Malware Families

Enter keywords to filter the families below

Common Name	Alternative Names	Name	Actors	Last Updated
WarmCookie	['Badspace', 'Carrotstick', 'QUICKBIND']	win.warmcookie	[]	2025-10-02
AkdoorTea	[]	win.akdoortea	['WageMole']	2025-10-02
Lumma Stealer	['LummaC2 Stealer']	win.lumma	['Angry Likho']	2025-10-02
GhostSocks	[]	win.ghostsocks	[]	2025-10-02
Broomstick	['CLEANBOOST', 'CleanUp', 'CleanUpLoader', 'Oyster']	win.broomstick	[]	2025-09-30
PteroGraphin	[]	ps1.ptero_graphin	['Gamaredon Group']	2025-10-01
DHCSpy	[]	apk.dhcspy	['MuddyWater']	2025-10-01
Akira	['REDBIKE']	elf.akira	['Storm-1567']	2025-10-01
Akira	['REDBIKE']	win.akira	['Storm-1567']	2025-10-01
Tropidoor	[]	win.tropidoor	['WageMole']	2025-09-30
AllaKore	[]	win.allakore	[]	2025-09-30
PylangGhost	[]	py.pylangghost	['WageMole']	2025-08-18
Aisuru	[]	elf.aisuru	[]	2025-09-30
BQTlock	[]	win.bqtlock	[]	2025-09-30
WannaCryptor	['Wana Decrypt0r', 'WannaCry', 'WannaCrypt', 'Wcry']	win.wannacryptor	['Lazarus Group']	2025-09-30
Latrodectus	['BLACKWIDOW', 'IceNova', 'Latrodectus', 'Lotus']	win.latrodectus	[]	2025-07-14
Aura Stealer	['AURA Stealer', 'AURASTEAL']	win.aurastealer	[]	2025-09-16
ValleyRAT	['Winos']	win.valley_rat	[]	2025-09-25
PseudoManuscrypt	[]	win.pseudo_manuscrypt	[]	2025-09-25
BeaverTail	[]	js.beavertail	['WageMole']	2025-09-22
InvisibleFerret	[]	py.invisibleferret	['WageMole']	2025-09-22
Supper	['SocksShell', 'ZAPCAT']	win.supper	['Vanilla Tempest']	2025-07-01
TamperedChef	[]	win.tampered_chef	[]	2025-09-25
YiBackdoor	[]	win.yibackdoor	[]	2025-09-24
Bert	[]	win.bert	[]	2025-09-23
Shai-Hulud	[]	js.shai_hulud	[]	2025-09-23
BaoLoader	[]	win.baoloader	[]	2025-09-23
CountLoader	[]	win.count_loader	[]	2025-09-23
Global	['GLOBAL GROUP']	win.global	[]	2025-09-23
BTMOB RAT	[]	apk.btmob	[]	2025-09-23
PUBLOAD	['ClaimLoader', 'PUBLOAD']	win.pubload	[]	2025-09-23
Yokai	[]	win.yokai	['MUSTANG PANDA']	2025-09-23
TONESHELL	[]	win.toneshell	['MUSTANG PANDA']	2025-09-23
SnakeDisk	[]	win.snake_disk	['MUSTANG PANDA']	2025-09-23
AsyncRAT	[]	win.asyncrat	[]	2025-09-23
SystemBC	[]	elf.systembc	[]	2025-09-23
SystemBC	['Coroxy', 'DroxiDat']	win.systembc	['Vanilla Tempest']	2025-09-23
Kazuar	[]	win.kazuar	['Turla']	2024-12-11
GolangGhost	['BitStep RAT', 'WeaselStore']	win.golangghost	['WageMole']	2025-09-22
Beavertail	[]	win.beavertail	['WageMole']	2025-09-22
OtterCookie	[]	js.otter_cookie	['WageMole']	2025-09-22
BeaverTail	[]	osx.beavertail	[]	2025-09-22
SmokeLoader	['Dofoil', 'Sharik', 'Smoke', 'Smoke Loader']	win.smokeloader	['SMOKY SPIDER', 'UAC-0006']	2025-09-17
GRUNT	['Covenant']	win.grunt	[]	2025-09-17
SLIMAGENT	[]	win.slimagent	['APT28']	2025-09-17
BEARDSHELL	[]	win.beardshell	['APT28']	2025-09-17
kkRAT	[]	win.kk_rat	[]	2025-09-17
Raven Stealer	[]	win.ravenstealer	[]	2025-09-17
AdaptixC2	[]	win.adaptix_c2	[]	2025-09-16
XWorm	[]	win.xworm	['Hive0137']	2025-09-16
ContagiousDrop	[]	js.contagious_drop	[]	2025-09-16
RandomQuery	[]	ps1.randomquery	['Kimsuky']	2025-09-16
3CX Backdoor	['SUDDENICON']	win.3cx_backdoor	['Lazarus Group']	2025-09-15
POOLRAT	['SIMPLESEA', 'SIMPLETEA']	osx.poolrat	['Lazarus Group']	2025-09-15
SimpleTea	['PondRAT', 'SimplexTea']	elf.simpletea	['Lazarus Group']	2025-09-15
BLINDINGCAN	['AIRDRY', 'ZetaNile']	win.blindingcan	['Lazarus Group']	2025-09-15
CLOUDBURST	['NickelLoader']	win.cloudburst	['Lazarus Group']	2025-09-15
ImprudentCook	[]	win.imprudentcook	['Lazarus Group']	2025-09-15
DRATzarus	['ThreatNeedle']	win.dratzarus	['Lazarus Group']	2025-09-15
miniBlindingCan	['AIRDRY.V2', 'EventHorizon']	win.miniblindingcan	['Lazarus Group']	2025-09-15
LambLoad	['OfficeCertTea']	win.lambload	['Lazarus Group']	2025-09-15
LightlessCan	[]	win.lightlesscan	['Lazarus Group']	2025-09-15
PostNapTea	['SIGNBT']	win.postnaptea	['Lazarus Group']	2025-09-15
ForestTiger	['ScoringMathTea']	win.forest_tiger	['Lazarus Group']	2025-09-15
WinInetLoader	['LIDSHOT']	win.wininetloader	['Lazarus Group']	2025-09-15
WebbyTea	[]	win.webbytea	['Lazarus Group']	2025-09-15
wAgentTea	['wAgent']	win.wagenttea	['Lazarus Group']	2025-09-15
SecondHandTea	[]	win.secondhandtea	['Lazarus Group']	2025-09-15
SnatchCrypto	['BackbitingTea']	win.snatchcrypto	['Lazarus Group']	2025-09-15
EvilConwi	[]	win.evilconwi	[]	2025-06-30
GONEPOSTAL	['Cordyceps', 'NOTDOOR']	win.gonepostal	['APT28']	2025-09-12
Pykspa	[]	win.pykspa	[]	2025-09-12
Pteranodon	['Pterodo']	win.pteranodon	['Gamaredon Group', 'Operation Armageddon']	2025-09-09
CastleRAT	[]	win.castle_rat	[]	2025-09-09
MostereRAT	[]	win.mostere_rat	[]	2025-09-09
RatOn	[]	apk.rat_on	[]	2025-09-09
Rhysida	[]	win.rhysida	['Vanilla Tempest']	2025-09-09
Merlin	[]	win.merlin	[]	2025-09-09
Cobalt Strike	['Agentemis', 'BEACON', 'CobaltStrike', 'cobeacon']	win.cobalt_strike	['APT 29', 'APT29', 'APT32', 'APT41', 'AQUATIC PANDA', 'Anunak', 'Cobalt', 'Codoso', 'CopyKittens', 'DarkHydrus', 'Earth Baxia', 'FIN6', 'FIN7', 'Leviathan', 'Mustang Panda', 'Shell Crew', 'Stone Panda', 'TianWu', 'UNC1878', 'UNC2452', 'Winnti Umbrella']	2025-09-09
TimbreStealer	[]	win.timbre_stealer	[]	2025-09-09
NightshadeC2	[]	win.nightshade_c2	[]	2025-09-09
NightshadeC2	[]	py.nightshade_c2	[]	2025-09-09
Rustonotto	['CHILLYCHINO']	win.rustonotto	['APT37']	2025-09-09
RunForestRun	['Blackhole', 'Sutra']	js.runforestrun	[]	2025-09-09
FireWood	[]	elf.firewood	['Gelsemium']	2025-09-09
LAMEHUG	[]	py.lamehug	['APT28']	2025-09-09
Stealerium	[]	win.stealerium	[]	2025-09-09
DEVMAN	[]	win.devman	['DragonForce', '[Unnamed group]']	2025-09-09
Felixroot	[]	win.felixroot	['GreyEnergy']	2025-09-09
Konni	[]	win.konni	['APT37']	2025-09-09
Loki Password Stealer (PWS)	['Burkina', 'Loki', 'LokiBot', 'LokiPWS']	win.lokipws	['SWEED', 'The Gorgon Group', 'Cobalt']	2025-09-09
Maze	['ChaCha']	win.maze	['FIN6', 'TA2101']	2025-09-09
AnchorMTea	[]	win.anchormtea	['Lazarus Group']	2025-09-09
Anchor	[]	win.anchor	['WIZARD SPIDER']	2025-09-09
Amadey	[]	win.amadey	[]	2025-09-09
Agent Tesla	['AgenTesla', 'AgentTesla', 'Negasteal']	win.agent_tesla	['SWEED']	2025-09-09
Carbanak	['Anunak', 'Sekur RAT']	win.carbanak	['FIN7']	2025-09-09
Carberp	[]	win.carberp	[]	2025-09-09
Cardinal RAT	[]	win.cardinal_rat	[]	2025-09-09
Meterpreter	[]	win.meterpreter	[]	2025-09-09