Enter keywords to filter the families below
| OS | | Common Name | Alternative Names | Name | Actors | Last Updated | Status |
|---|
| | | REvil | ['REvix'] | elf.revil | [] | 2022-10-10 | | | |
| | | Avoslocker | [] | elf.avoslocker | [] | 2022-10-10 | | | |
| | | BlackMatter | [] | elf.blackmatter | [] | 2022-10-10 | | | |
| | | Nightrunner | [] | asp.nightrunner | [] | 2022-10-07 | | | |
| | | PLEAD | [] | elf.plead | ['BlackTech'] | 2022-09-30 | | | |
| | | DcDcrypt | [] | win.dcdcrypt | [] | 2022-09-30 | | | |
| | | x4 | [] | win.x4 | [] | 2022-09-30 | | | |
| | | slnrat | [] | win.slnrat | [] | 2022-09-30 | | | |
| | | brute_ratel | [] | elf.brute_ratel | [] | 2022-09-30 | | | |
| | | doenerium | [] | js.doenerium | [] | 2022-09-30 | | | |
| | | ArrowRAT | [] | win.arrowrat | [] | 2022-09-29 | | | |
| | | MobileOrder | [] | apk.mobile_order | ['Scarlet Mimic'] | 2022-09-26 | | | |
| | | Veeam Dumper | ['Eamfo'] | win.veeam | [] | 2022-09-26 | | | |
| | | Ginp | [] | apk.ginp | [] | 2022-09-26 | | | |
| | | Slam | [] | win.slam | [] | 2022-09-26 | | | |
| | | MiKey | [] | elf.mikey | [] | 2022-09-19 | | | |
| | | Bvp47 | [] | elf.bvp47 | ['Equation Group'] | 2022-09-19 | | | |
| | | TUNNELFISH | [] | win.tunnelfish | [] | 2022-09-19 | | | |
| | | Hipid | [] | elf.hipid | ['BlackTech'] | 2022-09-19 | | | |
| | | Phoenix Keylogger | [] | win.phoenix_keylogger | [] | 2022-09-19 | | | |
| | | GuiInject | [] | ios.guiinject | [] | 2022-09-12 | | | |
| | | ActionSpy | ['AxeSpy'] | apk.actionspy | ['POISON CARP'] | 2022-09-12 | | | |
| | | PNGLoad | [] | win.png_load | [] | 2022-09-10 | | | |
| | | Moisha Ransomware | [] | win.moisha | [] | 2022-09-08 | | | |
| | | DarkEye | [] | win.darkeye | [] | 2022-09-07 | | | |
| | | Prynt Stealer | [] | win.prynt_stealer | [] | 2022-09-07 | | | |
| | | Mars | ['MarsDecrypt'] | win.mars | [] | 2022-09-07 | | | |
| | | MiniStealer | [] | win.ministealer | [] | 2022-09-06 | | | |
| | | Sysrv-hello | [] | win.sysrv_hello | [] | 2022-09-06 | | | |
| | | Asbit | [] | win.asbit | [] | 2022-09-01 | | | |
| | | scanbox | [] | js.scanbox | ['Leviathan'] | 2022-08-31 | | | |
| | | Nitrokod | [] | win.nitrokod | [] | 2022-08-31 | | | |
| | | SapphireMiner | [] | win.sapphire_miner | [] | 2022-08-31 | | | |
| | | ModPipe | [] | win.modpipe | [] | 2022-08-31 | | | |
| | | Derusbi | [] | elf.derusbi | [] | 2022-08-30 | | | |
| | | MESSAGETAP | [] | elf.messagetap | ['APT41'] | 2022-08-30 | | | |
| | | Lofy | ['LofyLife'] | py.lofy | [] | 2022-08-28 | | | |
| | | LetMeOut | [] | win.letmeout | [] | 2022-08-28 | | | |
| | | Anubis | ['Anubis Stealer'] | win.anubis | [] | 2022-08-28 | | | |
| | | CoalaBot | [] | win.coalabot | [] | 2022-08-28 | | | |
| | | Riltok | [] | apk.riltok | [] | 2022-08-28 | | | |
| | | xHelper | [] | apk.xhelper | [] | 2022-08-28 | | | |
| | | PhantomLance | ['PWNDROID1'] | apk.phantomlance | ['APT32'] | 2022-08-28 | | | |
| | | Unidentified ELF 006 (Tox Backdoor) | [] | elf.unidentified_006 | [] | 2022-08-26 | | | |
| | | Stealth Mango | [] | apk.stealthmango | ['Operation C-Major', 'Stealth Mango'] | 2022-08-26 | | | |
| | | PowerShower | [] | ps1.powershower | ['Inception Framework'] | 2022-08-26 | | | |
| | | HYPERSCRAPE | [] | win.hyperscrape | [] | 2022-08-25 | | | |
| | | XData | ['AESNI'] | win.xdata | [] | 2022-08-25 | | | |
| | | QuietSieve | [] | win.quietsieve | ['Gamaredon Group'] | 2022-08-25 | | | |
| | | DilongTrash | [] | win.dilongtrash | ['Gamaredon Group'] | 2022-08-25 | | | |
| | | DinoTrain | [] | win.dinotrain | ['Gamaredon Group'] | 2022-08-25 | | | |
| | | Exaramel | [] | elf.exaramel | ['TeleBots'] | 2022-08-25 | | | |
| | | Manjusaka | [] | elf.manjusaka | [] | 2022-08-22 | | | |
| | | SUGARUSH | [] | win.sugarush | [] | 2022-08-19 | | | |
| | | SUGARDUMP | [] | win.sugardump | [] | 2022-08-19 | | | |
| | | SUGARRUSH | [] | win.sugarrush | [] | 2022-08-19 | | | |
| | | NorthStar | [] | win.northstar | [] | 2022-08-19 | | | |
| | | Ozone RAT | [] | win.ozone | [] | 2022-08-18 | | | |
| | | Rshell | [] | elf.rshell | ['Earth Berberoka'] | 2022-08-18 | | | |
| | | BlackGuard | [] | win.blackguard | [] | 2022-08-17 | | | |
| | | DawDropper | [] | apk.dawdropper | [] | 2022-08-12 | | | |
| | | Unidentified 073 (Charming Kitten) | [] | win.unidentified_073 | ['Charming Kitten'] | 2020-03-03 | | | |
| | | SolidBit | [] | win.solidbit | [] | 2022-08-08 | | | |
| | | Denonia | [] | elf.denonia | [] | 2022-08-08 | | | |
| | | Sockbot | [] | win.sockbot | [] | 2022-08-08 | | | |
| | | QNAPCrypt | ['eCh0raix'] | elf.qnapcrypt | [] | 2022-02-10 | | | |
| | | Pandora RAT | ['Pandora hVNC RAT'] | win.pandora_rat | [] | 2022-08-05 | | | |
| | | Anubis Loader | ['Kraken', 'Pepega'] | win.anubis_loader | [] | 2022-08-05 | | | |
| | | Ousaban | [] | win.ousaban | [] | 2022-08-05 | | | |
| | | Sorillus RAT | [] | jar.sorillus | [] | 2022-08-02 | | | |
| | | TEARDROP | [] | win.teardrop | ['UNC2452'] | 2022-08-02 | | | |
| | | Raindrop | [] | win.raindrop | ['UNC2452'] | 2022-08-02 | | | |
| | | OopsIE | [] | win.oopsie | ['OilRig'] | 2022-07-29 | | | |
| | | Xbash | [] | elf.xbash | ['Iron Group'] | 2022-07-29 | | | |
| | | RelicRace | [] | win.relic_race | [] | 2022-07-29 | | | |
| | | TinyZbot | [] | win.tinyzbot | ['Cleaver'] | 2022-07-29 | | | |
| | | Eternity Ransomware | [] | win.eternity_ransomware | [] | 2022-07-28 | | | |
| | | Eternity Worm | [] | win.eternity_worm | [] | 2022-07-28 | | | |
| | | GoMet | [] | win.gomet | [] | 2022-07-27 | | | |
| | | CASHY200 | [] | ps1.cashy200 | [] | 2022-07-25 | | | |
| | | Snugy | [] | ps1.snugy | [] | 2022-07-25 | | | |
| | | oRAT | [] | osx.orat | [] | 2022-07-25 | | | |
| | | BIOPASS | [] | win.biopass | ['APT41'] | 2022-07-25 | | | |
| | | Khonsari | [] | win.khonsari | [] | 2022-07-25 | | | |
| | | TelegramGrabber | [] | win.telegram_grabber | ['Charming Kitten'] | 2022-07-25 | | | |
| | | Lightning Framework | [] | elf.lightning | [] | 2022-07-25 | | | |
| | | Backdoorit | ['backd00rit'] | elf.backdoorit | [] | 2022-07-15 | | | |
| | | Caligula | [] | elf.caligula | [] | 2022-07-15 | | | |
| | | Unidentified 093 (Sidewinder) | [] | win.unidentified_093 | ['RAZOR TIGER'] | 2022-07-15 | | | |
| | | Pirrit | [] | osx.pirrit | [] | 2022-07-13 | | | |
| | | Wroba | [] | apk.wroba | [] | 2022-07-13 | | | |
| | | FunkyBot | [] | apk.funkybot | ['Yanbian Gang'] | 2022-07-13 | | | |
| | | AlmondRAT | [] | win.almondrat | ['HAZY TIGER'] | 2022-07-13 | | | |
| | | T-Cmd | ['t_cmd'] | win.t_cmd | [] | 2022-07-13 | | | |
| | | QvoidStealer | ['Qvoid-Token-Grabber'] | win.qvoidstealer | [] | 2022-07-13 | | | |
| | | HavanaCrypt | [] | win.havana_crypt | [] | 2022-07-13 | | | |
| | | CodeCore | [] | win.code_core | [] | 2022-07-13 | | | |
| | | CobaltMirage FRP | [] | win.cobaltmirage_tunnel | [] | 2022-07-13 | | | |
| | | ChromeBack | [] | js.chromeback | [] | 2022-07-13 | | | |
| | | Rozena | [] | win.rozena | [] | 2022-07-12 | | | |