| | | Janicab | [] | vbs.janicab | ['Evilnum'] | 2022-12-14 | | | |
| | | Chaos | [] | elf.chaos | [] | 2022-12-14 | | | |
| | | CreepySnail | [] | win.creepysnail | ['POLONIUM'] | 2022-12-12 | | | |
| | | CreepExfil | [] | win.creep_exfil | ['POLONIUM'] | 2022-12-12 | | | |
| | | MegaCreep | [] | win.megacreep | ['POLONIUM'] | 2022-10-12 | | | |
| | | CyclopsBlink | [] | elf.cyclops_blink | [] | 2022-12-12 | | | |
| | | KoiVM | [] | win.koivm | [] | 2022-12-05 | | | |
| | | PsiX | ['PsiXBot'] | win.psix | [] | 2022-11-28 | | | |
| | | STARWHALE | ['Canopy', 'SloughRAT'] | vbs.starwhale | ['MuddyWater'] | 2022-12-02 | | | |
| | | COZYDUKE | ['CozyCar', 'Cozer', 'CozyBear', 'EuroAPT'] | win.cozyduke | ['APT29'] | 2022-12-01 | | | |
| | | Cobian RAT | [] | win.cobian_rat | [] | 2022-12-01 | | | |
| | | win.unidentified_063 | [] | win.unidentified_063 | [] | | | | |
| | | AXLocker | [] | win.axlocker | [] | 2022-11-21 | | | |
| | | Inlock | [] | win.inlock | [] | 2022-11-21 | | | |
| | | dnWipe | [] | win.dnwipe | [] | 2022-11-21 | | | |
| | | NominatusToxicBattery | [] | win.nominatus_toxic_battery | [] | 2022-11-21 | | | |
| | | DBoxAgent | [] | win.dboxagent | ['APT41'] | 2022-11-18 | | | |
| | | SerialVlogger | [] | win.serialvlogger | ['APT41'] | 2022-11-18 | | | |
| | | Charger | [] | apk.charger | [] | 2022-11-18 | | | |
| | | Caja | [] | elf.caja | ['APT32'] | 2022-11-15 | | | |
| | | MiniDuke | [] | win.miniduke | ['APT29'] | 2022-11-15 | | | |
| | | neshta | [] | win.neshta | [] | 2022-11-15 | | | |
| | | ShellLocker | [] | win.shelllocker | [] | 2022-11-15 | | | |
| | | Bizzaro | [] | win.bizarro | [] | 2022-11-15 | | | |
| | | CoViper | [] | win.coviper | [] | 2022-11-15 | | | |
| | | LimePad | [] | win.limepad | ['Operation C-Major'] | 2022-11-12 | | | |
| | | RapidStealer | [] | win.rapid_stealer | ['IXESHE'] | 2022-11-12 | | | |
| | | Gwisin | [] | win.gwisin | [] | 2022-11-11 | | | |
| | | RatMilad | [] | apk.ratmilad | [] | 2022-11-09 | | | |
| | | StealthWorker Go | [] | win.stealthworker | [] | 2022-11-09 | | | |
| | | Apollo | [] | win.apollo | [] | 2022-11-05 | | | |
| | | AnchorDNS | [] | elf.anchor_dns | [] | 2022-11-03 | | | |
| | | win.pyfiledel | [] | win.pyfiledel | [] | 2022-11-03 | | | |
| | | Fodcha | [] | elf.fodcha | [] | 2022-11-01 | | | |
| | | FurBall | [] | apk.furball | ['Domestic Kitten'] | 2022-10-30 | | | |
| | | Trump Bot | [] | elf.trump_bot | [] | 2022-10-25 | | | |
| | | GamePlayerFramework | [] | win.game_player_framework | [] | 2022-10-25 | | | |
| | | Icarus | [] | win.icarus | [] | 2022-10-14 | | | |
| | | BluStealer | ['a310logger'] | win.blustealer | [] | 2022-06-09 | | | |
| | | TeamSpy | ['TVSPY', 'TeamViewerENT', 'TVRAT'] | win.teamspy | [] | 2022-10-14 | | | |
| | | AllcomeClipper | [] | win.allcomeclipper | [] | 2022-10-14 | | | |
| | | DeepCreep | [] | win.deepcreep | ['POLONIUM'] | 2022-10-12 | | | |
| | | Unidentified 097 (Polonium Keylogger) | [] | win.unidentified_097 | ['POLONIUM'] | 2022-10-12 | | | |
| | | Avoslocker | [] | elf.avoslocker | [] | 2022-10-10 | | | |
| | | BlackMatter | [] | elf.blackmatter | [] | 2022-10-10 | | | |
| | | RedAlert Ransomware | ['N13V'] | elf.red_alert | [] | 2022-10-10 | | | |
| | | REvil | ['REvix'] | elf.revil | [] | 2022-10-10 | | | |
| | | Nightrunner | [] | asp.nightrunner | [] | 2022-10-07 | | | |
| | | PLEAD | [] | elf.plead | ['BlackTech'] | 2022-09-30 | | | |
| | | DcDcrypt | [] | win.dcdcrypt | [] | 2022-09-30 | | | |
| | | x4 | [] | win.x4 | [] | 2022-09-30 | | | |
| | | slnrat | [] | win.slnrat | [] | 2022-09-30 | | | |
| | | brute_ratel | [] | elf.brute_ratel | [] | 2022-09-30 | | | |
| | | doenerium | [] | js.doenerium | [] | 2022-09-30 | | | |
| | | ArrowRAT | [] | win.arrowrat | [] | 2022-09-29 | | | |
| | | MobileOrder | [] | apk.mobile_order | ['Scarlet Mimic'] | 2022-09-26 | | | |
| | | Veeam Dumper | ['Eamfo'] | win.veeam | [] | 2022-09-26 | | | |
| | | Ginp | [] | apk.ginp | [] | 2022-09-26 | | | |
| | | Slam | [] | win.slam | [] | 2022-09-26 | | | |
| | | MiKey | [] | elf.mikey | [] | 2022-09-19 | | | |
| | | Bvp47 | [] | elf.bvp47 | ['Equation Group'] | 2022-09-19 | | | |
| | | TUNNELFISH | [] | win.tunnelfish | [] | 2022-09-19 | | | |
| | | Hipid | [] | elf.hipid | ['BlackTech'] | 2022-09-19 | | | |
| | | Phoenix Keylogger | [] | win.phoenix_keylogger | [] | 2022-09-19 | | | |
| | | GuiInject | [] | ios.guiinject | [] | 2022-09-12 | | | |
| | | ActionSpy | ['AxeSpy'] | apk.actionspy | ['POISON CARP'] | 2022-09-12 | | | |
| | | PNGLoad | [] | win.png_load | [] | 2022-09-10 | | | |
| | | DarkEye | [] | win.darkeye | [] | 2022-09-07 | | | |
| | | Prynt Stealer | [] | win.prynt_stealer | [] | 2022-09-07 | | | |
| | | Mars | ['MarsDecrypt'] | win.mars | [] | 2022-09-07 | | | |
| | | MiniStealer | [] | win.ministealer | [] | 2022-09-06 | | | |
| | | Sysrv-hello | [] | win.sysrv_hello | [] | 2022-09-06 | | | |
| | | Asbit | [] | win.asbit | [] | 2022-09-01 | | | |
| | | Nitrokod | [] | win.nitrokod | [] | 2022-08-31 | | | |
| | | SapphireMiner | [] | win.sapphire_miner | [] | 2022-08-31 | | | |
| | | ModPipe | [] | win.modpipe | [] | 2022-08-31 | | | |
| | | Derusbi | [] | elf.derusbi | [] | 2022-08-30 | | | |
| | | MESSAGETAP | [] | elf.messagetap | ['APT41'] | 2022-08-30 | | | |
| | | Lofy | ['LofyLife'] | py.lofy | [] | 2022-08-28 | | | |
| | | LetMeOut | [] | win.letmeout | [] | 2022-08-28 | | | |
| | | Anubis | ['Anubis Stealer'] | win.anubis | [] | 2022-08-28 | | | |
| | | CoalaBot | [] | win.coalabot | [] | 2022-08-28 | | | |
| | | Riltok | [] | apk.riltok | [] | 2022-08-28 | | | |
| | | PhantomLance | ['PWNDROID1'] | apk.phantomlance | ['APT32'] | 2022-08-28 | | | |
| | | Unidentified ELF 006 (Tox Backdoor) | [] | elf.unidentified_006 | [] | 2022-08-26 | | | |
| | | Stealth Mango | [] | apk.stealthmango | ['Operation C-Major', 'Stealth Mango'] | 2022-08-26 | | | |
| | | PowerShower | [] | ps1.powershower | ['Inception Framework'] | 2022-08-26 | | | |
| | | HYPERSCRAPE | [] | win.hyperscrape | [] | 2022-08-25 | | | |
| | | XData | ['AESNI'] | win.xdata | [] | 2022-08-25 | | | |
| | | QuietSieve | [] | win.quietsieve | ['Gamaredon Group'] | 2022-08-25 | | | |
| | | DilongTrash | [] | win.dilongtrash | ['Gamaredon Group'] | 2022-08-25 | | | |
| | | DinoTrain | [] | win.dinotrain | ['Gamaredon Group'] | 2022-08-25 | | | |
| | | Exaramel | [] | elf.exaramel | ['TeleBots'] | 2022-08-25 | | | |
| | | Manjusaka | [] | elf.manjusaka | [] | 2022-08-22 | | | |
| | | SUGARUSH | [] | win.sugarush | [] | 2022-08-19 | | | |
| | | SUGARDUMP | [] | win.sugardump | [] | 2022-08-19 | | | |
| | | SUGARRUSH | [] | win.sugarrush | [] | 2022-08-19 | | | |
| | | NorthStar | [] | win.northstar | [] | 2022-08-19 | | | |
| | | Rshell | [] | elf.rshell | ['Earth Berberoka'] | 2022-08-18 | | | |
| | | BlackGuard | [] | win.blackguard | [] | 2022-08-17 | | | |