Skip to content

eset/malware-ioc

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

216 Commits

ace_cryptor

ace_cryptor

 
 

agrius

agrius

 
 

amavaldo

amavaldo

 
 

animalfarm

animalfarm

 
 

asylum_ambuscade

asylum_ambuscade

 
 

attor

attor

 
 

backdoordiplomacy

backdoordiplomacy

 
 

badiis

badiis

 
 

ballisticbobcat

ballisticbobcat

 
 

bandook

bandook

 
 

blacklotus

blacklotus

 
 

blackwood

blackwood

 
 

buhtrap

buhtrap

 
 

casbaneiro

casbaneiro

 
 

cdrthief

cdrthief

 
 

cloudmensis

cloudmensis

 
 

cosmicbeetle

cosmicbeetle

 
 

danabot

danabot

 
 

dark_iot

dark_iot

 
 

dazzlespy

dazzlespy

 
 

deprimon

deprimon

 
 

dnsbirthday

dnsbirthday

 
 

donot

donot

 
 

dukes

dukes

 
 

emotet

emotet

 
 

especter

especter

 
 

evasive_panda

evasive_panda

 
 

evilnum

evilnum

 
 

exchange_exploitation

exchange_exploitation

 
 

famoussparrow

famoussparrow

 
 

gamaredon

gamaredon

 
 

gamarue

gamarue

 
 

gelsemium

gelsemium

 
 

glupteba

glupteba

 
 

gmera

gmera

 
 

grandoreiro

grandoreiro

 
 

gravityrat

gravityrat

 
 

gref

gref

 
 

greyenergy

greyenergy

 
 

groundbait

groundbait

 
 

guildma

guildma

 
 

industroyer

industroyer

 
 

interception

interception

 
 

invisimole

invisimole

 
 

janeleiro

janeleiro

 
 

kamran

kamran

 
 

kasidet

kasidet

 
 

keydnap

keydnap

 
 

kimsuky/hotdoge_donutcat_case

kimsuky/hotdoge_donutcat_case

 
 

king_tut

king_tut

 
 

kobalos

kobalos

 
 

krachulka

krachulka

 
 

kryptocibule

kryptocibule

 
 

lokorrito

lokorrito

 
 

machete

machete

 
 

mekotio

mekotio

 
 

mikroceen

mikroceen

 
 

mirrorface

mirrorface

 
 

mispadu

mispadu

 
 

moose

moose

 
 

moustachedbouncer

moustachedbouncer

 
 

mozi

mozi

 
 

mumblehard

mumblehard

 
 

mustang_panda

mustang_panda

 
 

nightscout

nightscout

 
 

nukesped_lazarus

nukesped_lazarus

 
 

numando

numando

 
 

oceanlotus

oceanlotus

 
 

oilrig

oilrig

 
 

okrum_ke3chang

okrum_ke3chang

 
 

operation_jacana

operation_jacana

 
 

operation_texonto

operation_texonto

 
 

ousaban

ousaban

 
 

polonium

polonium

 
 

potao

potao

 
 

powerpool

powerpool

 
 

pypi_backdoor

pypi_backdoor

 
 

quarterly_reports

quarterly_reports

 
 

rakos

rakos

 
 

ramsay

ramsay

 
 

rtm

rtm

 
 

scarcruft

scarcruft

 
 

sednit

sednit

 
 

signsight

signsight

 
 

spalax

spalax

 
 

sparklinggoblin

sparklinggoblin

 
 

spyloan

spyloan

 
 

sshdoor

sshdoor

 
 

stantinko

stantinko

 
 

stealthfalcon

stealthfalcon

 
 

stealthytrident

stealthytrident

 
 

swc-candiru

swc-candiru

 
 

ta410

ta410

 
 

telebots

telebots

 
 

telekopye

telekopye

 
 

tick

tick

 
 

turla

turla

 
 

ua_wipers

ua_wipers

 
 

vadokrist

vadokrist

 
 

vajraspy

vajraspy

 
 

Repository files navigation

Malware Indicators of Compromise

 .-------------.
(  E  S | E  T  )  R e s e a r c h
 `-------------'

Copyright © ESET 2014-2020

Here are indicators of compromise (IOCs) of our various investigations. We are doing this to help the broader security community fight malware wherever it might be.

  • .yar files are Yara rules

  • .rules files are Snort rules

  • samples.md5, samples.sha1 and samples.sha256 files are newline separated list of hexadecimal digests of malware samples

If you would like to contribute improved versions please send us a pull request.

If you’ve found false positives give us the details in an issue report and we’ll try to improve our IOCs.

These are licensed under the permissive BSD two-clause license. You are allowed to modify these and keep the changes to yourself even though it would be rude to do so.

About

Indicators of Compromises (IOC) of our various investigations

www.welivesecurity.com

Topics

ioc malware misp yara

Resources

Readme

License

BSD-2-Clause license
Activity
Custom properties

Stars

1.5k stars

Watchers

213 watching

Forks

252 forks
Report repository

Contributors 15

Languages