3,697 indexed
SOFTWARESoftware & malware
3,697 tools and malware families — MITRE ATT&CK Software plus the wider cs-graph malware corpus. Use /search for keyword + ID lookup. Authored by Adam Lundqvist.
Showing 1,151–1,200 of 3,697 · page 24 of 74
| ID | Title | Summary |
|---|---|---|
| GENEVE | Geneve | ransomware |
| GENOBOT | Genobot | ransomware |
| GERBER-RANSOMWARE-1-0 | Gerber Ransomware 1.0 | |
| GERBER-RANSOMWARE-3-0 | Gerber Ransomware 3.0 | |
| GERMANWIPER | GermanWiper | ransomware |
| GETCRYPT | GetCrypt | A new ransomware is in the dark market which encrypts all the files on the device and redirects victims to the RIG exploit kit. |
| GETMAIL | GETMAIL | Members of this family of malware are utilities designed to extract email messages and attachments from Outlook PST files. One part of this utility set is an e… |
| GG-RANSOMWARE | GG Ransomware | This is most likely to affect English speaking users, since the note is written in English. English is understood worldwide, thus anyone can be harmed. The hac… |
| GH0ST | gh0st | Remote Access Trojan |
| GH0ST-RAT | Gh0st RAT | Gh0st RAT is a Trojan horse for the Windows platform that the operators of GhostNet used to hack into some of the most sensitive computer networks on Earth. It… |
| GHEG | Gheg | Tofsee, also known as Gheg, is another botnet analyzed by CERT Polska. Its main job is to send spam, but it is able to do other tasks as well. It is possible t… |
| GHOLE | GHOLE | |
| GHOST | Ghost | |
| GHOSTADMIN | GhostAdmin | According to MalwareHunterTeam and other researchers that have looked at the malware's source code, GhostAdmin seems to be a reworked version of CrimeScene, an… |
| GHOSTCRYPT | GhostCrypt | Ransomware Based on Hidden Tear |
| GHOSTENCRYPTOR | GhosTEncryptor | ransomware |
| GHOSTHAMMER | GhostHammer | ransomware |
| GHOSTMINER | GhostMiner | GhostMiner is a new cryptocurrency mining malware. By the end of March 2018, a new variant of mining malware was detected targeting MSSQL, phpMyAdmin, and Orac… |
| GHOTEX | GHOTEX | PE_GHOTEX.A-O is a portable executable (PE is the standard executable format for 32-bit Windows files) virus. PE viruses infect executable Windows files by inc… |
| GIBBERISH | Gibberish | ransomware |
| GIBON | Gibon | ransomware |
| GINGERBREAD | Gingerbread | Ransomware |
| GIYOTIN | Giyotin | ransomware |
| GLADIUS | Gladius | ransomware |
| GLOBAL | global | Not a RaaS yet. |
| GLOBE | globe | Globe is a ransomware family that first appeared in August 2016, notable for its highly customizable codebase that allows operators to configure ransom note te… |
| GLOBE-V1 | Globe v1 | Ransomware |
| GLOBE2-RANSOMWARE | Globe2 Ransomware | This is most likely to affect English speaking users, since the note is written in English. English is understood worldwide, thus anyone can be harmed. The hac… |
| GLOBE3-RANSOMWARE | Globe3 Ransomware | It’s directed to English speaking users, therefore is able to infect worldwide. It is spread using email spam, fake updates, attachments and so on. It encryp… |
| GLOBEIMPOSTER | GlobeImposter | During December 2017, a new variant of the GlobeImposter Ransomware was detected for the first time and reported on malware-traffic-analysis. At first sight th… |
| GLOOXMAIL | GLOOXMAIL | GLOOXMAIL communicates with Google's Jabber/XMPP servers and authenticates with a hard-coded username and password. The malware can accept commands over XMPP … |
| GLUPTEBA | Glupteba | A multi-component botnet targeting Windows Computer. Glupteba is known to steal user credentials and cookies, mine cryptocurrencies on infected hosts, deploy a… |
| GNL-LOCKER | GNL Locker | Ransomware Only encrypts DE or NL country. Variants, from old to latest: Zyklon Locker, WildFire locker, Hades Locker |
| GOCRYPTOLOCKER | GoCryptoLocker | ransomware |
| GOD-CRYPT-JOKE-RANSOMWARE | God Crypt Joke Ransomware | MalwareHunterTeam found a new ransomware called God Crypt that does not appear to decrypt and appears to be a joke ransomware. Has an unlock code of 29b579fb81… |
| GODRA | Godra | ransomware |
| GOG-RANSOMWARE | GOG Ransomware | It’s directed to English speaking users, therefore is able to infect worldwide. It is spread using email spam, fake updates, attachments and so on. It encryp… |
| GOGGLES | GOGGLES | A family of downloader malware, that retrieves an encoded payload from a fixed location, usually in the form of a file with the .jpg extension. Some variants h… |
| GOGOOGLE | GoGoogle | ransomware |
| GOHACK | GoHack | ransomware |
| GOLDDRAGON | GOLDDRAGON | GOLDDRAGON is a downloader written in C that retrieves a payload from a remote server via HTTP. The downloaded payload is written to disk and executed. GOLDDRA… |
| GOLDDROP | GOLDDROP | GOLDDROP is a C/C++ Windows dropper. It decrypts a resource file, saves it to the file system, and injects it into another process. Availability: Non-public |
| GOLDEN-AXE | Golden Axe | ransomware |
| GOLDEN-PHOENIX | GOlden Phoenix | |
| GOLDENEYE-RANSOMWARE | GoldenEye Ransomware | It’s directed to English speaking users, therefore is able to infect worldwide. It is spread using email spam, fake updates, attachments and so on. It encryp… |
| GOLDFINDER | GoldFinder | Tool written in Go, GoldFinder was most likely used as a custom HTTP tracer tool that logs the route or hops that a packet takes to reach a hardcoded C2 server… |
| GOLDMAX | GoldMax | Written in Go, GoldMax acts as command-and-control backdoor for the actor. It uses several different techniques to obfuscate its actions and evade detection. T… |
| GOLDSMELT | GOLDSMELT | GOLDSMELT is a C/C++ utility used to close the rundll32.exe process and delete a file likely used for logs. Availability: Non-public |
| GOMASOM | Gomasom | Ransomware |
| GOMME | Gomme | ransomware |