3,697 indexed
SOFTWARESoftware & malware
3,697 tools and malware families — MITRE ATT&CK Software plus the wider cs-graph malware corpus. Use /search for keyword + ID lookup. Authored by Adam Lundqvist.
Showing 1–50 of 3,697 · page 1 of 74
| ID | Title | Summary |
|---|---|---|
| 05250LOCK | 05250lock | Ransomware |
| 0APT | 0apt | This group is newly observed and first observation suggest this is not a serious group, as most - if not all - of the claims cannot be validated and are for ra… |
| 0KILOBYPT | 0kilobypt | Ransomware |
| 0MEGA | 0Mega | 0mega, a new ransomware operation, has been observed targeting organizations around the world. The ransomware operators are launching double-extortion attacks … |
| 10001 | 10001 | Ransomware |
| 1337-LOCKER | 1337-Locker | Ransomware |
| 16X | 16x | |
| 2023LOCK | 2023lock | 2023Lock is a ransomware strain first observed in January 2024, believed to be an evolution of the Venus and Zeoticus families and a direct precursor to the la… |
| 20DFS | 20dfs | ransomware |
| 24H | 24H | Ransomware |
| 32AA | 32aa | ransomware |
| 3AM | 3am | |
| 3NCRY | 3nCRY | Ransomware |
| 3PARA-RAT | 3PARA RAT | |
| 3VE | 3ve | 3ve, pronounced as “Eve”, was a botnet that was halted in late 2018. 3ve utilized the malware packages Boaxxe and Kovter to infect a network of PCs. They were … |
| 4H-RAT | 4H RAT | 4H RAT is malware that has been used by Putter Panda since at least 2007. |
| 4RW5W | 4rw5w | Ransomware |
| 5P00F3R-N-RAT | 5p00f3r.N$ RAT | |
| 5SS5C-5SS5CCRYPT | 5ss5c(5ss5cCrypt) | Ransomware |
| 5SS5C-RANSOMWARE | 5ss5c Ransomware | The cybercrime group that brought us Satan, DBGer and Lucky ransomware and perhaps Iron ransomware, has now come up with a new version or rebranding named 5ss5… |
| 63256-BOTNET | 63256 botnet | |
| 68-RANDOM-HEX | 68-Random-HEX | ransomware |
| 777 | 777 | Ransomware |
| 777-LEGION | 777(Legion) | Ransomware |
| 7777-BOTNET | 7777-Botnet | 7777-Botnet has been observed brute forcing Microsoft Azure instances via Microsoft Azure PowerShell bruteforcing. The botnet has a unique pattern of opening p… |
| 7EV3N | 7ev3n | Ransomware |
| 7H9R | 7h9r | Ransomware |
| 7Z-PORTUGUESE | 7z Portuguese | Ransomware |
| 7ZIPPER-RANSOMWARE | 7Zipper Ransomware | It’s directed to English speaking users, therefore is able to infect worldwide. It is spread using email spam, fake updates, attachments and so on. It encryp… |
| 8BASE | 8base | 8Base emerged in early 2022 and rapidly escalated its ransomware operations by mid-2023, positioning itself as a “simple pen tester” while executing a relentle… |
| 8LOCK8 | 8lock8 | Ransomware Based on HiddenTear |
| 9002 | 9002 | |
| A1PROJECT | a1project | The locker is written in C/C++/ASM. <br/>It supports all systems starting from Windows 2003, has a separate binary for ESXi, and uses a unified encrypted file … |
| A32S-RAT | A32s RAT | |
| A4ZETA | A4Zeta | |
| AAC | AAC | Ransomware |
| ABCBOT | Abcbot | Botnet |
| ABCLOCKER | ABCLocker | Ransomware |
| ABRAHAM-S-AX | Abraham's Ax | Abraham's Ax announced their existence and mission through social media channels such as Twitter posts on November 8, 2022. Abraham's Ax use a WordPress blog a… |
| ABYSS-DATA | abyss-data | |
| ACROWARE-CRYPTOLOCKER-RANSOMWARE | Acroware Cryptolocker Ransomware | Leo discovered a screenlocker that calls itself Acroware Cryptolocker Ransomware. It does not encrypt. |
| ADAMLOCKER-RANSOMWARE | AdamLocker Ransomware | It’s directed to English speaking users, therefore is able to infect worldwide. It is spread using email spam, fake updates, attachments and so on. It encryp… |
| ADB-MINER | ADB.miner | A new botnet appeared over the weekend, and it's targeting Android devices by scanning for open debug ports so it can infect victims with malware that mines th… |
| ADMINLOCKER | adminlocker | AdminLocker was first observed around December 2021 and appears to be a lone operator or small group, with no clear Ransomware-as-a-Service (RaaS) model report… |
| ADONIS | Adonis | Ransomware |
| ADWIND | Adwind | Adwind is a backdoor written purely in Java that targets system supporting the Java runtime environment. Commands that can be used, among other things, to disp… |
| ADWIND-RAT | Adwind RAT | Backdoor:Java/Adwind is a Java archive (.JAR) file that drops a malicious component onto the machines and runs as a backdoor. When active, it is capable of ste… |
| ADZOK | Adzok | Remote Administrator |
| AEPCRYPT | AepCrypt | Ransomware |
| AEROADMIN | AeroAdmin | AeroAdmin is probably the easiest program to use for free remote access. There are hardly any settings, and everything is quick and to the point, which is perf… |