STRRAT - (Java)

STRRAT - (Java Archive)

STRRAT (Java Archive)
OS: Linux or Windows
Functionality: Remote Access Trojan/Tool (RAT)

Read

Spicy Hot Pot - (32-bit PE)

Spicy Hot Pot - (32-bit PE)

Spicy Hot Pot (32-bit PE)
OS: Windows
Functionality: Browser Hijacking Rootkit

Read (External)

Redline - (32-bit .NET PE)

Redline - (32-bit .NET PE)

Redline Stealer (32-bit .NET PE)
OS: Windows
Functionality: Information/Credential Stealer

Read

Aspmuma 2009 'xxooxx' - (ASP.NET '.aspx' Script)

Aspmuma 2009 'xxooxx' - (ASP.NET '.aspx' Script)

Aspmuma 2009 ‘xxooxx’ (ASP.NET ‘.aspx’ Script)
OS: Windows
Functionality: Web Shell

Read

Remcos RAT - (32-bit .NET PE)

Remcos RAT - (32-bit .NET PE and 32-bit C++ PE)

Remcos RAT (32-bit .NET PE and 32-bit C++ PE)
OS: Windows
Functionality: Injector and Remote Access Trojan/Tool (RAT)

Read

Cobalt Strike Stager - (32-bit Shellcode)

Cobalt Strike Stager - (32-bit Shellcode)

Cobalt Strike Stager - (32-bit Shellcode)
OS: Windows
Functionality: Reflective Code Loader and C2 Framework

Watch

Snake Keylogger - (32-bit .NET PE)

Snake Keylogger - (32-bit .NET PE)

Snake Keylogger - (32-bit .NET PE)
OS: Windows
Functionality: Reflective Code Loader, Keylogger, and Information/Credential Stealer

Watch

Android Malware 1 - (Android 'APK')

Android Malware 1 - (Android 'APK')

Android Malware 1 - (Android ‘APK’)
OS: Android
Functionality: Advertising Affiliate Reflective Code Loader and Spyware

Watch

PowerShell Webhook Clipper - (PowerShell)

PowerShell Webhook Clipper - (PowerShell)

PowerShell Webhook Clipper - (PowerShell)
OS: Windows
Functionality: Clipboard Stealer

Watch

Agent Tesla - (AutoIT PE and 32-bit .NET PE)

Agent Tesla - (AutoIT PE and 32-bit .NET PE)

Agent Tesla - (AutoIT PE and 32-bit .NET PE)
OS: Windows
Functionality: Injector, Keylogger, Information/Credential Stealer, and Remote Access Trojan/Tool (RAT)

Watch

BlackNET RAT - (SFX PE and 32-bit .NET PE)

BlackNET RAT - (SFX PE and 32-bit .NET PE)

BlackNET RAT - (SFX PE and 32-bit .NET PE)
OS: Windows
Functionality: Botnet, Remote Access Trojan/Tool (RAT), Information/Credential Stealer, Keylogger, DDoS Attack

Watch

Dark Tortilla - (32-bit .NET PE)

Dark Tortilla - (32-bit .NET PE)

Dark Tortilla - (32-bit .NET PE)
OS: Windows
Functionality: Crypter and Reflective Code Loader

Watch

Havoc - (64-bit PE)

Havoc - (64-bit PE)

Havoc - (64-bit PE)
OS: Windows
Functionality: Post-exploitation C2 Framework

Watch

XWorm Loader - (VBS, PowerShell and Steganography)

XWorm Loader - (VBS, PowerShell and Steganography)

XWorm Loader - (VBS, PowerShell and Steganography)
OS: Windows
Functionality: Downloader, Launcher, Reflective Code Loader, and Remote Access Trojan/Tool (RAT)

Watch

Duvet Stealer - (Electron Malware)

Duvet Stealer - (Electron Malware)

Duvet Stealer - (Electron Malware)
OS: Windows
Functionality: Discord Token and Information Stealer

Watch

FakeBat Loader - (MSIX Archive and PowerShell Script)

FakeBat Loader - (MSIX Archive and PowerShell Script)

FakeBat Loader - (MSIX Archive and PowerShell Script)
OS: Windows
Functionality: Fake Installer, Code Loader, and Malware Downloader

Watch

IDAT (Hijack) Loader  Injector - (DLL Side-Load, Shellcode, and Steganography)

IDAT (Hijack) Loader Injector - (DLL, Shellcode, and Steganography)

IDAT (Hijack) Loader Injector - (DLL, Shellcode, and Steganography)
OS: Windows
Functionality: Code Loader, and Malware Injector

Watch

AsyncRAT Invoker - (VBS, PowerShell, Batch Script, 32-bit .NET PE)

AsyncRAT Invoker - (VBS, PowerShell, Batch Script, 32-bit .NET PE)

AsyncRAT Invoker - (VBS, PowerShell, Batch Script, 32-bit .NET PE)
OS: Windows
Functionality: Code Downloader, Reflective Loader, and Malware Injector

Watch

Cryptoshuffler/TURS Agent - (MSI, Java)

Cryptoshuffler/TURS Agent - (MSI, Java)

Cryptoshuffler/TURS Agent - (MSI, Java)
OS: Windows
Functionality: Backdoored Installer, Malware Downloader

Watch

Atomic MacOS Stealer (AMOS) - (Mac-O)

Atomic MacOS Stealer (AMOS) - (Mac-O)

Atomic MacOS Stealer (AMOS) - (Mac-O)
OS: MacOS
Functionality: Credential and Cryptowallet Information Stealer

Watch

Formbook Downloader - (LNK, PowerShell, HTA)

Formbook Downloader - (LNK, PowerShell, HTA)

Formbook Downloader - (LNK, PowerShell, HTA)
OS: Windows
Functionality: Malware Downloader and Launcher

Watch

LummaC2 - (32-bit PE, 64-bit PE)

LummaC2 - (32-bit PE, 64-bit PE)

LummaC2 - (32-bit PE, 64-bit PE)
OS: Windows
Functionality: Fake Cracked Software Credential and Cryptowallet Information Stealer

Watch

ClearFake - (JavaScript, Binance Smart Contract)

ClearFake - (JavaScript, Binance Smart Contract)

ClearFake - (JavaScript, Binance Smart Contract)
OS: Windows
Functionality: Fake Browser Update Hosted on Binance Smart Contracts

Watch