392Total Families
89386Research
293703IOC Records
6182C2 Sunucu
| Family Name | Tür | Dil | First Seen | C2 Protocol | Purpose / Capabilities | Hedef | Rapor |
|---|---|---|---|---|---|---|---|
| NjRAT | RAT | VB.NET | 2012 | TCP (varsayilan port 1177) |
Uzaktan erişim
tuş kaydı
|
Windows | 209 |
| RemcosRAT | RAT | C++ | 2016 | TCP/RC4 |
Uzaktan Erisim
Keylogging
Screen Record
+2
|
Windows | 200 |
| DCRat | RAT | C#/.NET | 2019 | HTTP |
Plugin tabanlı RAT
|
Windows | 200 |
| NanoCore | RAT | .NET | 2013 | TCP |
Plugin tabanlı RAT
|
Windows | 200 |
| LimeRAT | RAT | C#/.NET | 2019 | TCP |
Açık kaynak RAT
|
Windows | 200 |
| BitRAT | RAT | C++ | 2020 | TCP |
Çok işlevli RAT
|
Windows | 200 |
| DarkComet | RAT | Delphi | 2008 | TCP |
Eski RAT ailesi
|
Windows | 200 |
| Gh0stRAT | RAT | C++ | 2008 | TCP |
APT RAT
|
Windows | 200 |
| XWorm | RAT | .NET C# | 2022 | TCP |
Uzaktan erişim
infostealer
|
Windows | 198 |
| AsyncRAT | RAT | .NET C# | 2019 | TCP/SSL |
Uzaktan erişim
tuş kaydı
|
Windows | 192 |
| QuasarRAT | RAT | C#/.NET | 2014 | TCP/SSL |
Uzaktan masaüstü
dosya yönetimi
|
Windows | 149 |
| WarzoneRAT | RAT | C++ | 2018 | TCP |
UAC bypass RAT
|
Windows | 43 |
| LimeRAT2 | RAT | C#/.NET | 2019 | HTTP |
Remote Access+Keylogging
|
Güney Asya | — |
| SilverRAT | RAT | .NET/C# | 2023 | TCP |
Remote Access
|
Kuresel | — |
| Remcos2 | RAT | C++ | 2016 | TCP/RC4 |
Remote Access+Keylogger
|
Küresel | — |
| TelegramRAT | RAT | C#/.NET | 2020 | Telegram API |
Remote Access
|
Küresel | — |
| STRRAT2 | RAT | JavaScript/Java | 2020 | TCP/HTTP |
Remote Access
|
Küresel/BEC | — |
| AveMaria2 | RAT | C#/.NET | 2018 | TCP/MySQL |
Remote Access
|
Orta Dogu/MENA | — |
| GhostRAT3 | RAT | Delphi/C++ | 2008 | TCP RC4 |
Remote Access
|
Çin/Küresel | — |
| NetSupportRAT | RAT | C++ | 2017 | TCP/HTTP |
Remote Access
|
Kurumsal | — |
| XtremeRAT | RAT | Delphi | 2010 | TCP |
Remote Access
|
Küresel | — |
| VenomRAT2 | RAT | C#/.NET | 2021 | TCP/HTTPS |
Remote Access
|
Küresel | — |
| AteraRAT | RAT | Commercial RMM | 2016 | HTTPS RMM |
Unauthorized Remote Access
|
Küresel | — |
| CraxsRAT | RAT | C#/.NET | 2021 | TCP/HTTP |
Remote Access/Keylog
|
Küresel | — |
| OctoAndroid | RAT | Java/Kotlin | 2021 | HTTPS |
Android Banking Trojan
|
Android Banka Kullanicilari | — |
| HookAndroid | RAT | Java/Kotlin | 2022 | HTTPS |
Android Banking RAT
|
Android Banka Kullanicilari | — |
| SilenceRAT | RAT | C++ | 2018 | OpenSSL TLS |
Banking RAT
|
Rusya/CIS | — |
| XWorm2 | RAT | VBScript/.NET | 2022 | TCP |
Remote Access
|
LATAM/Ispanya | — |
| NanoCore2 | RAT | C#/.NET | 2013 | TCP |
Remote Access+Keylogger
|
Kuresel | — |
| QuasarRAT2 | RAT | C#/.NET | 2019 | TCP |
Remote Access+Credential Steal
|
Kuresel | — |
| NetSupport | RAT | C++ | 2020 | TCP |
Uzaktan Erişim
Keylogger
Ekran Görüntüsü
+1
|
Windows | — |
| SpyNote | RAT | Java | 2019 | TCP |
Android RAT
|
Android | — |
| BitRAT2 | RAT | C++ | 2020 | HTTP/Discord CDN |
Remote Access
|
Kuresel | — |
| AresRAT | RAT | Python | 2019 | HTTP/TCP |
Remote Access
|
Kuresel/Linux | — |
| Winos4.0 | RAT | C++ | 2024 | HTTP/RC2 |
Remote Access
|
Çin | — |
| SectopRAT2 | RAT | C#/.NET | 2019 | TCP/HTTPS |
Remote Access+Credential Steal
|
Kuresel | — |
| DarkComet2 | RAT | Delphi | 2008 | TCP |
Remote Access+Keylogger
|
Kuresel | — |
| Remcos | RAT | C++ | 2016 | TCP/SSL |
Uzaktan izleme
tuş kaydı
|
Windows | — |
| AnubisRAT | RAT | Java | 2019 | HTTP |
Android Banking Trojan
|
Hindistan/Guney Asya | — |
| Adwind2 | RAT | Java | 2012 | TCP |
Remote Access
|
Kuresel | — |
| VenomRAT | RAT | C#/.NET | 2020 | TCP/SSL |
AsyncRAT türevi
|
Windows | — |
| HydraAndroid | RAT | Java | 2019 | HTTP |
Android Banking Trojan
|
Almanya/AB/Brezilya | — |
| CerberusAndroid | RAT | Java | 2019 | HTTP |
Android Banking Trojan
|
Turkiye/Avrupa/Kuresel | — |
| GhostRat | RAT | C++ | 2008 | TCP |
Remote Access
|
Küresel | — |
| WarZone | RAT | C++ | 2018 | HTTP |
Remote Access
|
Küresel | — |
| BlackMoon | RAT | C++ | 2014 | TCP |
Remote Access
|
Asya/Küresel | — |
| XenoRAT | RAT | C#/.NET | 2023 | TCP/TLS |
Remote Access
|
Küresel | — |
| BlindEagle | RAT | Delphi/AutoIt | 2018 | HTTP |
Remote Access
|
Latin Amerika | — |
| SectopRAT | RAT | C#/.NET | 2019 | TCP |
Gizli masaüstü RAT
|
Windows | — |
| NetWire | RAT | C | 2012 | TCP |
Uzaktan erişim
tuş kaydı
dosya yönetimi
|
Windows/Linux/macOS | — |
| Vultur | RAT | Java | 2021 | HTTP |
Android Banking RAT+VNC
|
Küresel Android/Finans | — |
| PupyRAT | RAT | Python/C | 2015 | TCP/HTTPS |
Remote Access/Post-Exploitation
|
Küresel/Linux | — |
| NanoCoreRAT | RAT | C#/.NET | 2013 | TCP |
Remote Access/Keylogger/Screen
|
Küresel | — |
| ValleyRAT | RAT | C++ | 2023 | HTTP |
Çin APT RAT
|
Windows | — |
| WshRAT | RAT | VBScript | 2019 | TCP/HTTP |
Remote Access/Keylogger
|
Küresel | — |
| PoisonIvy | RAT | C | 2005 | TCP |
APT RAT
|
Windows | — |
| NetWireRAT | RAT | C++ | 2012 | TCP/FTP |
Remote Access/Credential Stealing/Keylogger
|
Küresel | — |
| RevengeRAT | RAT | C#/.NET | 2016 | TCP |
Uzaktan erişim
tuş kaydı
ekran görüntüsü
|
Windows | — |
| XRat | RAT | C#/.NET | 2014 | TCP |
Remote Access
|
Kuresel | — |
| Orcus | RAT | C#/.NET | 2016 | TCP |
Uzaktan erişim
botnet yönetimi
|
Windows | — |
| GoRAT | RAT | Go | 2023 | TLS/HTTPS |
Remote Access/Credential Theft/Lateral Movement
|
Küresel | — |
| Bandook | RAT | Delphi | 2007 | TCP |
Hedef odaklı uzaktan erişim ve gözetleme
|
Windows | — |
| DCRat3 | RAT | C#/.NET | 2018 | HTTPS |
Remote Access+Keylogger
|
Kuresel | — |
| PmGoRAT | RAT | C#/.NET | 2023 | TCP/HTTP |
Remote Access
|
Türkiye/Küresel | — |
| SnakeDeveloperRAT | RAT | C#/.NET | 2023 | HTTP |
Remote Access/Screenshot Capture
|
Küresel | — |
| AutoItRAT | RAT | AutoIt | 2022 | HTTP/TCP |
Remote Access/Keylogger/Screenshot/Process Injection
|
Küresel | — |
| ScreenshotRAT | RAT | C (MinGW) | 2022 | TCP/HTTP |
Remote Access/Screenshot
|
Küresel | — |
| CrimsonRAT | RAT | .NET | 2018 | TCP |
Siber Casusluk
Dosya Hırsızlığı
Uzaktan Erisim
|
Hindistan, Pakistan — hukumet, savunma, think-tank | — |
| STRRAT | RAT | Java | 2020 | TCP (1033/1234) |
Remote Access
Keylogging
Credential Theft
|
Kuresel | — |
| JavaRAT | RAT | Java | 2023 | TCP |
Remote Access
|
Küresel | — |
| AsyncRAT2 | RAT | C#/.NET | 2019 | TCP/SSL |
Remote Access
|
Küresel | — |
| ScreenConnect | RAT | Proprietary | 2024 | HTTPS |
Remote Access (RMM Abuse)
|
Küresel Kurumsal | — |
| AnubisAndroid | RAT | Java/Kotlin | 2019 | HTTP |
Banking+SMS OTP
|
Hindistan/Küresel | — |
| LodaRAT | RAT | AutoIt/C | 2016 | HTTP |
Remote Access+Keylogging
|
LATAM/Orta Dogu | — |
| WarzoneRAT2 | RAT | C++ | 2019 | TCP |
Remote Access+Credential
|
Küresel Kurumsal | — |
| PoisonIvy2 | RAT | Delphi/C | 2005 | TCP/Custom |
Remote Access+Espionage
|
Devlet Hedefleri | — |
| FalseXmrigRAT | RAT | C/C++ | 2024 | FTP/HTTP |
Remote Access/Stealer/Webcam/Screenshot
|
Kuresel | — |
| WTSSessionHijacker | RAT | C/C++ | 2024 | custom |
RDP Hijack/Lateral Movement
|
Kuresel/Kurumsal | — |
| OrcusRAT | RAT | C#/.NET | 2016 | TCP + Discord CDN |
Remote Access
DDoS
Keylogging
|
Kuresel | — |
| SvchostVNCInjector | RAT | C/C++ | 2024 | custom |
Remote Desktop/Process Injection/VNC
|
Kurumsal | — |
| AllatoriJavaRAT | RAT | Java | 2026 | custom |
Remote Access/Data Theft
|
Kuresel | — |
| CyberGate | RAT | Delphi | 2009 | TCP |
Remote Access+Keylogging
|
Küresel | — |
| DiddywareJavaRAT | RAT | Java | 2026 | HTTP |
Remote Access/Credential Theft
|
Oyuncu/Discord | — |
| DCRat2 | RAT | C#/.NET | 2020 | TCP/HTTP |
Remote Access+Keylogging
|
Küresel | — |
| NjRAT3 | RAT | VB.NET | 2013 | TCP |
Remote Access+Keylogging
|
Orta Dogu/LATAM | — |
| AsyncRAT3 | RAT | C#/.NET | 2019 | TCP |
Remote Access+Keylogging
|
Küresel Kurumsal | — |
| Remcos3 | RAT | C++ | 2017 | TCP |
Remote Access+Keylogging
|
Frankofon/Avrupa | — |
| Nanocore3 | RAT | C#/.NET | 2013 | TCP |
Remote Access+Keylogging
|
Küresel | — |
| GoldDigger | RAT | Java/C++ | 2023 | HTTPS |
Banking Credential Theft
|
Vietnam/Tayland/Endonezya | — |
| ResolverRAT | RAT | .NET/C# | 2021 | HTTPS |
Remote Access/Data Exfil
|
Saglik/Eczacilik Sektoru | — |
| AsusUpdateRAT | RAT | C | 2024 | HTTP |
Remote Access
File Management
Command Execution
|
Kuresel | — |
| Quasar3 | RAT | C#/.NET | 2014 | TCP |
Remote Access
|
Küresel | — |
| SparkRAT | RAT | Go | 2022 | WebSocket/HTTPS |
Remote Access
|
Küresel | — |
| LummaStealer | Infostealer | C | 2022 | HTTPS |
Browser Credential Theft
Crypto Wallet Exfil
2FA/TOTP Theft
+1
|
Windows | 231 |
| AgentTesla | Infostealer | .NET | 2014 | SMTP/FTP |
Tuş kaydı
kimlik bilgisi hırsızlığı
|
Windows | 201 |
| FormBook | Infostealer | C | 2016 | HTTP |
Form verisi
tuş kaydı
|
Windows | 200 |
| Vidar | Infostealer | C++ | 2018 | HTTP |
Kripto cüzdan hırsızlığı
|
Windows | 200 |
| AZORult | Infostealer | Delphi | 2016 | HTTP |
Tarayıcı
kripto hırsızlığı
|
Windows | 200 |
| Lokibot | Infostealer | C++ | 2015 | HTTP |
100+ uygulama hırsızlığı
|
Windows | 200 |
| Cryptbot | Infostealer | C | 2019 | HTTP |
Google Ads infostealer
|
Windows | 200 |
| XLoader | Infostealer | C | 2020 | HTTP |
FormBook türevi
|
Windows/macOS | 200 |
| RecordBreaker | Infostealer | C++ | 2022 | HTTP |
Raccoon v2
|
Windows | 200 |
| RedLine | Infostealer | .NET C# | 2020 | HTTPS |
Tarayıcı
kripto hırsızlığı
|
Windows | 199 |
| HawkEye | Infostealer | .NET | 2008 | SMTP/FTP |
Tuş kaydı
ekran görüntüsü
tarayıcı kimlik bilgisi
|
Windows | 199 |
| Rhadamanthys | Infostealer | C++ | 2022 | HTTP |
Gelişmiş infostealer
|
Windows | 199 |
| Arechclient | Infostealer | C# | 2020 | HTTP |
Tarayıcı Kimlik Bilgileri
Çerez Hırsızlığı
Kripto Cüzdan
+1
|
Windows | 198 |
| StealC | Infostealer | C | 2023 | HTTP |
Hafif infostealer
|
Windows | 148 |
| BlackGuard | Infostealer | C#/.NET | 2022 | HTTP |
Kapsamlı infostealer
|
Windows | 71 |
| PureLogs | Infostealer | .NET/C# | 2020 | HTTP |
Tarayıcı Kimlik Bilgileri
Çerez Hırsızlığı
Kripto Cüzdan
+1
|
Windows | 58 |
| RisePro | Infostealer | C++ | 2022 | HTTP |
PrivateLoader infostealer
|
Windows | 50 |
| Meduza | Infostealer | C++ | 2023 | HTTP |
Şifre yöneticisi hedefli
|
Windows | 43 |
| Raccoon | Infostealer | C++ | 2019 | HTTP |
Tarayıcı
kripto hırsızlığı
|
Windows | 31 |
| Arkei | Infostealer | C++ | 2020 | HTTP |
Tarayıcı Kimlik Bilgileri
Çerez Hırsızlığı
Kripto Cüzdan
+1
|
Windows | 27 |
| MarsStealer | Infostealer | C | 2021 | HTTPS |
Browser Credential Theft
Crypto Wallet
Extension Bypass
+1
|
Windows | 14 |
| Phemedrone | Infostealer | C# | 2020 | HTTP |
Tarayıcı Kimlik Bilgileri
Çerez Hırsızlığı
Kripto Cüzdan
+1
|
Windows | 6 |
| WhiteSnake | Infostealer | Python | 2023 | HTTP |
Python infostealer
|
Windows | 4 |
| Aurora | Infostealer | Go | 2022 | HTTP |
Go infostealer
|
Windows | 3 |
| RemusStealer | Infostealer | .NET/C# | 2023 | HTTP |
Browser Credential Theft
Clipboard Monitoring
Crypto Wallet
+1
|
Küresel | 2 |
| Erbium | Infostealer | C++ | 2022 | HTTP |
Oyun hesabı hedefli
|
Windows | 2 |
| StormKitty | Infostealer | VB6 | 2021 | HTTP |
Browser/Credential Stealer
|
Kuresel | — |
| Meduza2 | Infostealer | C++ | 2023 | HTTPS |
Credential Theft
|
Küresel | — |
| PhemedroneStealer2 | Infostealer | C#/.NET | 2023 | HTTPS |
Credential Stealer
|
Küresel | — |
| Predator | Infostealer | C#/.NET | 2022 | HTTPS |
Credential Stealer
|
Küresel/Kripto | — |
| BlackShades | Infostealer | C++ | 2014 | TCP |
Credential Stealer
|
Küresel | — |
| Mystic | Infostealer | C++ | 2023 | HTTP |
2023 infostealer
|
Windows | — |
| GinzoStealer | Infostealer | C#/.NET | 2022 | HTTP |
Credential Stealer
|
Kuresel | — |
| TitanStealer | Infostealer | C++ | 2020 | HTTP |
Tarayıcı Kimlik Bilgileri
Çerez Hırsızlığı
Kripto Cüzdan
+1
|
Windows | — |
| ObserverStealer | Infostealer | C++ | 2023 | HTTP/Telegram |
Credential Stealer
|
Kuresel | — |
| NovaStealer | Infostealer | C#/.NET | 2023 | HTTP |
Credential Stealer
|
Kuresel | — |
| AgentTesla4 | Infostealer | C#/.NET | 2014 | SMTP/FTP/HTTP |
Keylogger+Credential Stealer
|
Finans/Kurumsal | — |
| Nexus | Infostealer | Java | 2020 | HTTP |
Tarayıcı Kimlik Bilgileri
Çerez Hırsızlığı
Kripto Cüzdan
+1
|
Windows | — |
| CryptBot2 | Infostealer | Delphi | 2019 | HTTP |
Credential+Crypto Stealer
|
Kuresel | — |
| GodFather | Infostealer | Java | 2020 | HTTP |
Tarayıcı Kimlik Bilgileri
Çerez Hırsızlığı
Kripto Cüzdan
+1
|
Windows | — |
| Alien | Infostealer | Java | 2020 | HTTP |
Tarayıcı Kimlik Bilgileri
Çerez Hırsızlığı
Kripto Cüzdan
+1
|
Windows | — |
| Stealit | Infostealer | .NET/C# | 2020 | HTTP |
Tarayıcı Kimlik Bilgileri
Çerez Hırsızlığı
Kripto Cüzdan
+1
|
Windows | — |
| IcXor | Infostealer | .NET/C# | 2020 | HTTP |
Tarayıcı Kimlik Bilgileri
Çerez Hırsızlığı
Kripto Cüzdan
+1
|
Windows | — |
| MeduzaStealer2 | Infostealer | C++ | 2023 | HTTP |
Credential+Crypto Stealer
|
Kuresel | — |
| LokiBot2 | Infostealer | C++ | 2015 | HTTP |
Credential Stealer+Keylogger
|
Kuresel | — |
| MassLogger2 | Infostealer | C#/.NET | 2020 | HTTP/SMTP |
Credential Stealer+Keylogger
|
Kuresel | — |
| KeyBase | Infostealer | C#/.NET | 2015 | HTTP/SMTP |
Keylogger+Credential Stealer
|
Kuresel | — |
| Lumma | Infostealer | C++ | 2022 | HTTPS |
Kapsamlı kimlik bilgisi hırsızlığı
|
Windows | — |
| HookBot | Infostealer | Java | 2022 | HTTP |
Overlay/Banking
|
Küresel/Avrupa | — |
| SnakeKeylogger | Infostealer | C#/.NET | 2020 | SMTP/FTP |
Email tabanlı keylogger
|
Windows | — |
| Pony | Infostealer | C | 2011 | HTTP |
FTP email stealer
|
Windows | — |
| FormBook2 | Infostealer | C | 2016 | HTTP |
Form Grabber+Keylogger
|
Kuresel | — |
| MassLogger | Infostealer | C#/.NET | 2020 | SMTP/FTP |
Email keylogger
|
Windows | — |
| ErbiumStealer | Infostealer | C++ | 2022 | HTTP |
Credential+Crypto Steal
|
Kuresel | — |
| YTStealer | Infostealer | Go | 2022 | HTTPS |
Credential+Session Steal
|
YouTube Creator/Influencer | — |
| Typhon | Infostealer | C#/.NET | 2022 | Telegram |
Tarayıcı
kripto cüzdan
ekran görüntüsü hırsızlığı
|
Windows | — |
| Braodo | Infostealer | Python | 2022 | Telegram |
Tarayıcı ve kripto cüzdan hırsızlığı
|
Windows | — |
| EternityPrj | Infostealer | VBScript | 2022 | HTTPS |
Credential+Crypto Steal
|
Kuresel | — |
| Rhadamanthys3 | Infostealer | C++ | 2022 | HTTP |
Credential Steal+Clipper
|
Kuresel | — |
| Stealerium | Infostealer | C#/.NET | 2022 | HTTPS |
Credential+Crypto Steal
|
Kuresel | — |
| Snake Keylogger | Infostealer | .NET (C#) | 2020 | SMTP/FTP/Telegram |
Keylogging
Screenshot
Clipboard
+1
|
Küresel | — |
| Raccoon2 | Infostealer | Delphi | 2022 | HTTPS |
Credential+Screen Capture
|
Küresel | — |
| SnakeKeylogger2 | Infostealer | C#/.NET | 2020 | SMTP/FTP |
Keylogging+Credential Steal
|
Küresel (CIS hariç) | — |
| BluStealer | Infostealer | VB6/VBScript | 2021 | Telegram Bot API |
Credential+Crypto Steal
|
Küresel | — |
| LummaC2 | Infostealer | C/C++ | 2022 | HTTP/HTTPS |
Credential Theft
Crypto Theft
Token Theft
|
Kuresel | — |
| EncryptionSpyware | Infostealer | C++ | 2023 | HTTPS |
Infostealer/Spyware
|
Küresel | — |
| Eternity | Infostealer | C/C++ | 2022 | HTTP/HTTPS (Blockchain DNS) |
Credential Theft
Crypto Theft
|
Kuresel | — |
| ClipboardClipper | Infostealer | C/C++ | 2024 | Local |
Crypto Address Clipboard Swap
|
Küresel | — |
| UmbralStealer | Infostealer | C#/.NET | 2022 | HTTP/Telegram |
Credential Stealing
|
Küresel | — |
| BlueStealer | Infostealer | Delphi | 2021 | HTTP |
Credential + Crypto Theft
|
Kuresel | — |
| GinzoInfostealer | Infostealer | .NET/C# | 2024 | HTTP/C2 |
Credential Theft/Cookie Stealer
|
Kuresel | — |
| MozellaELF | Infostealer | Python/PyInstaller | 2024 | HTTP |
Cookie Stealer
|
Linux Sistemler | — |
| MetaStealer | Infostealer | C++ (GCC) | 2022 | HTTP |
Credential+Browser Theft
|
Küresel | — |
| MeduzaStealer | Infostealer | C#/.NET | 2023 | HTTP/TLS |
Credential + Crypto Theft
|
Kuresel — Oyun/Kripto Topluluklari | — |
| SteamMonitorStealer | Infostealer | C/C++ | 2024 | TCP |
Steam Credential Theft
|
Oyuncu/Steam Kullanicilari | — |
| AuroraStealer | Infostealer | Go (Golang) | 2022 | HTTP |
Credential + Crypto Theft
|
Kuresel | — |
| EternityStealer | Infostealer | .NET/C# | 2022 | HTTP/C2 |
Credential Theft/Clipboard Hijack/Infostealer
|
Kuresel | — |
| RecordBreaker2 | Infostealer | C++ | 2022 | HTTP |
Credential Stealing
|
Küresel | — |
| StrelaStealer | Infostealer | C | 2022 | HTTP |
Email Credential
|
İspanya/AB | — |
| QuasarStealer | Infostealer | C#/.NET | 2025 | HTTP |
Credential Theft/FTP
|
Kuresel | — |
| RedLineStealer | Infostealer | C#/.NET | 2020 | WCF/TCP |
Credential + Crypto Theft
|
Kuresel | — |
| Formbook3 | Infostealer | C/.NET | 2016 | HTTP/C2 Panel |
Form Grab+Credential
|
Küresel Kurumsal | — |
| UnixStealer | Infostealer | C#/.NET | 2023 | Discord Webhook/Telegram |
Credential+Crypto Theft
|
Kuresel Bireysel | — |
| LokiBot3 | Infostealer | C++ | 2015 | HTTP |
Credential Stealer
|
İtalya/Küresel | — |
| FickerStealer | Infostealer | Rust | 2020 | HTTP |
Credential+Crypto Theft
|
Küresel | — |
| RedLine3 | Infostealer | C#/.NET | 2020 | HTTP |
Credential+Crypto Theft
|
Küresel | — |
| GoStealer | Infostealer | Go (Golang) | 2023 | HTTPS |
Browser Credential Theft
|
Kuresel | — |
| CyberStealer | Infostealer | C#/.NET | 2024 | HTTPS |
Browser Credential Theft
|
Küresel | — |
| Jupyter | Infostealer | .NET/C# | 2020 | HTTPS/AES |
Browser Credential Theft
|
Genel Kullanici | — |
| AgentTesla7 | Infostealer | C#/.NET | 2014 | SMTP/FTP/Telegram |
Credential+Keylogging
|
Küresel Kurumsal | — |
| Emotet | Loader | C | 2014 | HTTP |
Kötü amaçlı yazılım dağıtımı
|
Windows | 200 |
| GuLoader | Loader | C | 2019 | HTTPS |
Şifreli payload indirme
|
Windows | 200 |
| BumbleBee | Loader | C++ | 2022 | HTTPS |
Cobalt Strike dropper
|
Windows | 200 |
| Hancitor | Loader | C | 2020 | HTTP |
Payload İndirme
Süreç Enjeksiyonu
Kalıcılık
+1
|
Windows | 200 |
| Gootloader | Loader | JavaScript | 2020 | HTTPS |
SEO zehirleme loader
|
Windows | 200 |
| SystemBC | Loader | C++ | 2019 | HTTPS |
SOCKS5 proxy loader
|
Windows | 200 |
| IcedID | Loader | C++ | 2017 | HTTPS |
Bankacılık sahtekarlığı
|
Windows | 199 |
| DBatLoader | Loader | Delphi | 2020 | HTTP |
Bulut servisi loader
|
Windows | 198 |
| DanaBot | Loader | Delphi | 2020 | TCP |
Payload İndirme
Süreç Enjeksiyonu
Kalıcılık
+1
|
Windows | 198 |
| PrivateLoader | Loader | C++ | 2021 | HTTP |
PPI botnet loader
|
Windows | 195 |
| Hijackloader | Loader | C | 2023 | HTTP |
Bellek enjeksiyon loader
|
Windows | 191 |
| ModiLoader | Loader | Delphi | 2020 | HTTP |
Payload İndirme
Süreç Enjeksiyonu
Kalıcılık
+1
|
Windows | 189 |
| SmokeLoader | Loader | C | 2011 | HTTP |
Ek yük indiren botnet
|
Windows | 103 |
| Pikabot2 | Loader | C++ | 2023 | TCP/HTTP |
Loader/Backdoor
|
Küresel | — |
| Warmcookie | Loader | JavaScript | 2023 | HTTPS |
Loader/Backdoor
|
Küresel Kurumsal | — |
| DarkGate2 | Loader | Delphi/C++ | 2018 | HTTPS |
Loader/RAT/Stealer
|
Küresel | — |
| KoiLoader | Loader | PowerShell | 2024 | HTTP |
Loader/Downloader
|
Küresel | — |
| Amadey5 | Loader | C++ | 2018 | HTTPS |
Loader/Stealer
|
Küresel | — |
| DonutLoader | Loader | BAT/PowerShell | 2023 | HTTP |
Loader
|
Küresel | — |
| GuLoader3 | Loader | C | 2019 | HTTP/HTTPS |
Loader
|
LATAM/Küresel | — |
| CloudEyE | Loader | C++ | 2019 | HTTP |
Dropper/Protector
|
Küresel/Orta Doğu | — |
| HeartCrypt | Loader | C#/.NET | 2023 | HTTP |
Packer+Loader
|
Kuresel | — |
| Squirrelwaffle | Loader | C++ | 2021 | HTTPS |
Loader
|
Kurumsal | — |
| Matanbuchus | Loader | C++ | 2021 | HTTPS |
MaaS loader
|
Windows | — |
| Amadey2 | Loader | C | 2018 | HTTP |
Loader+Botnet
|
Kuresel | — |
| Qiling | Loader | Python | 2020 | HTTP |
Payload İndirme
Süreç Enjeksiyonu
Kalıcılık
+1
|
Windows | — |
| CryptOne | Loader | C++ | 2020 | HTTP |
Payload İndirme
Süreç Enjeksiyonu
Kalıcılık
+1
|
Windows | — |
| Dridex2 | Loader | C/C++ | 2011 | P2P/HTTP |
Banking Trojan
|
Finans/Avrupa | — |
| Gootkit2 | Loader | JavaScript/Node.js | 2014 | HTTP |
Credential Stealer+Loader
|
Finans/UK/Almanya | — |
| BazarLoader | Loader | C++ | 2020 | HTTPS |
Cobalt Strike staging
|
Windows | — |
| Amadey | Loader | C | 2018 | HTTP |
Bilgi toplama
loader
|
Windows | — |
| PureCrypter | Loader | .NET | 2021 | HTTPS |
AV atlatma loader
|
Windows | — |
| Latrodectus | Loader | C | 2023 | HTTPS |
IcedID bağlantılı loader
|
Windows | — |
| TrueBot | Loader | C++ | 2017 | HTTP |
Botnet+Loader
|
Kuresel Finans/Kurumsal | — |
| DarkGate | Loader | Delphi | 2018 | HTTP |
Post-QakBot loader
|
Windows | — |
| PikaBot | Loader | C | 2023 | HTTPS |
QakBot benzeri loader
|
Windows | — |
| Winos | Loader | C++ | 2024 | HTTP |
Oyun modları aracılığıyla kötü amaçlı yazılım yükleme
|
Windows | — |
| SocGholish | Loader | JavaScript | 2017 | HTTPS |
Drive-By Loader
|
Kuresel Web Tarayıcı | — |
| JSDropper | Loader | JavaScript | 2023 | HTTP/HTTPS |
Dropper/Loader
|
Küresel | — |
| VBSDropper | Loader | VBScript | 2022 | HTTP |
Dropper/Loader
|
Küresel | — |
| XAMLDeserializationDropper | Loader | VBScript | 2023 | HTTP |
Dropper/Loader
|
Küresel | — |
| BATDropper | Loader | Batch Script | 2024 | HTTPS |
Dropper/Downloader
|
Küresel | — |
| VBSAESStager | Loader | VBScript | 2023 | HTTP |
Loader/Stager
|
Küresel | — |
| PSStager | Loader | PowerShell | 2023 | HTTPS/TCP |
Loader/Reverse Shell
|
Küresel | — |
| ReflectiveDLLInjector | Loader | C/C++ | 2024 | Named Pipe/C2 |
Process Injection/Fileless Loader
|
Küresel | — |
| CMDPSDropper | Loader | CMD/PowerShell | 2024 | HTTPS |
Dropper/Downloader
|
Küresel | — |
| NETDropper | Loader | C#/.NET | 2023 | HTTPS |
Dropper
|
Latin Amerika/İspanya | — |
| ProcessHollowingLoader | Loader | C#/.NET | 2024 | Local |
Process Hollowing/Loader
|
Küresel | — |
| DiscordCDNDropper | Loader | C#/.NET | 2024 | HTTPS/Discord CDN |
Dropper/Discord Dead Drop
|
Küresel | — |
| ObfuscatedNETDropper | Loader | C#/.NET | 2024 | Unknown |
Payload Dropper/Loader
|
Küresel | — |
| QUOTEHTADropper | Loader | JScript/HTA | 2026 | HTTP/PowerShell |
HTA Dropper/PowerShell Injector
|
Küresel | — |
| ResourceDropper | Loader | C/C++ | 2024 | HTTP |
PE Resource Dropper
|
Küresel | — |
| FTPInjectorLoader | Loader | C/C++ | 2024 | FTP/HTTP |
Loader/Injector
|
Kuresel | — |
| PSLoaderDLL | Loader | C/C++ | 2024 | HTTP |
Loader/Dropper
|
Kuresel | — |
| JSDropperLoader | Loader | JavaScript/PowerShell | 2024 | HTTP/custom |
Loader/Dropper/Process Hollow
|
Kuresel | — |
| TrickBotMultiDropper | Loader | C++ | 2024 | HTTP |
Loader/Miner/Dropper/Injection
|
Kuresel/Oyuncu | — |
| CoolProjectLoader | Loader | C#/.NET | 2025 | custom |
Loader/Injector
|
Kuresel | — |
| DropperBAT | Loader | Batch | 2025 | HTTPS |
Dropper/Loader
|
Kuresel | — |
| WordVBAMacro | Loader | VBA | 2024 | custom |
Document Dropper
|
Kuresel | — |
| AutoITMalware | Loader | AutoIT | 2023 | custom |
FTP Uploader/Injector
|
Kuresel | — |
| Guloader2 | Loader | Assembly/Shell | 2019 | HTTP |
Payload Loader
|
Küresel Kurumsal | — |
| SmokeLoader2 | Loader | C | 2011 | HTTP/TCP |
Payload Loader
|
Küresel | — |
| VBSNetLoader | Loader | VBScript/.NET | 2024 | custom |
Second-stage .NET Assembly Loader
|
Kuresel | — |
| DiceLoader | Loader | VBScript/.NET | 2022 | HTTPS |
XAML Exploit + Loader
|
Kurumsal | — |
| IcedID3 | Loader | C | 2017 | HTTPS |
Banking+Payload Loader
|
Küresel Finans | — |
| STOPRansomware | Ransomware | C | 2018 | HTTP |
Dosya Sifreleme (Salsa20/RSA-1024)
Credential Theft
Browser Data Exfiltration
|
Windows | 212 |
| REvil | Ransomware | C | 2019 | HTTP |
Yüksek profilli RaaS
|
Windows | 209 |
| LockBit | Ransomware | C++ | 2019 | — |
Çifte şantaj ransomware
|
Windows/Linux | 200 |
| Conti | Ransomware | C++ | 2020 | — |
Kurumsal sektör ransomware
|
Windows/Linux | 167 |
| Hive | Ransomware | Go/C++ | 2021 | — |
Sağlık ransomware
|
Windows/Linux | 147 |
| Phobos | Ransomware | C++ | 2019 | — |
RDP tabanlı ransomware
|
Windows | 125 |
| Dharma | Ransomware | C++ | 2016 | — |
Kurum ransomware
|
Windows | 112 |
| BlackCat | Ransomware | Rust | 2021 | — |
Çapraz platform ransomware
|
Windows/Linux | 86 |
| Ryuk | Ransomware | C | 2018 | — |
Hastane hedefli ransomware
|
Windows | 45 |
| MedusaLocker | Ransomware | C++ | 2020 | TCP |
Dosya Şifreleme
Gölge Kopya Silme
Fidye Notu
+1
|
Windows | 43 |
| WannaCry | Ransomware | C | 2017 | — |
Küresel SMB saldırısı
|
Windows | 15 |
| Cl0p | Ransomware | C | 2019 | — |
MOVEit istismarı
|
Windows | 9 |
| Maze | Ransomware | C++ | 2019 | HTTPS |
Ransomware (Double Extortion)
|
Kurumsal | — |
| Avaddon | Ransomware | C++ | 2020 | HTTPS |
Ransomware (RaaS)
|
Kurumsal | — |
| ALPHV | Ransomware | Rust | 2021 | HTTPS/TOR |
Ransomware (RaaS)
|
Kurumsal/Saglik | — |
| LockBit2 | Ransomware | C++ | 2021 | HTTPS/TOR |
Ransomware (RaaS)
|
Kurumsal | — |
| Conti2 | Ransomware | C++ | 2020 | HTTPS/TOR |
Ransomware (RaaS)
|
Kritik Altyapi | — |
| BianLian | Ransomware | Go | 2022 | HTTPS |
Ransomware (Double Extortion)
|
Saglik/Kurumsal | — |
| Medusa | Ransomware | C++ | 2019 | HTTPS |
Ransomware/RaaS
|
Küresel | — |
| Makop | Ransomware | C++ | 2020 | TCP |
Dosya Şifreleme
Gölge Kopya Silme
Fidye Notu
+1
|
Windows | — |
| Mallox | Ransomware | C++ | 2020 | TCP |
Dosya Şifreleme
Gölge Kopya Silme
Fidye Notu
+1
|
Windows | — |
| Play | Ransomware | C++ | 2020 | TCP |
Dosya Şifreleme
Gölge Kopya Silme
Fidye Notu
+1
|
Windows | — |
| Akira | Ransomware | C++ | 2023 | — |
Cisco VPN ransomware
|
Windows/Linux | — |
| Royal | Ransomware | C++ | 2022 | — |
Conti sonrası ransomware
|
Windows | — |
| BlackSuit | Ransomware | C++ | 2023 | — |
Royal rebrand ransomware
|
Windows/Linux | — |
| Hunters | Ransomware | C++ | 2022 | — |
Hive türevi ransomware
|
Windows | — |
| HiddenTear | Ransomware | C#/.NET | 2015 | HTTP |
Ransomware
|
Küresel | — |
| Pandora | Ransomware | C++ | 2022 | HTTP |
Ransomware
|
Küresel | — |
| Trigona | Ransomware | C++ | 2022 | HTTP/TOR |
Ransomware
|
Küresel | — |
| StopDjvu | Ransomware | C | 2018 | HTTP |
Bireysel kullanıcı ransomware
|
Windows | — |
| PlayRansomware | Ransomware | C++ | 2022 | — |
ESXi hedefli ransomware
|
Windows | — |
| RansomHub | Ransomware | Go | 2024 | — |
2024 RaaS grubu
|
Windows/Linux | — |
| BlackBasta | Ransomware | C++ | 2022 | — |
Conti türevi ransomware
|
Windows/Linux | — |
| GandCrab | Ransomware | C | 2018 | HTTP |
MaaS ransomware
|
Windows | — |
| Cerber | Ransomware | C | 2016 | UDP |
UDP C2 ransomware
|
Windows | — |
| YashmaRansom | Ransomware | C#/.NET | 2022 | HTTPS |
Ransomware
|
Kuresel | — |
| Locky | Ransomware | C | 2016 | HTTP |
Makrolu belge ransomware
|
Windows | — |
| Cryakl | Ransomware | Delphi | 2014 | HTTP |
Ransomware
|
Rusya/BDT | — |
| RoyalRansom | Ransomware | C++ | 2022 | HTTPS/Tor |
Ransomware+Data Exfil
|
Kuresel Kurumsal | — |
| Babuk | Ransomware | C++ | 2021 | — |
ESXi şifreleme
|
Windows/Linux | — |
| DarkSide | Ransomware | C++ | 2020 | — |
Colonial Pipeline
|
Windows/Linux | — |
| MakopRansom | Ransomware | C++ | 2020 | HTTPS |
Ransomware
|
Asya-Pasifik Kurumsal | — |
| HelloKitty | Ransomware | C++ | 2020 | — |
Oyun şirketi saldırısı
|
Windows/Linux | — |
| Egregor | Ransomware | C++ | 2020 | — |
Yazıcı ransomware
|
Windows | — |
| DoppelPaymer | Ransomware | C++ | 2019 | — |
Evil Corp ransomware
|
Windows | — |
| Cuba | Ransomware | C++ | 2019 | — |
Kritik altyapı ransomware
|
Windows | — |
| WastedLocker | Ransomware | C++ | 2020 | — |
Kurumsal ağ şifreleme
|
Windows | — |
| NightSkyRansom | Ransomware | C++ | 2021 | HTTPS/Tor |
Ransomware
|
Kuresel Kurumsal | — |
| Zeppelin | Ransomware | Delphi | 2019 | — |
Teknoloji ransomware
|
Windows | — |
| RagnarLocker | Ransomware | C | 2020 | — |
VMware ESXi dahil kurumsal şifreleme
|
Windows | — |
| Snatch | Ransomware | Go | 2018 | — |
Windows Güvenli Mod'da şifreleme
|
Windows | — |
| Yanluowang | Ransomware | C++ | 2021 | HTTPS |
Ransomware
|
Kuresel Kurumsal/Aktivist | — |
| INCRansom | Ransomware | C++ | 2023 | — |
Çifte şantaj ransomware
|
Windows | — |
| MedusaRansomware | Ransomware | C++ | 2021 | — |
Kritik altyapı ransomware
|
Windows | — |
| RhysidaRansom | Ransomware | C++ | 2023 | HTTPS/Tor |
Ransomware+Data Extortion
|
Küresel Hastane/Okul/Devlet | — |
| DharmaCrySis | Ransomware | C++ | 2016 | SMTP/Email |
File Encryption/Double Extortion
|
Küresel/Kurumsal | — |
| AkiraRansom | Ransomware | C++/Rust | 2023 | HTTPS/Tor |
Ransomware
|
Küresel Saglik/Egitim/Finans | — |
| BabukRansom | Ransomware | C | 2021 | Telegram/Email |
Ransomware
|
Kuresel Kurumsal/Kamu | — |
| Medusa2Ransom | Ransomware | C/C++ | 2023 | HTTPS |
Ransomware+Data Extortion
|
Kuresel Egitim/Saglik | — |
| BlackMatter | Ransomware | C | 2021 | — |
DarkSide halefi
|
Windows/Linux | — |
| AvosLocker | Ransomware | C++ | 2021 | — |
ESXi RaaS
|
Windows/Linux | — |
| Vice Society | Ransomware | C++ | 2021 | — |
Eğitim ve sağlık sektörü şifreleme
|
Windows | — |
| NokoRansomware | Ransomware | Rust | 2024 | Offline/CLI |
File Encryption/Ransomware
|
Küresel | — |
| LANRansomware | Ransomware | Delphi | 2024 | TCP/HTTPS |
File Encryption/Ransomware
|
Küresel | — |
| TorRansomware | Ransomware | C (GCC MinGW) | 2024 | Tor/.onion |
File Encryption/Ransomware
|
Küresel | — |
| RansomComponent | Ransomware | C/C++ | 2024 | Local |
Shadow Copy Destruction/Service Kill
|
Küresel | — |
| Clop | Ransomware | C/C++ | 2019 |
Dosya Sifreleme
Veri Sizdirma
|
Kuresel — Kurumsal, Saglik, Finans | — | |
| yan1AVKiller | Ransomware | C++/Crypto++ | 2025 | N/A |
File Encryption/AV-Kill/Ransomware
|
Kuresel/Kurumsal | — |
| FunkSecRansomware | Ransomware | Rust | 2024 | Tor/HTTP |
File Encryption/Ransomware
|
Kuresel/Kurumsal | — |
| Cl0p2 | Ransomware | C | 2019 | HTTPS/Tor |
Ransomware
|
Küresel Kurumsal | — |
| RussianDelphiRansomware | Ransomware | Delphi | 2024 | HTTP |
File Encryption/Ransomware
|
Kuresel | — |
| MazeRansomware | Ransomware | C++ | 2019 | HTTP |
Ransomware/Double Extortion
|
Kuresel/Kurumsal | — |
| CerberRansomware | Ransomware | C | 2016 | HTTP/Tor |
Ransomware (RaaS)
|
Kuresel | — |
| GitHubRansomware | Ransomware | C#/.NET | 2023 | custom |
Ransomware (Educational)
|
Kuresel | — |
| Babuk2 | Ransomware | C | 2021 | HTTPS |
Ransomware
|
Küresel Kurumsal | — |
| PhobosRansom | Ransomware | C | 2019 | SMTP/HTTPS |
Ransomware
|
KOBi/Kurumsal | — |
| BeastWasHere | Ransomware | C++ | 2024 | custom |
ESXi VM Encryption
|
VMware ESXi Hypervisorlar | — |
| WannaCry2 | Ransomware | C | 2017 | TCP/SMB |
Ransomware+Worm
|
Küresel | — |
| Gozi2 | Backdoor | VBScript | 2006 | HTTPS |
Banking Trojan
|
Küresel/Bankacılık | — |
| PlugX | Backdoor | C++ | 2008 | TCP |
APT Backdoor
|
Devlet/Savunma | — |
| GootKit | Backdoor | C++ | 2010 | HTTPS .su |
Banking/Web Inject
|
Küresel/UK | — |
| HoudiniRAT | Backdoor | VBScript/JavaScript | 2014 | HTTP |
Remote Access/Info Theft
|
Küresel/Orta Doğu | — |
| ZLoader | Backdoor | C++ | 2019 | HTTPS |
Banking Trojan
|
Küresel/Bankacılık | — |
| SolarMarker | Backdoor | PowerShell/.NET | 2020 | HTTPS |
Backdoor+Credential Stealer
|
Kurumsal | — |
| Kazuar | Backdoor | C#/.NET | 2017 | HTTP/Protobuf |
Remote Access+Espionage
|
NATO ulkeleri | — |
| Kimsuky | Backdoor | PowerShell/VBScript | 2014 | HTTP |
Espionage+Backdoor
|
Guney Kore/NATO | — |
| BazarBackdoor | Backdoor | C++ | 2020 | HTTPS |
Backdoor/Loader
|
Küresel | — |
| EvilNum | Backdoor | C/C++ | 2018 | HTTP |
Backdoor/Stealer
|
Avrupa/Fintech | — |
| Lazarus | Backdoor | C/C++ | 2009 | HTTPS+P2P |
APT+Espiyonaj+Finansal
|
Küresel Finans/Crypto/Devlet | — |
| IcedID2 | Backdoor | C++ | 2017 | HTTPS |
Banking+Backdoor
|
Küresel Finans | — |
| Turla | Backdoor | C++ | 1996 | DNS/HTTPS/Satellite |
Espionage+Persistence
|
Küresel Hükümet/Askeri | — |
| NimImplant | Backdoor | Nim | 2023 | TCP |
Backdoor/Process Injection/Encrypted C2
|
Kurumsal/Kuresel | — |
| TiGeRFirewall | Backdoor | C#/.NET | 2020 | custom |
Banking Trojan/RAT
|
Brezilya/Latin Amerika | — |
| NimMalware | Backdoor | Nim | 2025 | HTTP |
Backdoor/HTTP C2
|
Kuresel | — |
| CurlHelperDLL | Backdoor | C++ | 2024 | HTTP/HTTPS |
HTTP C2 Communication DLL
|
Kuresel | — |
| Industroyer2 | Wiper | C++ | 2022 | IEC-104 |
ICS Wiper
|
Ukrayna Enerji/ICS | — |
| HermeticWiper | Wiper | C | 2022 | — |
Ukrayna siber silahı
|
Windows | — |
| WhisperGate | Wiper | C# | 2022 | — |
Ukrayna kritik altyapı imhası
fidye yazılımı görünümü
|
Windows | — |
| Shamoon | Wiper | C++ | 2012 | — |
Sektör hedefli disk silme ve veri imhası
|
Windows | — |
| NotPetya | Wiper | C | 2017 | SMB |
Destructive Wiper
|
Ukrayna+Küresel | — |
| TrickBot | Botnet | C++ | 2016 | HTTPS |
Bankacılık kimlik bilgisi
|
Windows | 198 |
| Mirai | Botnet | C | 2016 | TCP |
IoT DDoS botnet
|
Linux/IoT | 15 |
| Socks5Systemz | Botnet | C++ | 2013 | SOCKS5/HTTP |
Proxy Botnet
|
Küresel (BDT Haric) | — |
| Zloader3 | Botnet | C++ | 2016 | HTTPS |
Banking Fraud
|
Bankacılık | — |
| Tofsee | Botnet | C++ | 2013 | TCP |
Spam Botnet
|
Kuresel Email | — |
| BlackNET | Botnet | PHP/C++ | 2020 | HTTP |
Botnet/RAT
|
LATAM/Brezilya | — |
| Phorpiex | Botnet | C++ | 2016 | HTTP/P2P |
Spam Botnet / Loader
|
Kuresel | — |
| Octo2 | Botnet | Java/C++ | 2022 | HTTP/WebSocket |
Android Banking Trojan
|
Android/Finans | — |
| Prometei | Botnet | C | 2016 | TCP/Tor |
Botnet+CoinMiner
|
Kuresel | — |
| SOVAAndroid | Botnet | Java | 2021 | HTTP/WebSocket |
Android Banking Trojan
|
Android/Finans | — |
| GafGyt | Botnet | C | 2014 | TCP |
IoT DDoS botnet
|
Linux/IoT | — |
| MoziBotnet | Botnet | C | 2019 | DHT P2P |
DDoS+Proxy+Miner
|
IoT Cihazlari | — |
| Mozi | Botnet | C | 2019 | DHT |
IoT cihaz ele geçirme
DDoS
payload yükleme
|
Linux/IoT | — |
| Mylobot | Botnet | C++ | 2018 | HTTPS |
DDoS+Spam+Click Fraud
|
Kuresel | — |
| SMBWorm | Botnet | C | 2023 | TCP/SMB |
Lateral Movement/Worm
|
Küresel | — |
| SMBWorm2 | Botnet | C | 2026 | HTTP |
Worm/Downloader
|
Küresel | — |
| Gozi | Botnet | C++ | 2007 | HTTP (RC4) |
Banking Fraud/Form Grab
|
Avrupa/Kuresel Finansal | — |
| CobaltStrike | C2Framework | Java | 2012 | HTTPS |
Post-exploitation C2
|
Windows/Linux | 14 |
| Nighthawk | C2Framework | C | 2021 | HTTPS Malleable |
Post-Exploitation
|
Küresel APT | — |
| CobaltStrike3 | C2Framework | C/C++ | 2012 | HTTP/DNS |
C2 Framework+RAT
|
Kurumsal | — |
| Sliver | C2Framework | Go | 2019 | HTTPS |
Açık kaynak C2
|
Windows/Linux/macOS | — |
| HavocC2 | C2Framework | C/C++ | 2022 | HTTPS |
EDR atlatma C2
|
Windows/Linux | — |
| BruteRatelC4 | C2Framework | C++ | 2021 | HTTPS |
C2+Post-Exploitation
|
Kurumsal Kırmızı Takim/APT | — |
| BruteRatel | C2Framework | C | 2021 | HTTPS |
EDR atlatma C2
|
Windows | — |
| CoinMiner | Coinminer | C/C++ | 2017 | TCP |
Cryptocurrency Mining (XMR/ETH)
CPU/GPU Kaynak Suistimali
Persistence
|
Küresel | 1 |
| XMRig | Coinminer | C++ | 2017 | TCP |
Monero madencisi
|
Windows/Linux | — |
| PurpleFox | Rootkit | C/C++ | 2018 | HTTP |
Rootkit+Miner
|
Cin/Asya | — |
| VBSDeserialization | Exploit | VBScript | 2024 | Local/Network |
Deserialization RCE/Code Execution
|
Küresel | — |
| Ursnif | Other | C++ | 2007 | HTTPS |
Eski bankacılık trojanı
|
Windows | 252 |
| QakBot | Other | C++ | 2008 | HTTPS |
Bankacılık
email hijacking
|
Windows | 200 |
| Dridex | Other | C++ | 2012 | HTTPS |
Evil Corp bankacılık trojan
|
Windows | 200 |
| Sality | Other | C++ | 2003 | P2P |
PE File Infector
|
Kuresel Windows | — |
| Cerberus | Other | Java | 2019 | HTTPS |
Android 2FA bypass
|
Android | — |
| Flubot | Other | Java | 2020 | HTTPS |
Android SMS trojan
|
Android | — |
| Neshta | Other | Delphi | 2003 | HTTP/CDN |
File Infector
|
Kuresel | — |
| Grandoreiro | Other | Delphi | 2017 | HTTPS |
Latin Amerika bankacılık
|
Windows | — |
| Anubis | Other | Java | 2017 | HTTP |
Android bankacılık
|
Android | — |
| Zeus | Other | C | 2007 | HTTP |
Eski bankacılık trojanı
|
Windows | — |
| Carbanak | Other | C++ | 2014 | HTTP |
Banka soygunu trojanı
|
Windows | — |
| SharkBot | Other | Java | 2021 | HTTPS |
Android para transfer
|
Android | — |
| TrojanizedWhatsApp | Other | Java/Android | 2024 | HTTPS |
Banking Trojan/Wallet Drainer
|
Avrupa/Latin Amerika | — |
| SWIFTJSDropper | Other | JavaScript | 2025 | HTTP/WScript |
JS Dropper/Payload Delivery
|
Kuzey Avrupa/Küresel | — |
| OrderInquiryJSDropper | Other | JavaScript | 2026 | HTTP/WScript |
JS Dropper/Payload Delivery
|
Küresel | — |
| LaplasClipper | Other | C#/.NET | 2022 | C2 Panel + Clipboard |
Cryptocurrency Theft
|
Kuresel — Kripto Yatirimcilari | — |