3,697 indexed
SOFTWARESoftware & malware
3,697 tools and malware families — MITRE ATT&CK Software plus the wider cs-graph malware corpus. Use /search for keyword + ID lookup. Authored by Adam Lundqvist.
Showing 1,351–1,400 of 3,697 · page 28 of 74
| ID | Title | Summary |
|---|---|---|
| IMN-CREW | imn crew | |
| IMPACKET | IMPACKET | IMPACKET is a Python library that allows for interaction with various network protocols. It is particularly effective in environments that rely on Active Direc… |
| IMS00RY | Ims00ry | ransomware |
| IMSORRY | ImSorry | ransomware |
| INC-RANSOM | inc ransom | |
| INCANTO | Incanto | ransomware |
| INCOGNITO-RAT | Incognito RAT | |
| INDETECTABLES-RAT | Indetectables RAT | |
| INDRIK | Indrik | ransomware |
| INDUCVIRUS | InducVirus | ransomware |
| INFINITYLOCK | InfinityLock | ransomware |
| INFODOT | InfoDot | ransomware |
| INNFIRAT | InnfiRAT | new RAT called InnfiRAT, which is written in .NET and designed to perform specific tasks from an infected machine |
| INPIVX | INPIVX | ransomware |
| INSANE-RANSOMWARE | insane ransomware | Insane is a relatively obscure ransomware family first reported in late 2021, with few confirmed incidents in public threat intelligence. It encrypts victim fi… |
| INSANECRYPT | InsaneCrypt | ransomware |
| INSOMNIA | insomnia | |
| INSTALLPAY | InstallPay | ransomware |
| INTERLOCK | interlock | |
| INTERNATIONAL-POLICE-ASSOCIATION | International Police Association | Ransomware CryptoTorLocker2015 variant |
| INTRUDINGDIVISOR | IntrudingDivisor | Like TwoFace, the IntrudingDivisor webshell requires the threat actor to authenticate before issuing commands. To authenticate, the actor must provide two piec… |
| INVADERX | invaderx | |
| INVOKE-MIMIKATZ | Invoke-Mimikatz | Invoke-Mimikatz is PowerShell script that reflectively loads a Mimikatz credential-stealing DLL into memory. Availability: Public |
| IODINE | IODINE | IODINE is a network traffic tunneler that allows for tunneling of IPv4 traffic over DNS. |
| IOT-REAPER | IoT_reaper | IoT_reaper is fairly large now and is actively expanding. For example, there are multiple C2s we are tracking, the most recently data (October 19) from just on… |
| IPA | IPA | ransomware |
| IPERIUS-REMOTE | Iperius Remote | Iperius Remote is advertised with these features: Control remotely any computer with Iperius Remote Desktop Free. For remote support or presentations. Ideal fo… |
| IRANSOM | iRansom | Ransomware |
| IRON | Iron | It is currently unknown if Iron is indeed a new variant by the same creators of Maktub, or if it was simply inspired by the latter, by copying the design for t… |
| IRON-BACKDOOR | Iron Backdoor | Iron Backdoor uses a virtual machine detection code taken directly from HackingTeam’s Soldier implant leaked source code. Iron Backdoor is also using the Dynam… |
| IRONCAT | Ironcat | ransomware |
| IRONCHAIN | ironchain | |
| IRONGATE | IRONGATE | |
| ISERIK | IsErIk | The adware DealPly (sometimes also referred to as IsErIk) and malicious Chrome extension ManageX, for instance, can come bundled under the guise of a legitimat… |
| ISHTAR-RANSOMWARE | Ishtar Ransomware | This is most likely to affect English speaking users, since the note is written in English. English is understood worldwide, thus anyone can be harmed. The hac… |
| ISRABYE | IsraBye | |
| ISSPACE | IsSpace | |
| IT-BOOKS | IT.Books | ransomware |
| IZIS | izis | |
| J | J- | ransomware |
| J-GROUP | j group | |
| J-RANSOMWARE | j ransomware | |
| JABACRYPTER | JabaCrypter | ransomware |
| JACKPOT-RANSOMWARE | JackPot Ransomware | This is most likely to affect English speaking users, since the note is written in English. English is understood worldwide, thus anyone can be harmed. The hac… |
| JACKSKID | jackskid | Mirai variant sharing code lineage with Aisuru, DoH C2 via mbedTLS |
| JADERAT | JadeRAT | JadeRAT is just one example of numerous mobile surveillanceware families we've seen in recent months, indicating that actors are continuing to incorporate mobi… |
| JAFF | Jaff | We recently observed several large scale email campaigns that were attempting to distribute a new variant of ransomware that has been dubbed "Jaff". Interestin… |
| JAFFE | Jaffe | ransomware |
| JAGERDECRYPTOR | JagerDecryptor | Ransomware Prepends filenames |
| JAMES | James | ransomware |