frozenhill	[]	2025-03-28
Koi Loader	[]	win.koiloader	[]	2024-12-09
Koi Stealer	[]	win.koistealer	[]	2024-12-09
Ballista	[]	elf.ballista	[]	2025-03-26
OtterCookie	[]	js.otter_cookie	['WageMole']	2025-02-17
Emmenhtal	['IDATDropper', 'PEAKLIGHT']	win.emmenhtal	[]	2025-03-25
Agent Tesla	['AgenTesla', 'AgentTesla', 'Negasteal']	win.agent_tesla	['SWEED']	2025-03-25
Vidar	[]	win.vidar	[]	2025-03-25
Spyder	[]	win.spyder	[]	2025-03-21
SodaMaster	['dfls', 'HEAVYPOT', 'DelfsCake']	win.sodamaster	['Stone Panda']	2025-03-21
RedTiger Stealer	['RedTiger Ste4ler', 'redtiger', 'redtiger-tools']	py.redtiger	[]	2025-03-21
Ymir	[]	win.ymir	[]	2025-03-21
Quasar RAT	['CinaRAT', 'QuasarRAT', 'Yggdrasil']	win.quasar_rat	['APT33', 'Dropping Elephant', 'Stone Panda', 'The Gorgon Group']	2025-03-21
r77	['r77 Rootkit']	win.r77	[]	2025-03-21
Pykspa	[]	win.pykspa	[]	2025-03-21
TeamTNT	[]	elf.teamtnt	[]	2025-03-21
Mirai	['Katana']	elf.mirai	[]	2025-03-21