3,697 indexed
SOFTWARESoftware & malware
3,697 tools and malware families — MITRE ATT&CK Software plus the wider cs-graph malware corpus. Use /search for keyword + ID lookup. Authored by Adam Lundqvist.
Showing 1,201–1,250 of 3,697 · page 25 of 74
| ID | Title | Summary |
|---|---|---|
| GONNACRY-RANSMWARE | GonnaCry Ransmware | ransomware |
| GOOD-DAY | good day | Good Day is a ransomware variant within the ARCrypter family, first observed in May 2023. It gained prominence due to its reticent financial extortion model an… |
| GOOFED-HT | Goofed HT | ransomware |
| GOOPIC | Goopic | Ransomware |
| GOOTKIT | Gootkit | Gootkit is a trojan that steals confidential information and allows criminals to take control of infected systems remotely. Gootkit can also be used to install… |
| GOOTLOADER | GootLoader | GootLoader is a malware loader historically associated with the GootKit malware. As its developers updated its capabilities, GootLoader has evolved from a load… |
| GOPHER | Gopher | Ransomware OS X ransomware (PoC) |
| GORANSOM-POC | GoRansom POC | ransomware |
| GORGON | Gorgon | ransomware |
| GOSCANSSH | GoScanSSH | During a recent Incident Response (IR) engagement, Talos identified a new malware family that was being used to compromise SSH servers exposed to the internet.… |
| GOST | GOST | A simple security tunnel written in Golang. Features: Listening on multiple ports, Multi-level forward proxy - proxy chain, Standard HTTP/HTTPS/HTTP2/SOCKS4(A)… |
| GOTCHA | Gotcha | ransomware |
| GOTTACRY | GottaCry | ransomware |
| GOVRAT | GovRAT | GovRAT is an old cyberespionage tool, it has been in the wild since 2014 and it was used by various threat actors across the years. |
| GPAA | GPAA | ransomware |
| GPGQWERTY | GPGQwerty | ransomware |
| GRAPHICBOOTING | GraphicBooting | |
| GRATEFULPOS | GratefulPOS | GratefulPOS has the following functions 1. Access arbitrary processes on the target POS system 2. Scrape track 1 and 2 payment card data from the process(es) 3… |
| GRAVITYRAT | GravityRAT | GravityRAT has been under ongoing development for at least 18 months, during which the developer has implemented new features. We've seen file exfiltration, re… |
| GRAYFISH | GrayFish | |
| GREAME | Greame | |
| GREAT-CANNON | Great Cannon | The Great Cannon of China is an Internet attack tool that is used by the Chinese government to launch distributed denial-of-service attacks on websites by perf… |
| GREEK-HACKERS-RAT | Greek Hackers RAT | |
| GREENCAT | GREENCAT | Members of this family are full featured backdoors that communicates with a Web-based Command & Control (C2) server over SSL. Features include interactive shel… |
| GREMIT-RANSOMWARE | Gremit Ransomware | This is most likely to affect English speaking users, since the note is written in English. English is understood worldwide, thus anyone can be harmed. The hac… |
| GREP | grep | |
| GREYSTARS | Greystars | ransomware |
| GRIEF | Grief | captcha prevents indexing |
| GRINCH | grinch | |
| GRODEXCRYPT | GrodexCrypt | ransomware |
| GROOVE | Groove | Groove was a short-lived ransomware group and cybercrime gang that emerged in August 2021 and became notable for its aggressive, publicity-driven tactics. Unli… |
| GRUJARSORIUM | GrujaRSorium | ransomware |
| GRUM | Grum | The Grum botnet, also known by its alias Tedroo and Reddyb, was a botnet mostly involved in sending pharmaceutical spam e-mails. Once the world's largest botne… |
| GRUXER | Gruxer | ransomware |
| GUILDMA | Guildma | The campaign spreads via phishing emails posing as invoices, tax reports, invitations and similar types of messages containing a ZIP archive attachment with a … |
| GUMBLAR | Gumblar | Gumblar is a malicious JavaScript trojan horse file that redirects a user's Google searches, and then installs rogue security software. Also known as Troj/JSRe… |
| GUNRA | gunra | |
| GUSCRYPTER | GusCrypter | ransomware |
| GUSTER-RANSOMWARE | Guster Ransomware | It’s directed to English speaking users, therefore is able to infect worldwide. It is spread using email spam, fake updates, attachments and so on. It encryp… |
| GWISIN | gwisin | Gwisin is a targeted ransomware group first publicly reported in July 2022, believed to operate primarily within South Korea. The group’s name means “ghost” in… |
| GWISINLOCKER | GwisinLocker | Ransomware |
| GX40 | GX40 | ransomware |
| H-W0RM | H-w0rm | |
| H-WORM | H-worm | H-worm is a VBS (Visual Basic Script) based RAT written by an individual going by the name Houdini. We believe the author is based in Algeria and has connectio… |
| H34RTBL33D | H34rtBl33d | ransomware |
| HACKDOORCRYPT3R | HackdoorCrypt3r | ransomware |
| HACKED | Hacked | Ransomware Jigsaw Ransomware variant |
| HACKEDLOCKER-RANSOMWARE | HackedLocker Ransomware | It’s directed to English speaking users, therefore is able to infect worldwide. It is spread using email spam, fake updates, attachments and so on. It encryp… |
| HACKFASE | HACKFASE | This family of malware is a backdoor that provides reverse shell, process creation, system statistics collection, process enumeration, and process termination… |
| HACKSHIT | Hackshit | Netskope Threat Research Labs recently discovered a Phishing-as-a-Service (PhaaS) platform named Hackshit, that records the credentials of the phished bait vic… |