Malware Families

Enter keywords to filter the families below

Common Name	Alternative Names	Name	Actors	Last Updated
NikiTeaR	[]	win.nikitear	['Kimsuky']	2025-11-19
Vidar	[]	win.vidar	[]	2025-11-19
Pureland	[]	osx.pureland	[]	2025-11-19
KeySteal	[]	osx.keysteal	[]	2025-11-19
EggShell RAT	[]	osx.eggshell_rat	[]	2025-11-19
CloudMensis	['BadRAT']	osx.cloud_mensis	[]	2025-11-19
Odyssey Stealer	[]	osx.odyssey_stealer	[]	2025-11-19
Poseidon Stealer	['Rodrigo Stealer']	osx.poseidonstealer	[]	2025-11-19
Warp Stealer	[]	win.warp_stealer	[]	2025-11-19
DRATzarus	['ThreatNeedle', 'ThreatNeedleTea']	win.dratzarus	['Lazarus Group']	2025-11-19
NikiHTTP	[]	win.nikihttp	['Kimsuky']	2025-10-28
RONINGLOADER	[]	win.roningloader	[]	2025-11-18
Abyss Locker	['elf.hellokitty']	elf.abyss	[]	2025-03-10
GodRAT	[]	win.godrat	['APT41']	2025-11-18
Beavertail	[]	win.beavertail	['WageMole']	2025-11-17
PXA Stealer	['PXAStealer', 'PXA']	py.pxa_stealer	[]	2025-11-17
TAMECAT	[]	vbs.tamecat	['APT42']	2025-11-14
SilentSweeper	[]	win.silent_sweeper	[]	2025-11-13
Laplas (Reverseshell)	[]	win.laplas_shell	[]	2025-11-13
Shadow RAT	[]	win.shadow_rat	[]	2025-11-13
FINALDRAFT	[]	win.finaldraft	[]	2025-11-13
RAILSETTER	[]	win.railsetter	[]	2025-11-13
Godzilla Webshell	[]	jsp.godzilla_webshell	[]	2025-11-13
Unidentified 093 (Sidewinder)	[]	win.unidentified_093	['RAZOR TIGER']	2025-11-13
RunForestRun	['Blackhole', 'Sutra']	js.runforestrun	[]	2025-11-13
GootKit	['Waldek', 'Xswkit', 'talalpek']	win.gootkit	[]	2025-11-13
PureRAT	['PureHVNC', 'ResolverRAT']	win.pure_rat	[]	2025-11-13
Pterois	[]	win.pterois	['Swan Vector']	2025-11-13
Meterpreter	[]	win.meterpreter	[]	2025-11-13
Unidentified PS 005 (Telegram Bot)	[]	ps1.unidentified_005	['YoroTrooper']	2025-11-13
FULLMETAL	[]	win.fullmetal	[]	2025-11-13
GootLoader	['SLOWPOUR']	js.gootloader	['Storm-0249']	2025-11-11
MAYBEROBOT	['', 'SIMPLEFIX']	win.mayberobot	['Callisto']	2025-11-10
FudModule	['LIGHTSHOW']	win.fudmodule	['Lazarus Group']	2025-11-10
LANDFALL	[]	apk.landfall	[]	2025-11-09
Cactus	[]	win.cactus	[]	2025-11-09
Cicada3301	[]	win.cicada3301	[]	2025-11-09
Clop	[]	win.clop	['TA505']	2025-11-09
Royal Ransom	[]	win.royal_ransom	[]	2025-11-09
Silence	['TrueBot']	win.silence	['Silence group', 'TA505']	2025-11-09
PLAY	['PlayCrypt']	win.play	[]	2025-11-09
RansomHub	[]	win.ransomhub	['RansomHub']	2025-11-09
LockBit	['ABCD Ransomware']	win.lockbit	[]	2025-11-09
Aisuru	[]	elf.aisuru	[]	2025-11-08
Lumma Stealer	['LummaC2 Stealer']	win.lumma	['Angry Likho']	2025-11-05
VShell	[]	win.vshell	[]	2025-11-05
Agent Tesla	['AgenTesla', 'AgentTesla', 'Negasteal']	win.agent_tesla	['SWEED']	2025-11-05
Dante	[]	win.dante	[]	2025-11-05
BQTlock	[]	elf.bqtlock	[]	2025-11-05
PolarEdge	[]	elf.polaredge	[]	2025-11-05
MetaStealer	[]	win.metastealer	['UNC5537']	2025-11-05
LinkPro	[]	elf.linkpro	[]	2025-11-03
JADESNOW	['ChainedDown']	js.jadesnow	[]	2025-11-03
Kamasers	[]	win.kamasers	[]	2025-10-31
PostNapTea	['SIGNBT']	win.postnaptea	['Lazarus Group']	2025-10-31
wAgentTea	['wAgent']	win.wagenttea	['Lazarus Group']	2025-10-31
Bankshot	['COPPERHEDGE', 'FoggyBrass']	win.bankshot	['Lazarus Group']	2025-10-31
EntryShell	[]	win.entryshell	[]	2025-10-29
SparrowDoor	[]	win.sparrow_door	['GhostEmperor']	2025-10-29
ShadowPad	['POISONPLUG.SHADOW', 'XShellGhost']	win.shadowpad	['APT23', 'APT41', 'APT17', 'DAGGER PANDA', 'Earth Lusca', 'Tonto Team', 'WET PANDA']	2025-10-29
DracuLoader	[]	win.dracu_loader	['Earth Estries']	2025-10-29
SNAPPYBEE	['Deed RAT', 'POISONPLUG.DEED']	win.snappybee	['Earth Estries']	2025-10-29
BUSHWALK	[]	elf.bushwalk	[]	2025-10-28
PITFUEL	[]	elf.pitfuel	[]	2025-10-28
PITSOCK	[]	elf.pitsock	[]	2025-10-28
PITHOOK	[]	elf.pithook	[]	2025-10-28
PulsarTea	[]	win.pulsartea	['Lazarus Group']	2025-10-28
Kubo Injector	[]	elf.kubo_injector	[]	2025-10-28
PylangGhost	[]	py.pylangghost	['WageMole']	2025-10-20
LockBit	[]	elf.lockbit	[]	2025-10-22
Princess	[]	apk.princess	[]	2025-10-24
BlindEDR	[]	win.blind_edr	[]	2025-10-23
NOROBOT	['BAITSWITCH']	win.norobot	['Callisto']	2025-10-22
MedusaLocker	['AKO Ransomware', 'AKO Doxware', 'MedusaReborn']	win.medusalocker	[]	2025-10-22
YESROBOT	[]	win.yesrobot	['Callisto']	2025-10-22
GlassWorm	[]	js.glassworm	[]	2025-10-21
TOLLBOOTH	['HijackServer IIS']	win.tollbooth	[]	2025-10-22
vGet	[]	elf.vget	[]	2025-10-20
OtterCandy	['HardHatRAT', 'UNSEENMINK']	js.ottercandy	[]	2025-10-22
Bofamet	[]	win.bofamet	[]	2025-10-21
ACR Stealer	[]	win.acr_stealer	[]	2025-10-21
NightshadeC2	['CastleRAT']	win.nightshade_c2	[]	2025-10-20
TONESHELL	[]	win.toneshell	['MUSTANG PANDA']	2025-09-23
Tendyron	[]	win.tendyron_dropper	['TA410']	2025-10-15
DanderSpritz	['Dsz']	win.danderspritz	[]	2025-10-20
vxRat	[]	win.vx_rat	[]	2025-10-20
JSOutProx	[]	win.jsoutprox	['SOLAR SPIDER']	2024-04-08
GolangGhost	['BitStep RAT', 'WeaselStore']	win.golangghost	['WageMole']	2025-10-20
AkdoorTea	[]	win.akdoortea	['WageMole']	2025-10-20
Tropidoor	[]	win.tropidoor	['WageMole']	2025-10-20
ClipBanker	[]	win.clipbanker	[]	2025-10-20
CHINACHOPPER	[]	win.chinachopper	['APT41', 'EMISSARY PANDA', 'GALLIUM', 'HAFNIUM', 'Hurricane Panda', 'Leviathan']	2025-10-20
MimiKatz	[]	win.mimikatz	['APT10', 'APT32', 'Anunak', 'GALLIUM']	2025-10-20
Lookback	[]	win.lookback	['TA410']	2025-10-20
Brute Ratel C4	['BOLDBADGER', 'BruteRatel']	win.brute_ratel_c4	[]	2025-10-15
WRECKSTEEL	[]	ps1.wrecksteel	[]	2025-10-15
HOMESTEEL	[]	vbs.homesteel	[]	2025-10-15
Amatera	[]	win.amatera	[]	2025-10-15
GIFTEDCROOK	[]	win.giftedcrook	['UAC-0226']	2025-10-15
StrelaStealer	[]	win.strelastealer	[]	2025-10-15