Malware Families

Enter keywords to filter the families below

Common Name	Alternative Names	Name	Actors	Last Updated
TgToxic	[]	apk.tgtoxic	[]	2025-08-25
ToxicPanda	[]	apk.toxic_panda	[]	2025-08-25
SilentPrism	[]	ps1.silent_prism	['Larva-208']	2025-08-25
Fickle Stealer	[]	win.fickle	[]	2025-08-25
XenArmor	['XenArmor Suite']	win.xenarmor	[]	2023-05-10
donut_injector	['Donut']	win.donut_injector	[]	2025-08-25
Luna Grabber	[]	py.lunagrabber	[]	2025-08-22
ApolloShadow	[]	win.apollo_shadow	['Turla']	2025-08-22
QuirkyLoader	[]	win.quirkyloader	[]	2025-08-22
Dridex	[]	win.dridex	['Evil Corp', 'INDRIK SPIDER', 'TA505']	2024-04-15
SoundBill	[]	win.soundbill	[]	2025-08-21
PicassoLoader	[]	win.picasso_loader	['Ghostwriter']	2025-08-26
XenoRAT	[]	win.xenorat	[]	2025-08-20
WarLock	[]	win.warlock	[]	2025-08-20
HawkEye Keylogger	['HawkEye', 'HawkEye Reborn', 'Predator Pain']	win.hawkeye_keylogger	[]	2025-08-20
VELETRIX	[]	win.veletrix	[]	2025-08-19
AgendaCrypt	['Agenda', 'Qilin']	win.agendacrypt	[]	2025-08-19
Qilin	[]	elf.qilin	[]	2025-08-19
Morpheus Loader	[]	win.morpheus	[]	2025-08-19
PS1Bot	[]	php.ps1bot	[]	2025-08-18
Nitrogen Ransomware	[]	win.nitrogen_ransomware	[]	2025-08-18
HijackLoader	['DOILoader', 'GHOSTPULSE', 'IDAT Loader', 'SHADOWLADDER']	win.hijackloader	[]	2025-08-18
Plague	[]	elf.plague	[]	2025-08-18
ERMAC	[]	apk.ermac	[]	2025-08-18
Cmimai Stealer	[]	win.cmimai	[]	2025-08-18
magecart	[]	js.magecart	['FIN6', 'MageCart']	2025-08-18
SmartLoader	[]	win.smartloader	[]	2025-08-18
Raspberry Robin	['RaspberryRobin', 'QNAP-Worm', 'LINK_MSIEXEC']	win.raspberry_robin	[]	2025-08-15
MintsLoader	[]	js.mints_loader	[]	2025-08-15
Parrot TDS	[]	js.parrot_tds	[]	2025-08-15
Parrot TDS WebShell	[]	php.parrot_tds_shell	[]	2025-08-15
FAKEUPDATES	['FakeUpdate', 'GhoLoader', 'SocGholish']	js.fakeupdates	['GOLD PRELUDE']	2025-08-15
Nova Stealer	['Malicord']	win.nova	[]	2025-08-15
SafePay	[]	win.safepay	[]	2025-08-15
BlankGrabber	[]	py.blankgrabber	[]	2025-08-15
404 Keylogger	['404KeyLogger', 'Snake Keylogger']	win.404keylogger	[]	2025-08-15
Kimsuky	[]	win.kimsuky	['Kimsuki', 'Kimsuky']	2025-08-15
RN Stealer	[]	py.rn_stealer	['TraderTraitor']	2025-07-29
Manuscrypt	[]	osx.manuscrypt	['Lazarus Group']	2025-07-29
Volgmer	['FALLCHILL', 'Manuscrypt']	win.volgmer	['Lazarus Group']	2025-07-29
Scavenger	['scavenger', 'SCVNGR', 'scvngr']	win.scavenger	[]	2025-07-29
WEEVILPROXY	['JSCEAL']	js.weevilproxy	[]	2025-08-15
CASTLELOADER	[]	win.castleloader	[]	2025-07-28
Epsilon Red	['BlackCocaine']	win.epsilon_red	[]	2025-07-28
OceanLotus	[]	osx.oceanlotus	['APT32']	2025-07-28
Remo	['PlayPraetor']	apk.remo	[]	2025-07-28
Coper	['ExobotCompact', 'Octo']	apk.coper	[]	2025-10-28
SpyMax	[]	apk.spymax	[]	2025-07-28
BlackSuit	[]	win.blacksuit	[]	2025-07-28
Chaos	['FakeRyuk', 'RyukJoke', 'Yashma']	win.chaos	[]	2025-07-28
BlackSuit	[]	elf.blacksuit	[]	2025-07-28
Royal Ransom	['Royal_unix', 'Royal']	elf.royal_ransom	[]	2025-07-28
Mount Locker	['DagonLocker', 'MountLocker', 'QuantumLocker']	win.mount_locker	['Vanilla Tempest']	2025-07-28
Royal Ransom	[]	win.royal_ransom	[]	2025-07-28
Unidentified 123 (Go Infostealer)	['Go Infostealer']	win.unidentified_123	[]	2025-07-25
StarFish	[]	js.starfish	[]	2025-07-25
KV	[]	sh.kv	['Volt Typhoon']	2025-07-24
Pearl Stealer	[]	osx.pearl_stealer	[]	2025-07-24
Dosia	['DDOSIA']	win.dosia	['NoName057(16)']	2025-10-01
GootKit	['Waldek', 'Xswkit', 'talalpek']	win.gootkit	[]	2025-07-24
Reveton	[]	win.reveton	[]	2025-07-24
Lyposit	['Lucky Locker', 'Adneukine', 'Bomba Locker']	win.lyposit	[]	2025-07-24
Matsnu	[]	win.matsnu	[]	2025-07-24
UPAS	['Rombrast']	win.upas	[]	2025-07-24
Urausy	[]	win.urausy	[]	2025-07-24
Sinowal	['Theola', 'Quarian', 'Mebroot', 'Anserin', 'Torpig']	win.sinowal	[]	2025-07-24
Citadel	[]	win.citadel	[]	2025-07-24
Andromeda	['Gamarue', 'B106-Gamarue', 'B67-SS-Gamarue', 'b66']	win.andromeda	['Operation C-Major']	2025-07-24
TwoFace	['Minion', 'HighShell', 'HyperShell', 'SEASHARPEE']	asp.twoface	['APT27', 'APT34', 'OilRig', 'Turla', 'UNC215']	2025-07-22
ASPXSpy	[]	php.aspxspy	['APT39', 'APT41', 'HAFNIUM']	2025-07-22
SharPyShell	['ASPSHELL']	win.sharpyshell	['APT41']	2025-07-22
ColdLock	[]	win.coldlock	['APT41']	2025-07-21
Crocodilus	[]	apk.crocodilus	[]	2025-07-21
8Base	[]	win.8base	[]	2025-07-21
Phobos	[]	win.phobos	[]	2025-07-21
Voldemort	[]	win.voldemort	[]	2025-07-17
WhisperGate	['PAYWIPE']	win.whispergate	[]	2025-07-21
Stresspaint	[]	win.stresspaint	[]	2025-07-21
Scranos	[]	win.scranos	[]	2025-07-21
FrostyFerret	[]	osx.frostyferret	['WageMole']	2025-04-27
STRRAT	[]	jar.strrat	[]	2025-07-17
Koi Loader	[]	win.koiloader	[]	2025-05-20
Koi Stealer	[]	win.koistealer	[]	2024-12-09
SilentGh0st	[]	win.silentgh0st	[]	2025-07-15
CloudEyE	['GuLoader', 'vbdropper']	win.cloudeye	[]	2025-07-14
Feodo	['Cridex', 'Bugat']	win.feodo	[]	2025-07-14
Mispadu	['URSA']	win.mispadu	[]	2025-07-14
HATVIBE	[]	vbs.hatvibe	['UAC-0063']	2025-07-11
DownEx	[]	win.downex	['UAC-0063']	2025-07-11
BADBOX	[]	apk.badbox	[]	2025-07-08
reGeorg	[]	win.regeorg	[]	2025-07-08
HTran	['HUC Packet Transmit Tool', 'lcx']	win.htran	['GALLIUM', 'UPS']	2025-07-08
iox	[]	win.iox	[]	2025-07-08
POORTRY	[]	win.poortry	[]	2025-07-07
PowerNet	[]	ps1.powernet	['FIN7']	2025-07-07
RevC2	[]	win.revc2	[]	2025-07-07
Phemedrone Stealer	['Ov3r_Stealer']	win.phemedrone_stealer	[]	2025-07-07
JanelaRAT	[]	win.janela_rat	[]	2025-07-07
GOREVERSE	[]	elf.goreverse	['UNC5174']	2025-07-07
SNOWLIGHT	[]	elf.snowlight	['UNC5174']	2025-07-07