Skip to content
/ malware-ioc Public
forked from eset/malware-ioc

Indicators of Compromises (IOC) of our various investigations

www.welivesecurity.com

License

BSD-2-Clause license
0 stars 267 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

cousy285/malware-ioc

1 Branch0 Tags
This branch is 7 commits behind eset/malware-ioc:master.

Folders and files

NameName
Last commit message
Last commit date

Latest commit

eset-researchnyx0
eset-research
and
nyx0
Added IoCs for bootkitty
Nov 26, 2024
9431ee8 · Nov 26, 2024

History

239 Commits
ace_cryptor
ace_cryptor
Mar 20, 2024
agrius
agrius
Dec 8, 2022
amavaldo
amavaldo
Jul 31, 2019
animalfarm
animalfarm
Aug 17, 2015
apt_c_60
apt_c_60
Aug 26, 2024
aridspy
aridspy
Jun 12, 2024
asylum_ambuscade
asylum_ambuscade
Jun 8, 2023
attor
attor
Oct 10, 2019
backdoordiplomacy
backdoordiplomacy
Jun 8, 2021
badiis
badiis
Aug 4, 2021
ballisticbobcat
ballisticbobcat
Sep 11, 2023
bandook
bandook
Jul 5, 2021
blacklotus
blacklotus
Feb 28, 2023
blackwood
blackwood
Jan 23, 2024
bootkitty
bootkitty
Nov 26, 2024
buhtrap
buhtrap
Jun 2, 2020
casbaneiro
casbaneiro
Oct 2, 2019
cdrthief
cdrthief
Sep 10, 2020
ceranakeeper
ceranakeeper
Oct 1, 2024
cloudmensis
cloudmensis
Jul 18, 2022
cosmicbeetle
cosmicbeetle
Sep 10, 2024
danabot
danabot
Feb 11, 2019
dark_iot
dark_iot
Sep 20, 2021
dazzlespy
dazzlespy
Jan 24, 2022
deprimon
deprimon
Nov 22, 2019
dnsbirthday
dnsbirthday
Feb 11, 2019
donot
donot
Jan 15, 2022
dukes
dukes
Oct 28, 2019
embargo
embargo
Oct 15, 2024
emotet
emotet
Jul 5, 2023
especter
especter
Oct 5, 2021
evasive_panda
evasive_panda
Oct 18, 2024
evilnum
evilnum
Feb 12, 2021
evilvideo
evilvideo
Jul 22, 2024
exchange_exploitation
exchange_exploitation
Mar 10, 2021
famoussparrow
famoussparrow
Sep 22, 2021
gamaredon
gamaredon
Sep 25, 2024
gamarue
gamarue
Feb 11, 2019
gelsemium
gelsemium
Nov 14, 2024
glupteba
glupteba
Feb 11, 2019
gmera
gmera
Jul 16, 2020
goldenjackal
goldenjackal
Oct 1, 2024
grandoreiro
grandoreiro
Jan 29, 2024
gravityrat
gravityrat
Jun 19, 2023
gref
gref
Aug 30, 2023
greyenergy
greyenergy
Jul 26, 2019
groundbait
groundbait
Aug 28, 2019
guildma
guildma
Mar 2, 2020
hamkombat
hamkombat
Jul 22, 2024
hotpage
hotpage
Jul 18, 2024
industroyer
industroyer
Jul 26, 2019
interception
interception
Jun 16, 2020
invisimole
invisimole
May 17, 2021
janeleiro
janeleiro
Apr 6, 2021
kamran
kamran
Nov 8, 2023
kasidet
kasidet
Feb 11, 2019
keydnap
keydnap
Feb 11, 2019
kimsuky/hotdoge_donutcat_case
kimsuky/hotdoge_donutcat_case
Dec 13, 2021
king_tut
king_tut
Oct 16, 2023
kobalos
kobalos
Feb 2, 2021
krachulka
krachulka
Sep 25, 2020
kryptocibule
kryptocibule
Sep 1, 2020
lokorrito
lokorrito
Sep 25, 2020
machete
machete
Aug 5, 2019
mekotio
mekotio
Aug 10, 2020
mikroceen
mikroceen
May 20, 2020
mirrorface
mirrorface
Dec 13, 2022
mispadu
mispadu
Nov 20, 2019
modiloader
modiloader
Jul 29, 2024
moose
moose
Feb 11, 2019
moustachedbouncer
moustachedbouncer
Aug 10, 2023
mozi
mozi
Oct 31, 2023
mumblehard
mumblehard
Apr 6, 2016
mustang_panda
mustang_panda
Mar 22, 2022
ngate
ngate
Aug 22, 2024
nightscout
nightscout
Feb 1, 2021
nukesped_lazarus
nukesped_lazarus
Sep 29, 2023
numando
numando
Sep 16, 2021
oceanlotus
oceanlotus
Jul 26, 2019
oilrig
oilrig
Dec 14, 2023
okrum_ke3chang
okrum_ke3chang
Jul 18, 2019
operation_jacana
operation_jacana
Sep 29, 2023
operation_texonto
operation_texonto
Feb 21, 2024
ousaban
ousaban
May 4, 2021
polonium
polonium
Oct 10, 2022
potao
potao
Feb 11, 2019
powerpool
powerpool
Feb 11, 2019
pwa_phishing
pwa_phishing
Aug 13, 2024
pypi_backdoor
pypi_backdoor
Dec 11, 2023
quarterly_reports
quarterly_reports
Feb 4, 2022
rakos
rakos
Feb 11, 2019
ramsay
ramsay
May 12, 2020
redline
redline
Nov 12, 2024
romcom
romcom
Nov 21, 2024
rtm
rtm
Jul 26, 2019
scarcruft
scarcruft
Nov 30, 2022
sednit
sednit
Jul 26, 2019
signsight
signsight
Dec 17, 2020
spalax
spalax
Jan 12, 2021
sparklinggoblin
sparklinggoblin
Sep 13, 2022
spyloan
spyloan
Dec 1, 2023
sshdoor
sshdoor
Feb 11, 2019
stantinko
stantinko
Nov 26, 2019
stealthfalcon
stealthfalcon
Sep 20, 2023
stealthytrident
stealthytrident
Dec 9, 2020
swc-candiru
swc-candiru
Jan 11, 2022
ta410
ta410
Apr 27, 2022
telebots
telebots
Feb 11, 2019
telekopye
telekopye
Oct 7, 2024
tick
tick
Mar 14, 2023
turla
turla
May 15, 2024
ua_wipers
ua_wipers
Mar 1, 2022
vadokrist
vadokrist
Jan 20, 2021
vajraspy
vajraspy
Jan 29, 2024
virtual_invaders
virtual_invaders
Mar 26, 2024
windigo
windigo
Jul 2, 2024
winnti_group
winnti_group
May 22, 2020
winter_vivern
winter_vivern
Oct 24, 2023
worok
worok
Sep 6, 2022
xdspy
xdspy
Oct 1, 2020
zimbra_phishing
zimbra_phishing
Aug 10, 2023
zumanek
zumanek
Sep 25, 2020
LICENSE
LICENSE
Jan 9, 2018
Makefile
Makefile
Mar 17, 2014
README.adoc
README.adoc
Aug 7, 2020
aceCryptor
aceCryptor
Mar 20, 2024
aceCryptor_h2_2023
aceCryptor_h2_2023
Mar 20, 2024
andromeda
andromeda
Dec 4, 2017

Repository files navigation

Malware Indicators of Compromise

 .-------------.
(  E  S | E  T  )  R e s e a r c h
 `-------------'

Copyright © ESET 2014-2020

Here are indicators of compromise (IOCs) of our various investigations. We are doing this to help the broader security community fight malware wherever it might be.

  • .yar files are Yara rules

  • .rules files are Snort rules

  • samples.md5, samples.sha1 and samples.sha256 files are newline separated list of hexadecimal digests of malware samples

If you would like to contribute improved versions please send us a pull request.

If you’ve found false positives give us the details in an issue report and we’ll try to improve our IOCs.

These are licensed under the permissive BSD two-clause license. You are allowed to modify these and keep the changes to yourself even though it would be rude to do so.

About

Indicators of Compromises (IOC) of our various investigations

www.welivesecurity.com

Resources

Readme

License

BSD-2-Clause license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • YARA 76.6%
  • Raku 16.8%
  • Python 4.1%
  • Kaitai Struct 2.3%
  • Makefile 0.2%