Home

Malware Families

Malware Families

Malware Families

Explore an extensive collection of the most popular malware families, including detailed descriptions, tactics, and insights into their connections with threat actors. This page serves as a comprehensive resource for security professionals and researchers, offering valuable information to understand, detect, and defend against malware threats.

Explore an extensive collection of the most popular malware families, including detailed descriptions, tactics, and insights into their connections with threat actors. This page serves as a comprehensive resource for security professionals and researchers, offering valuable information to understand, detect, and defend against malware threats.

Search...

Search...

Top 10 Malware Families

Top 10 Malware Families

Emotet

Emotet

Metasploit

Metasploit

Covenant

Covenant

njRAT

njRAT

Raccoon Stealer

Raccoon Stealer

Redline Stealer

Redline Stealer

Lokibot

Lokibot

Sliver

Sliver

qakbot

qakbot

Medusa

Medusa

Latest Updates

Latest Updates

SolarMarker

SolarMarker

Pikabot

Pikabot

Godzilla Loader

Godzilla Loader

Gotham Stealer

Gotham Stealer

KTLV Backdoor

KTLV Backdoor

Ligolo-ng

Ligolo-ng

XehookStealer

XehookStealer

NimPlant

NimPlant

PlugX

PlugX

BlueShell Backdoor

BlueShell Backdoor

APT Gamaredon

Backdoor

APT

Cybercrime

APT Gamaredon

Backdoor

APT

Cybercrime

APT Gamaredon

Backdoor

APT

Cybercrime

Ares

Trojan

Info Stealing

Banking

Ares

Trojan

Info Stealing

Banking

Ares

Trojan

Info Stealing

Banking

Armageddon Stealer

Armageddon Stealer

Armageddon Stealer

ATOMIC Stealer

Info Stealing

macOS

Golang

ATOMIC Stealer

Info Stealing

macOS

Golang

ATOMIC Stealer

Info Stealing

macOS

Golang

Aurora Stealer

Banking

Info Stealing

Windows

Aurora Stealer

Banking

Info Stealing

Windows

Aurora Stealer

Banking

Info Stealing

Windows

Axile Stealer

Info Stealing

Axile Stealer

Info Stealing

Axile Stealer

Info Stealing

AZORult

Windows

Info Stealing

C2

Crypto Stealer

AZORult

Windows

Info Stealing

C2

Crypto Stealer

AZORult

Windows

Info Stealing

C2

Crypto Stealer

Bandit Stealer

Info Stealing

Golang

C2

Bandit Stealer

Info Stealing

Golang

C2

Bandit Stealer

Info Stealing

Golang

C2

BeEF

Open Source

macOS

Linux

Ruby

Pen testing

BeEF

Open Source

macOS

Linux

Ruby

Pen testing

BeEF

Open Source

macOS

Linux

Ruby

Pen testing

BlueShell Backdoor

Golang

Backdoor

BlueShell Backdoor

Golang

Backdoor

BlueShell Backdoor

Golang

Backdoor

bumblebee

Backdoor

RAT

Windows

bumblebee

Backdoor

RAT

Windows

bumblebee

Backdoor

RAT

Windows

Burp Collaborator

Pen testing

Commercial

Burp Collaborator

Pen testing

Commercial

Burp Collaborator

Pen testing

Commercial

BYOB

RAT

Botnet

Open Source

BYOB

RAT

Botnet

Open Source

BYOB

RAT

Botnet

Open Source

Chalubo RAT

RAT

Windows

Chalubo RAT

RAT

Windows

Chalubo RAT

RAT

Windows

Chaos RAT

Golang

RAT

DDoS

Linux

Windows

Trojan

Chaos RAT

Golang

RAT

DDoS

Linux

Windows

Trojan

Chaos RAT

Golang

RAT

DDoS

Linux

Windows

Trojan

CloudSorcerer APT

CloudSorcerer APT

CloudSorcerer APT

Cobalt Strike Unverified

C2

Pen testing

Cobalt Strike Unverified

C2

Pen testing

Cobalt Strike Unverified

C2

Pen testing

Covenant

Backdoor

Windows

Pen testing

Covenant

Backdoor

Windows

Pen testing

Covenant

Backdoor

Windows

Pen testing

Daam

RAT

Backdoor

Daam

RAT

Backdoor

Daam

RAT

Backdoor

Dacls

RAT

Windows

Dacls

RAT

Windows

Dacls

RAT

Windows

DarkComet

RAT

Keylogging

DarkComet

RAT

Keylogging

DarkComet

RAT

Keylogging

DcRat

RAT

Info Stealing

Windows

DcRat

RAT

Info Stealing

Windows

DcRat

RAT

Info Stealing

Windows

Deimos C2

APT

Golang

Deimos C2

APT

Golang

Deimos C2

APT

Golang

DiceLoader

Malware

DiceLoader

Malware

DiceLoader

Malware

DoomedLoader

Windows

DoomedLoader

Windows

DoomedLoader

Windows

Earth Baxia

Earth Baxia

Earth Baxia

Easy Stealer

Info Stealing

Windows

Credential Stealer

Easy Stealer

Info Stealing

Windows

Credential Stealer

Easy Stealer

Info Stealing

Windows

Credential Stealer

Emotet

Banking

Info Stealing

Windows

Fileless

APT

Emotet

Banking

Info Stealing

Windows

Fileless

APT

Emotet

Banking

Info Stealing

Windows

Fileless

APT

Epsilon Stealer

Banking

Trojan

Data Stealer

Epsilon Stealer

Banking

Trojan

Data Stealer

Epsilon Stealer

Banking

Trojan

Data Stealer

Ermac

Android

Banking

Trojan

Ermac

Android

Banking

Trojan

Ermac

Android

Banking

Trojan

evilgophish

Open Source

evilgophish

Open Source

evilgophish

Open Source

Ficker Stealer

Info Stealing

RAT

Spyware

APT

Ficker Stealer

Info Stealing

RAT

Spyware

APT

Ficker Stealer

Info Stealing

RAT

Spyware

APT

Fletchen

Crypto Stealer

Fletchen

Crypto Stealer

Fletchen

Crypto Stealer

Gafgyt

IoT

Botnet

DDoS

Gafgyt

IoT

Botnet

DDoS

Gafgyt

IoT

Botnet

DDoS

Godzilla Loader

Trojan

Godzilla Loader

Trojan

Godzilla Loader

Trojan

Gophish

Adversary Sim

Open Source

Gophish

Adversary Sim

Open Source

Gophish

Adversary Sim

Open Source

Gotham Stealer

Info Stealing

RAT

Gotham Stealer

Info Stealing

RAT

Gotham Stealer

Info Stealing

RAT

Gozi

Trojan

Banking

Info Stealing

Credential Stealer

Gozi

Trojan

Banking

Info Stealing

Credential Stealer

Gozi

Trojan

Banking

Info Stealing

Credential Stealer

Hajime

IoT

Botnet

DDoS

Hajime

IoT

Botnet

DDoS

Hajime

IoT

Botnet

DDoS

Hak5 Cloud C²

C2

Pen testing

Hak5 Cloud C²

C2

Pen testing

Hak5 Cloud C²

C2

Pen testing

Havoc

Windows

Malware

Havoc

Windows

Malware

Havoc

Windows

Malware

Hodur

Ransomware

Hodur

Ransomware

Hodur

Ransomware

HOOKBOT

Android

HOOKBOT

Android

HOOKBOT

Android

HOOKBOT Fork

Malware

Android

Trojan

HOOKBOT Fork

Malware

Android

Trojan

HOOKBOT Fork

Malware

Android

Trojan

Hydra

Pen testing

C2

Open Source

Hydra

Pen testing

C2

Open Source

Hydra

Pen testing

C2

Open Source

IcedID

C2

Banking

Info Stealing

Financial Fraud

RAT

IcedID

C2

Banking

Info Stealing

Financial Fraud

RAT

IcedID

C2

Banking

Info Stealing

Financial Fraud

RAT

ImBetter

Stealer

ImBetter

Stealer

ImBetter

Stealer

Interactsh

Open Source

Golang

Interactsh

Open Source

Golang

Interactsh

Open Source

Golang

JinxLoader

Golang

JinxLoader

Golang

JinxLoader

Golang

JS-Tap

Cryptojacking

JS-Tap

Cryptojacking

JS-Tap

Cryptojacking

Kaiten

Kaiten

Kaiten

KeyPlug

Windows

C2

KeyPlug

Windows

C2

KeyPlug

Windows

C2

Kimsuky

Kimsuky

Kimsuky

KTLV Backdoor

Backdoor

Windows

KTLV Backdoor

Backdoor

Windows

KTLV Backdoor

Backdoor

Windows

L3MON

RAT

Info Stealing

Android

L3MON

RAT

Info Stealing

Android

L3MON

RAT

Info Stealing

Android

Laplas Clipper

Info Stealing

Windows

Laplas Clipper

Info Stealing

Windows

Laplas Clipper

Info Stealing

Windows

LightSpy

LightSpy

LightSpy

Ligolo-ng

Pen testing

Ligolo-ng

Pen testing

Ligolo-ng

Pen testing

Lokibot

Trojan

Crypto Stealer

Keylogging

Credential Stealer

Lokibot

Trojan

Crypto Stealer

Keylogging

Credential Stealer

Lokibot

Trojan

Crypto Stealer

Keylogging

Credential Stealer

Lumma Stealer

Info Stealing

RAT

Windows

APT

Banking

Lumma Stealer

Info Stealing

RAT

Windows

APT

Banking

Lumma Stealer

Info Stealing

RAT

Windows

APT

Banking

LummaC2 Stealer

C2

Stealer

LummaC2 Stealer

C2

Stealer

LummaC2 Stealer

C2

Stealer

Matanbuchus

Windows

Matanbuchus

Windows

Matanbuchus

Windows

Medusa

Ransomware

Medusa

Ransomware

Medusa

Ransomware

Meduza

Data Stealer

Trojan

Banking

Meduza

Data Stealer

Trojan

Banking

Meduza

Data Stealer

Trojan

Banking

Metasploit

Vulnerability Scanner

Pen testing

Ruby

Metasploit

Vulnerability Scanner

Pen testing

Ruby

Metasploit

Vulnerability Scanner

Pen testing

Ruby

Metasploit Meterpreter

Trojan

Info Stealing

Banking

Spyware

Metasploit Meterpreter

Trojan

Info Stealing

Banking

Spyware

Metasploit Meterpreter

Trojan

Info Stealing

Banking

Spyware

Misha Stealer

Banking

Info Stealing

Windows

Misha Stealer

Banking

Info Stealing

Windows

Misha Stealer

Banking

Info Stealing

Windows

MITRE Caldera

Linux

macOS

Python

MITRE Caldera

Linux

macOS

Python

MITRE Caldera

Linux

macOS

Python

Mozi

Botnet

DDoS

Mozi

Botnet

DDoS

Mozi

Botnet

DDoS

MuddyWater APT

C2

APT

MuddyWater APT

C2

APT

MuddyWater APT

C2

APT

Mystic Stealer

Info Stealing

Windows

Credential Stealer

Mystic Stealer

Info Stealing

Windows

Credential Stealer

Mystic Stealer

Info Stealing

Windows

Credential Stealer

Neptune Loader

Windows

Neptune Loader

Windows

Neptune Loader

Windows

Nexus

Android

Info Stealing

Nexus

Android

Info Stealing

Nexus

Android

Info Stealing

NightHawk C2

Pen testing

RAT

NightHawk C2

Pen testing

RAT

NightHawk C2

Pen testing

RAT

NimPlant

NimPlant

NimPlant

njRAT

Trojan

RAT

C2

Credential Stealer

Backdoor

njRAT

Trojan

RAT

C2

Credential Stealer

Backdoor

njRAT

Trojan

RAT

C2

Credential Stealer

Backdoor

Nobelium SSH

APT

Nobelium SSH

APT

Nobelium SSH

APT

Nosu Ransomware: Threatening Critical Sectors

Ransomware

Cryptojacking

Malware

Cybercrime

Nosu Ransomware: Threatening Critical Sectors

Ransomware

Cryptojacking

Malware

Cybercrime

Nosu Ransomware: Threatening Critical Sectors

Ransomware

Cryptojacking

Malware

Cybercrime

Nosviak4

Backdoor

RAT

Nosviak4

Backdoor

RAT

Nosviak4

Backdoor

RAT

Octopus

Open Source

C2

Python

Octopus

Open Source

C2

Python

Octopus

Open Source

C2

Python

Onimai

Onimai

Onimai

Orcus RAT

RAT

Orcus RAT

RAT

Orcus RAT

RAT

OWASP ZAP API

Open Source

OWASP ZAP API

Open Source

OWASP ZAP API

Open Source

Oyster backdoor

Backdoor

APT

Windows

Oyster backdoor

Backdoor

APT

Windows

Oyster backdoor

Backdoor

APT

Windows

Pantegana RAT

Golang

Windows

Linux

macOS

RAT

Pantegana RAT

Golang

Windows

Linux

macOS

RAT

Pantegana RAT

Golang

Windows

Linux

macOS

RAT

Pikabot

Backdoor

Windows

Trojan

Pikabot

Backdoor

Windows

Trojan

Pikabot

Backdoor

Windows

Trojan

PixPirate

RAT

PixPirate

RAT

PixPirate

RAT

PlugX

PlugX

PlugX

PlugX C2 profile

C2

APT

Windows

PlugX C2 profile

C2

APT

Windows

PlugX C2 profile

C2

APT

Windows

PlugX Malleable C2 profile

PlugX Malleable C2 profile

PlugX Malleable C2 profile

Posh C2

Windows

APT

Posh C2

Windows

APT

Posh C2

Windows

APT

Power Stealer

Malware

Stealer

Power Stealer

Malware

Stealer

Power Stealer

Malware

Stealer

Prism X

Open Source

Linux

Windows

Prism X

Open Source

Linux

Windows

Prism X

Open Source

Linux

Windows

Pupy C2

RAT

Python

Pupy C2

RAT

Python

Pupy C2

RAT

Python

qakbot

Banking

Fileless

Credential Stealer

APT

qakbot

Banking

Fileless

Credential Stealer

APT

qakbot

Banking

Fileless

Credential Stealer

APT

Quasar

RAT

Open Source

.Net

Quasar

RAT

Open Source

.Net

Quasar

RAT

Open Source

.Net

Raccoon Stealer

Info Stealing

RAT

Windows

Raccoon Stealer

Info Stealing

RAT

Windows

Raccoon Stealer

Info Stealing

RAT

Windows

RapperBot

IoT

APT

Linux

RapperBot

IoT

APT

Linux

RapperBot

IoT

APT

Linux

reconFTW

reconFTW

reconFTW

RedGuard

Golang

RedGuard

Golang

RedGuard

Golang

Redline Stealer

Banking

Info Stealing

Windows

Redline Stealer

Banking

Info Stealing

Windows

Redline Stealer

Banking

Info Stealing

Windows

RedWarden

C2

Spyware

RedWarden

C2

Spyware

RedWarden

C2

Spyware

reNgine

Open Source

reNgine

Open Source

reNgine

Open Source

Responder

Windows

macOS

Responder

Windows

macOS

Responder

Windows

macOS

ReverseSSH

RAT

C2

ReverseSSH

RAT

C2

ReverseSSH

RAT

C2

Rhadamanthys

Malware

Banking

Data Stealer

Cybercrime

Financial Fraud

Rhadamanthys

Malware

Banking

Data Stealer

Cybercrime

Financial Fraud

Rhadamanthys

Malware

Banking

Data Stealer

Cybercrime

Financial Fraud

RisePro

Info Stealing

RAT

Windows

RisePro

Info Stealing

RAT

Windows

RisePro

Info Stealing

RAT

Windows

Scarab

Ransomware

Scarab

Ransomware

Scarab

Ransomware

Serpent Stealer

Trojan

Info Stealing

Credential Stealer

Spyware

Botnet

Serpent Stealer

Trojan

Info Stealing

Credential Stealer

Spyware

Botnet

Serpent Stealer

Trojan

Info Stealing

Credential Stealer

Spyware

Botnet

ShadowPad

RAT

Windows

APT

ShadowPad

RAT

Windows

APT

ShadowPad

RAT

Windows

APT

SharkBot

Malware

Stealer

Data Stealer

Cybercrime

Banking

SharkBot

Malware

Stealer

Data Stealer

Cybercrime

Banking

SharkBot

Malware

Stealer

Data Stealer

Cybercrime

Banking

Sliver

Open Source

Golang

Sliver

Open Source

Golang

Sliver

Open Source

Golang

Socks5Systemz

Botnet

Backdoor

Socks5Systemz

Botnet

Backdoor

Socks5Systemz

Botnet

Backdoor

SolarMarker

Info Stealing

Credential Stealer

Backdoor

.Net

Windows

SolarMarker

Info Stealing

Credential Stealer

Backdoor

.Net

Windows

SolarMarker

Info Stealing

Credential Stealer

Backdoor

.Net

Windows

SparkRAT

RAT

Golang

SparkRAT

RAT

Golang

SparkRAT

RAT

Golang

SpiceRAT

RAT

Windows

SpiceRAT

RAT

Windows

SpiceRAT

RAT

Windows

SpyAgent

Spyware

Backdoor

RAT

SpyAgent

Spyware

Backdoor

RAT

SpyAgent

Spyware

Backdoor

RAT

Spynote

Android

Trojan

Spyware

Spynote

Android

Trojan

Spyware

Spynote

Android

Trojan

Spyware

Stealc

Info Stealing

Stealc

Info Stealing

Stealc

Info Stealing

Supershell

Windows

Linux

Android

Supershell

Windows

Linux

Android

Supershell

Windows

Linux

Android

SystemBC

C2

Fileless

Windows

APT

SystemBC

C2

Fileless

Windows

APT

SystemBC

C2

Fileless

Windows

APT

Tactical RMM

Golang

Tactical RMM

Golang

Tactical RMM

Golang

Titan Stealer

Info Stealing

Titan Stealer

Info Stealing

Titan Stealer

Info Stealing

Unam

Spyware

Credential Stealer

Keylogging

Unam

Spyware

Credential Stealer

Keylogging

Unam

Spyware

Credential Stealer

Keylogging

Ursnif

Banking

Info Stealing

Ursnif

Banking

Info Stealing

Ursnif

Banking

Info Stealing

VenomRAT

RAT

Trojan

Windows

Credential Stealer

Banking

Spyware

VenomRAT

RAT

Trojan

Windows

Credential Stealer

Banking

Spyware

VenomRAT

RAT

Trojan

Windows

Credential Stealer

Banking

Spyware

Vidar

Info Stealing

Windows

Vidar

Info Stealing

Windows

Vidar

Info Stealing

Windows

Viper

Linux

Python

Viper

Linux

Python

Viper

Linux

Python

Volt Typhoon APT

APT

Volt Typhoon APT

APT

Volt Typhoon APT

APT

VShell

RAT

Windows

APT

VShell

RAT

Windows

APT

VShell

RAT

Windows

APT

Winnti

APT

Backdoor

Windows

Winnti

APT

Backdoor

Windows

Winnti

APT

Backdoor

Windows

X-Ray Vuln Scanner

Open Source

Vulnerability Scanner

X-Ray Vuln Scanner

Open Source

Vulnerability Scanner

X-Ray Vuln Scanner

Open Source

Vulnerability Scanner

XehookStealer

Stealer

XehookStealer

Stealer

XehookStealer

Stealer

XenoRAT

RAT

Windows

XenoRAT

RAT

Windows

XenoRAT

RAT

Windows

Yakit Security Tool

Pen testing

Yakit Security Tool

Pen testing

Yakit Security Tool

Pen testing

Malware Families FAQ

What are malware families and why do we need to know them to combat ever-changing threats?

What are malware families and why do we need to know them to combat ever-changing threats?

What are malware families and why do we need to know them to combat ever-changing threats?

How does malware affect businesses and what can we do to stop it?

How does malware affect businesses and what can we do to stop it?

How does malware affect businesses and what can we do to stop it?

How do attackers get into sensitive systems through malware?

How do attackers get into sensitive systems through malware?

How do attackers get into sensitive systems through malware?

How do organizations protect their operating systems from malware?

How do organizations protect their operating systems from malware?

How do organizations protect their operating systems from malware?

How do malicious files spread malware across the network?

How do malicious files spread malware across the network?

How do malicious files spread malware across the network?

Get biweekly intelligence to hunt adversaries before they strike.

The Most Popular Malware Families

Threat Hunting Platform

Products

Web Interface

Feeds

Enrichment API

Features

AttackCapture™

HuntSQL™

C2 Detection

IOC Hunter

Phishing Infrastructure

Resources

Blog

Change Log

Support Docs

Integrations

Malware Families

Glossary

Company

About Us

Use Cases

Testimonials

OEM Partners

Contact Us

Latest News

Hunt.io Exposes and Analyzes ERMAC V3.0 Banking Trojan Full Source Code Leak

Hunt.io Exposes and Analyzes ERMAC V3.0 Banking Trojan Full Source Code Leak

Aug 14, 2025

APT Sidewinder Spoofs Government and Military Institutions to Target South Asian Countries with Credential Harvesting Techniques

APT Sidewinder Spoofs Government and Military Institutions to Target South Asian Countries with Credential Harvesting Techniques

Aug 8, 2025

APT36 Expands Beyond Military: New Attacks Hit Indian Railways, Oil & Government Systems

APT36 Expands Beyond Military: New Attacks Hit Indian Railways, Oil & Government Systems

Jul 31, 2025

©2025

Hunt Intelligence, Inc.

Terms & Conditions

|

Privacy Policy

Get biweekly intelligence to hunt adversaries before they strike.

The Most Popular Malware Families

Threat Hunting Platform

Products

Web Interface

Feeds

Enrichment API

Features

AttackCapture™

HuntSQL™

C2 Detection

IOC Hunter

Phishing Infrastructure

Resources

Blog

Change Log

Support Docs

Integrations

Malware Families

Glossary

Company

About Us

Use Cases

Testimonials

OEM Partners

Contact Us

Latest News

Hunt.io Exposes and Analyzes ERMAC V3.0 Banking Trojan Full Source Code Leak

Hunt.io Exposes and Analyzes ERMAC V3.0 Banking Trojan Full Source Code Leak

Aug 14, 2025

APT Sidewinder Spoofs Government and Military Institutions to Target South Asian Countries with Credential Harvesting Techniques

APT Sidewinder Spoofs Government and Military Institutions to Target South Asian Countries with Credential Harvesting Techniques

Aug 8, 2025

APT36 Expands Beyond Military: New Attacks Hit Indian Railways, Oil & Government Systems

APT36 Expands Beyond Military: New Attacks Hit Indian Railways, Oil & Government Systems

Jul 31, 2025

©2025

Hunt Intelligence, Inc.

Terms & Conditions

|

Privacy Policy

Get biweekly intelligence to hunt adversaries before they strike.

The Most Popular Malware Families

Threat Hunting Platform

Products

Web Interface

Feeds

Enrichment API

Features

AttackCapture™

HuntSQL™

C2 Detection

IOC Hunter

Phishing Infrastructure

Resources

Blog

Change Log

Support Docs

Integrations

Malware Families

Glossary

Company

About Us

Use Cases

Testimonials

OEM Partners

Contact Us

Latest News

Hunt.io Exposes and Analyzes ERMAC V3.0 Banking Trojan Full Source Code Leak

Hunt.io Exposes and Analyzes ERMAC V3.0 Banking Trojan Full Source Code Leak

Aug 14, 2025

APT Sidewinder Spoofs Government and Military Institutions to Target South Asian Countries with Credential Harvesting Techniques

APT Sidewinder Spoofs Government and Military Institutions to Target South Asian Countries with Credential Harvesting Techniques

Aug 8, 2025

APT36 Expands Beyond Military: New Attacks Hit Indian Railways, Oil & Government Systems

APT36 Expands Beyond Military: New Attacks Hit Indian Railways, Oil & Government Systems

Jul 31, 2025

©2025

Hunt Intelligence, Inc.

Terms & Conditions

|

Privacy Policy