• 54e64e 32 samples malware-family, loader, defense-evasion, c2
• 9d2ca3 15 samples loader, malware-family, pe, mingw
• ACR Stealer 114 samples infostealer, malware-family, golang, signing
• AsgardProtector 2 samples malware-family, loader, evasion, pe
• AsyncRAT 6 samples malware-family, rat, dotnet, c2
• ayrseushop 1 sample malware-family, infostealer, pe, compiler
• chacha8 1 sample malware-family, ransomware, file-encryptor, chacha
• coinminer 69 samples malware-family, cryptominer, impact, defense-evasion
• ConnectWise (ScreenConnect) abuse 69 samples malware-family, c2, defense-evasion, signing
• dolphin 0 samples rust, malwarerat, rat, infostealer
• euone 1 sample malware-family, pe, installer, delphi
• gcleaner 1 sample malware-family, downloader, installer, pe
• hippamsascom 7 samples malware-family, loader, pe, compiler
• iteGroup SBS Dropper 0 samples script, dropper, c2, obfuscation
• Lazarus Group 3 samples threat-actor, attribution, malware-family, loader
• Lummastealer 17 samples infostealer, malware-family, golang, signing
• maskgramstealer — MinGW-w64 PE64 infostealer family with runtime API resolution and Telegram C2 1 sample malware-family, infostealer, clipper, pe
• menomoushop 1 sample malware-family, infostealer, pe, compiler
• Meterpreter 3 samples malware-family, rat, c2-protocol, code-injection
• mirai 0 samples iot, botnet, ddos, arm
• NanoCore 60 samples malware-family, rat, dotnet, c2
• netsupport-inno-dropper 1 sample malware-family, loader, pe, installer
• NeuralpulseCore5SBS 1 sample infostealer, malware-family, golang, signing
• nfedigitalcom 2 samples malware-family, banker, loader, pe
• OrderReshop Stealer 1 sample infostealer, malware-family, golang, pe-overlay-parser
• Phorpiex 2 samples malware-family, loader, malware-bazaar, attribution
• Prometei 3 samples malware-family, cryptominer, linux, elf
• pyinstaller-pyarmor-dropper 0 samples python-pyinstaller, obfuscation, defense-evasion, pe
• Quasar 1 sample dotnet, rat, malware-family, c2
• Remcos RAT 9 samples malware-family, rat, c2, persistence
• RemotePE 0 samples malware-family, rat, c2-protocol, loader
• SilverFox (ValleyRAT) 44 samples malware-family, loader, rat, defense-evasion
• spamita 4 samples malware-family, script, loader, spam
• sunwukong 2 samples malware-family, loader, pe, compiler
• Unclassified Batch PowerShell Dropper Family 0 samples script, dropper, c2, defense-evasion
• Unclassified .NET Bitmap-Stego Loader 0 samples dotnet, obfuscation, loader, bitmap-steganography
• Unclassified Go PE64 0 samples pe, malware-family, compiler, signing
• Unclassified JS Dropper Family 0 samples script, dropper, c2, anti-vm
• Unclassified .NET PE32 Malware 0 samples dotnet, obfuscation, loader, infostealer
• unclassified-pe32-nfe-loader 0 samples malware-family, loader, dropper, pe
• Unclassified PE32 0 samples pe, malware-family, loader, evasion
• Unclassified PE32+ — large MSVC C++ binaries with TLS callbacks and minimal IAT 0 samples malware-family, loader, pe, compiler
• Unclassified PE64 Clipper — MinGW-w64 infostealer with wallet regex and Telegram user ID 0 samples malware-family, infostealer, clipper, pe
• XenoRAT 0 samples malware-family, rat, dotnet, c2