├── GhostRedirector ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── LICENSE ├── Makefile ├── PlushDaemon ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── README.adoc ├── aceCryptor ├── aceCryptor_h2_2023 ├── ace_cryptor ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── agrius ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── amavaldo ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── andromeda ├── animalfarm └── animalfarm.yar ├── apt_c_60 ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── aridspy ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── asylum_ambuscade ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── asyncrat ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── attor ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── backdoordiplomacy ├── README.adoc ├── misp.event_2021-06-10_backdoordiplomacy.json ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── badiis ├── README.adoc ├── badiis.yar ├── misp-badiis.json ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── ballisticbobcat ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── bandook ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── blacklotus ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── blackwood ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── bootkitty ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── buhtrap ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── casbaneiro ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── cdrthief ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── ceranakeeper ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── cloudmensis ├── README.adoc ├── cloudmensis.misp.json ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── cosmicbeetle ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── danabot ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── dark_iot ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── dazzlespy ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── deceptivedevelopment ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── deprimon ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── dnsbirthday ├── 358bb04f6a0bf8ce88d23b2e620ac01b28d307ab80286f6ee2dcc484a6b1a5d0.pem ├── 45cbc80fe0cac8004f862b9eb90b53b57b06299f98e20923185eb08c363d1ec4.pem ├── README.adoc ├── rqz-dnsduvel_blocklist.json ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── donot ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── dukes ├── README.adoc ├── misp-dukes-operation-ghost-event.json ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── embargo ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── emotet ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── especter ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── evasive_panda ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── evilnum ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── evilvideo ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── exchange_exploitation ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── famoussparrow ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── fishmonger ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── gamaredon ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── gamarue ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── gelsemium ├── README.adoc ├── misp.event_2021-06-09_gelsemium-when-threat-actors-go-gardening.json ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── glupteba ├── README.adoc ├── glupteba.misp-event.json ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── gmera ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── goldenjackal ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── grandoreiro ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── gravityrat ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── gref ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── greyenergy ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── groundbait ├── README.adoc ├── prikormka.yar ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── guildma ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── hamkombat ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── hotpage ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── hybridpetya ├── README.doc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── industroyer ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── interception ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── invisimole ├── README.adoc ├── invisimole.yar ├── misp_invisimole.json ├── samples.md5 ├── samples.sha1 ├── samples.sha256 └── sigma │ ├── win_apt_invisimole_cpl_chain.yml │ ├── win_apt_invisimole_eternalblue.yml │ ├── win_apt_invisimole_gamaredon.yml │ ├── win_apt_invisimole_helper_dll.yml │ ├── win_apt_invisimole_powershell.yml │ ├── win_apt_invisimole_rc2cl_backdoor.yml │ ├── win_apt_invisimole_rc2fm_backdoor.yml │ ├── win_apt_invisimole_sminit_chain.yml │ ├── win_apt_invisimole_speedfan_chain.yml │ ├── win_apt_invisimole_uac_bypass.yml │ ├── win_apt_invisimole_wdigest_chain.yml │ ├── win_apt_invisimole_wrapper_dll.yml │ ├── win_lolbin_setupSNK.yml │ ├── win_lolbin_srvanyng.yml │ ├── win_lolbin_winapiexec.yml │ ├── win_suspicious_control_panel_applet.yml │ ├── win_suspicious_rundll32.yml │ ├── win_vulnbin_video_player.yml │ └── win_vulnbin_wdigest.yml ├── janeleiro ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── kamran ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── kasidet ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── keydnap ├── README.adoc ├── keydnap.yar ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── kimsuky └── hotdoge_donutcat_case │ └── README.adoc ├── king_tut ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── kobalos ├── README.adoc ├── kobalos.yar ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── krachulka ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── kryptocibule ├── README.adoc ├── adjectives.txt ├── misp-kryptocibule.json └── nouns.txt ├── lokorrito ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── lummastealer ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── machete ├── README.adoc ├── misp-machete-event.json ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── mekotio └── README.adoc ├── mikroceen ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── mirrorface ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── mispadu ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── modiloader ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── moose ├── LinuxMooseETrules.txt ├── README.adoc ├── linux-moose.yar ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── moustachedbouncer ├── README.adoc ├── misp-moustachedbouncer.event.json ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── mozi ├── README.adoc ├── mozi.misp-event.json ├── mozi.yar ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── muddywater ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── mumblehard ├── README.adoc └── mumblehard_packer.yar ├── mustang_panda ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── ngate ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── nightscout ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── nukesped_lazarus ├── Makefile ├── README.adoc ├── lazarus_3cx.json ├── rich_headers_IconicPayloads_3CX.yar ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── numando ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── oceanlotus ├── README.adoc ├── oceanlotus-macOS.misp.event.json ├── oceanlotus-rtf_ocx_campaigns.misp.event.json ├── oceanlotus-wateringhole-2018.misp.event.json ├── oceanlotus.misp.event.json ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── oilrig ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── okrum_ke3chang ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── operation_jacana ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── operation_roundpress ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── operation_texonto ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── ousaban └── README.adoc ├── polonium ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── potao ├── PotaoNew.yara ├── README.adoc ├── potao-et.rules ├── potao.rules ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── powerpool ├── README.adoc ├── misp-powerpool.json ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── prospytospy ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── pwa_phishing ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── pypi_backdoor ├── README.adoc ├── malicious_pypi_packages.misp-event.json ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── quarterly_reports ├── 2020_Q2 │ ├── README.adoc │ ├── samples.md5 │ ├── samples.sha1 │ └── samples.sha256 ├── 2020_Q3 │ ├── README.adoc │ ├── samples.md5 │ ├── samples.sha1 │ └── samples.sha256 ├── 2020_Q4 │ ├── README.adoc │ ├── samples.md5 │ ├── samples.sha1 │ └── samples.sha256 ├── 2021_T1 │ ├── README.adoc │ ├── samples.md5 │ ├── samples.sha1 │ └── samples.sha256 ├── 2021_T2 │ ├── README.adoc │ ├── samples.md5 │ ├── samples.sha1 │ └── samples.sha256 ├── 2021_T3 │ ├── README.adoc │ ├── samples.md5 │ ├── samples.sha1 │ └── samples.sha256 └── README.adoc ├── rakos ├── README.adoc ├── rakos.yar ├── samples.md5 ├── samples.sha1 ├── samples.sha256 ├── vars.yaml └── vf_ioc_linux_rakos.py ├── ramsay ├── README.adoc ├── misp-ramsay.json ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── ransomhub ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── redline ├── README.adoc ├── redline.yar ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── romcom ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── rtm ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── scarcruft ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── sednit ├── 2017-05-09_Trump_Attack_on_Syria_IoCs.adoc ├── 2017-05-09_Trump_Attack_on_Syria_IoCs.json ├── 2018-11-20_Zebrocy.adoc ├── 2018-11-20_Zebrocy.json ├── 2019-05-23_Zebrocy.adoc ├── 2019-05-23_Zebrocy.json ├── README.adoc ├── lojax.adoc ├── part1.adoc ├── part2.adoc ├── part3.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── signsight ├── README.adoc ├── samples.md5 ├── samples.sha1 ├── samples.sha256 └── signsight-misp-event.json ├── spalax ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── sparklinggoblin ├── README.adoc ├── SparklingGoblin.yar ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── spyloan ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── sshdoor ├── README.adoc ├── crait_report.ksy ├── kessel_config.ksy ├── misp-events │ ├── abafar.json │ ├── akiva.json │ ├── alderaan.json │ ├── ando.json │ ├── anoat.json │ ├── atollon.json │ ├── batuu.json │ ├── bespin.json │ ├── bonadan.json │ ├── borleias.json │ ├── chandrila.json │ ├── coruscant.json │ ├── crait.json │ ├── endor.json │ ├── jakku.json │ ├── kamino.json │ ├── kessel.json │ ├── mimban.json │ ├── onderon.json │ ├── polismassa.json │ └── quarren.json ├── samples.md5 ├── samples.sha1 ├── samples.sha256 ├── sshdoor.yar └── windigo_signatures.pl ├── stantinko ├── README.adoc ├── cryptominer │ ├── samples.md5 │ ├── samples.sha1 │ └── samples.sha256 ├── samples.md5 ├── samples.sha1 ├── samples.sha256 ├── stantinko.misp-event.json └── stantinko.yar ├── stealthfalcon ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── stealthytrident ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── swc-candiru ├── README.adoc ├── samples.md5 ├── samples.sha1 ├── samples.sha256 └── swc-candiru_misp.json ├── ta410 ├── README.adoc ├── samples.md5 ├── samples.sha1 ├── samples.sha256 ├── ta410.rules └── ta410.yar ├── telebots ├── README.adoc ├── misp-telebots.json ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── telekopye ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── thewizards ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── tick ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── toolshell ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── turla ├── README.adoc ├── carbon.yar ├── carbon_tool.py ├── gazer.yar ├── misp-mosquito-event.json ├── misp-turla-comrat-v4-event.json ├── misp-turla-crutch-event.json ├── misp-turla-lightneuron-event.json ├── misp-turla-outlook-event.json ├── misp-turla-powershell-event.json ├── misp-turla-wateringhole-armenia-event.json ├── samples.md5 ├── samples.sha1 ├── samples.sha256 └── turla-outlook.yar ├── ua_wipers ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── vadokrist ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── vajraspy ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── virtual_invaders ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── windigo ├── README.adoc ├── ebury.misp.json ├── ebury.yar ├── helimod.yar ├── samples.md5 ├── samples.sha1 ├── samples.sha256 ├── windigo-calfbot.rules ├── windigo-cdorked.rules ├── windigo-ebury.rules ├── windigo-onimiki.rules ├── windigo-onimiki.yar └── windigo.ioc ├── winnti_group ├── README.adoc ├── gaming_supply_chain.misp_event.json ├── samples.md5 ├── samples.sha1 ├── samples.sha256 └── skip20_sqllang_hook.yar ├── winter_vivern ├── README.adoc ├── misp-wintervivern.event.json ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── worok ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── xdspy ├── README.adoc ├── misp-xdspy-event.json ├── samples.md5 ├── samples.sha1 └── samples.sha256 ├── zimbra_phishing └── README.adoc └── zumanek ├── README.adoc ├── samples.md5 ├── samples.sha1 └── samples.sha256 /GhostRedirector/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/GhostRedirector/README.adoc -------------------------------------------------------------------------------- /GhostRedirector/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/GhostRedirector/samples.md5 -------------------------------------------------------------------------------- /GhostRedirector/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/GhostRedirector/samples.sha1 -------------------------------------------------------------------------------- /GhostRedirector/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/GhostRedirector/samples.sha256 -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/LICENSE -------------------------------------------------------------------------------- /Makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/Makefile -------------------------------------------------------------------------------- /PlushDaemon/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/PlushDaemon/README.adoc -------------------------------------------------------------------------------- /PlushDaemon/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/PlushDaemon/samples.md5 -------------------------------------------------------------------------------- /PlushDaemon/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/PlushDaemon/samples.sha1 -------------------------------------------------------------------------------- /PlushDaemon/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/PlushDaemon/samples.sha256 -------------------------------------------------------------------------------- /README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/README.adoc -------------------------------------------------------------------------------- /aceCryptor: -------------------------------------------------------------------------------- 1 | ace_cryptor -------------------------------------------------------------------------------- /aceCryptor_h2_2023: -------------------------------------------------------------------------------- 1 | ace_cryptor -------------------------------------------------------------------------------- /ace_cryptor/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ace_cryptor/README.adoc -------------------------------------------------------------------------------- /ace_cryptor/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ace_cryptor/samples.md5 -------------------------------------------------------------------------------- /ace_cryptor/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ace_cryptor/samples.sha1 -------------------------------------------------------------------------------- /ace_cryptor/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ace_cryptor/samples.sha256 -------------------------------------------------------------------------------- /agrius/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/agrius/README.adoc -------------------------------------------------------------------------------- /agrius/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/agrius/samples.md5 -------------------------------------------------------------------------------- /agrius/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/agrius/samples.sha1 -------------------------------------------------------------------------------- /agrius/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/agrius/samples.sha256 -------------------------------------------------------------------------------- /amavaldo/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/amavaldo/README.adoc -------------------------------------------------------------------------------- /amavaldo/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/amavaldo/samples.md5 -------------------------------------------------------------------------------- /amavaldo/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/amavaldo/samples.sha1 -------------------------------------------------------------------------------- /amavaldo/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/amavaldo/samples.sha256 -------------------------------------------------------------------------------- /andromeda: -------------------------------------------------------------------------------- 1 | gamarue -------------------------------------------------------------------------------- /animalfarm/animalfarm.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/animalfarm/animalfarm.yar -------------------------------------------------------------------------------- /apt_c_60/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/apt_c_60/README.adoc -------------------------------------------------------------------------------- /apt_c_60/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/apt_c_60/samples.md5 -------------------------------------------------------------------------------- /apt_c_60/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/apt_c_60/samples.sha1 -------------------------------------------------------------------------------- /apt_c_60/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/apt_c_60/samples.sha256 -------------------------------------------------------------------------------- /aridspy/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/aridspy/README.adoc -------------------------------------------------------------------------------- /aridspy/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/aridspy/samples.md5 -------------------------------------------------------------------------------- /aridspy/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/aridspy/samples.sha1 -------------------------------------------------------------------------------- /aridspy/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/aridspy/samples.sha256 -------------------------------------------------------------------------------- /asylum_ambuscade/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/asylum_ambuscade/README.adoc -------------------------------------------------------------------------------- /asylum_ambuscade/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/asylum_ambuscade/samples.md5 -------------------------------------------------------------------------------- /asylum_ambuscade/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/asylum_ambuscade/samples.sha1 -------------------------------------------------------------------------------- /asylum_ambuscade/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/asylum_ambuscade/samples.sha256 -------------------------------------------------------------------------------- /asyncrat/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/asyncrat/README.adoc -------------------------------------------------------------------------------- /asyncrat/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/asyncrat/samples.md5 -------------------------------------------------------------------------------- /asyncrat/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/asyncrat/samples.sha1 -------------------------------------------------------------------------------- /asyncrat/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/asyncrat/samples.sha256 -------------------------------------------------------------------------------- /attor/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/attor/README.adoc -------------------------------------------------------------------------------- /attor/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/attor/samples.md5 -------------------------------------------------------------------------------- /attor/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/attor/samples.sha1 -------------------------------------------------------------------------------- /attor/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/attor/samples.sha256 -------------------------------------------------------------------------------- /backdoordiplomacy/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/backdoordiplomacy/README.adoc -------------------------------------------------------------------------------- /backdoordiplomacy/misp.event_2021-06-10_backdoordiplomacy.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/backdoordiplomacy/misp.event_2021-06-10_backdoordiplomacy.json -------------------------------------------------------------------------------- /backdoordiplomacy/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/backdoordiplomacy/samples.md5 -------------------------------------------------------------------------------- /backdoordiplomacy/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/backdoordiplomacy/samples.sha1 -------------------------------------------------------------------------------- /backdoordiplomacy/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/backdoordiplomacy/samples.sha256 -------------------------------------------------------------------------------- /badiis/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/badiis/README.adoc -------------------------------------------------------------------------------- /badiis/badiis.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/badiis/badiis.yar -------------------------------------------------------------------------------- /badiis/misp-badiis.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/badiis/misp-badiis.json -------------------------------------------------------------------------------- /badiis/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/badiis/samples.md5 -------------------------------------------------------------------------------- /badiis/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/badiis/samples.sha1 -------------------------------------------------------------------------------- /badiis/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/badiis/samples.sha256 -------------------------------------------------------------------------------- /ballisticbobcat/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ballisticbobcat/README.adoc -------------------------------------------------------------------------------- /ballisticbobcat/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ballisticbobcat/samples.md5 -------------------------------------------------------------------------------- /ballisticbobcat/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ballisticbobcat/samples.sha1 -------------------------------------------------------------------------------- /ballisticbobcat/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ballisticbobcat/samples.sha256 -------------------------------------------------------------------------------- /bandook/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/bandook/README.adoc -------------------------------------------------------------------------------- /bandook/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/bandook/samples.md5 -------------------------------------------------------------------------------- /bandook/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/bandook/samples.sha1 -------------------------------------------------------------------------------- /bandook/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/bandook/samples.sha256 -------------------------------------------------------------------------------- /blacklotus/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/blacklotus/README.adoc -------------------------------------------------------------------------------- /blacklotus/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/blacklotus/samples.md5 -------------------------------------------------------------------------------- /blacklotus/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/blacklotus/samples.sha1 -------------------------------------------------------------------------------- /blacklotus/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/blacklotus/samples.sha256 -------------------------------------------------------------------------------- /blackwood/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/blackwood/README.adoc -------------------------------------------------------------------------------- /blackwood/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/blackwood/samples.md5 -------------------------------------------------------------------------------- /blackwood/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/blackwood/samples.sha1 -------------------------------------------------------------------------------- /blackwood/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/blackwood/samples.sha256 -------------------------------------------------------------------------------- /bootkitty/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/bootkitty/README.adoc -------------------------------------------------------------------------------- /bootkitty/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/bootkitty/samples.md5 -------------------------------------------------------------------------------- /bootkitty/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/bootkitty/samples.sha1 -------------------------------------------------------------------------------- /bootkitty/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/bootkitty/samples.sha256 -------------------------------------------------------------------------------- /buhtrap/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/buhtrap/README.adoc -------------------------------------------------------------------------------- /buhtrap/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/buhtrap/samples.md5 -------------------------------------------------------------------------------- /buhtrap/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/buhtrap/samples.sha1 -------------------------------------------------------------------------------- /buhtrap/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/buhtrap/samples.sha256 -------------------------------------------------------------------------------- /casbaneiro/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/casbaneiro/README.adoc -------------------------------------------------------------------------------- /casbaneiro/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/casbaneiro/samples.md5 -------------------------------------------------------------------------------- /casbaneiro/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/casbaneiro/samples.sha1 -------------------------------------------------------------------------------- /casbaneiro/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/casbaneiro/samples.sha256 -------------------------------------------------------------------------------- /cdrthief/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/cdrthief/README.adoc -------------------------------------------------------------------------------- /cdrthief/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/cdrthief/samples.md5 -------------------------------------------------------------------------------- /cdrthief/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/cdrthief/samples.sha1 -------------------------------------------------------------------------------- /cdrthief/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/cdrthief/samples.sha256 -------------------------------------------------------------------------------- /ceranakeeper/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ceranakeeper/README.adoc -------------------------------------------------------------------------------- /ceranakeeper/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ceranakeeper/samples.md5 -------------------------------------------------------------------------------- /ceranakeeper/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ceranakeeper/samples.sha1 -------------------------------------------------------------------------------- /ceranakeeper/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ceranakeeper/samples.sha256 -------------------------------------------------------------------------------- /cloudmensis/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/cloudmensis/README.adoc -------------------------------------------------------------------------------- /cloudmensis/cloudmensis.misp.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/cloudmensis/cloudmensis.misp.json -------------------------------------------------------------------------------- /cloudmensis/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/cloudmensis/samples.md5 -------------------------------------------------------------------------------- /cloudmensis/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/cloudmensis/samples.sha1 -------------------------------------------------------------------------------- /cloudmensis/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/cloudmensis/samples.sha256 -------------------------------------------------------------------------------- /cosmicbeetle/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/cosmicbeetle/README.adoc -------------------------------------------------------------------------------- /cosmicbeetle/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/cosmicbeetle/samples.md5 -------------------------------------------------------------------------------- /cosmicbeetle/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/cosmicbeetle/samples.sha1 -------------------------------------------------------------------------------- /cosmicbeetle/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/cosmicbeetle/samples.sha256 -------------------------------------------------------------------------------- /danabot/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/danabot/README.adoc -------------------------------------------------------------------------------- /danabot/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/danabot/samples.md5 -------------------------------------------------------------------------------- /danabot/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/danabot/samples.sha1 -------------------------------------------------------------------------------- /danabot/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/danabot/samples.sha256 -------------------------------------------------------------------------------- /dark_iot/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/dark_iot/README.adoc -------------------------------------------------------------------------------- /dark_iot/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/dark_iot/samples.md5 -------------------------------------------------------------------------------- /dark_iot/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/dark_iot/samples.sha1 -------------------------------------------------------------------------------- /dark_iot/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/dark_iot/samples.sha256 -------------------------------------------------------------------------------- /dazzlespy/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/dazzlespy/README.adoc -------------------------------------------------------------------------------- /dazzlespy/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/dazzlespy/samples.md5 -------------------------------------------------------------------------------- /dazzlespy/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/dazzlespy/samples.sha1 -------------------------------------------------------------------------------- /dazzlespy/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/dazzlespy/samples.sha256 -------------------------------------------------------------------------------- /deceptivedevelopment/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/deceptivedevelopment/README.adoc -------------------------------------------------------------------------------- /deceptivedevelopment/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/deceptivedevelopment/samples.md5 -------------------------------------------------------------------------------- /deceptivedevelopment/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/deceptivedevelopment/samples.sha1 -------------------------------------------------------------------------------- /deceptivedevelopment/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/deceptivedevelopment/samples.sha256 -------------------------------------------------------------------------------- /deprimon/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/deprimon/README.adoc -------------------------------------------------------------------------------- /deprimon/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/deprimon/samples.md5 -------------------------------------------------------------------------------- /deprimon/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/deprimon/samples.sha1 -------------------------------------------------------------------------------- /deprimon/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/deprimon/samples.sha256 -------------------------------------------------------------------------------- /dnsbirthday/358bb04f6a0bf8ce88d23b2e620ac01b28d307ab80286f6ee2dcc484a6b1a5d0.pem: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/dnsbirthday/358bb04f6a0bf8ce88d23b2e620ac01b28d307ab80286f6ee2dcc484a6b1a5d0.pem -------------------------------------------------------------------------------- /dnsbirthday/45cbc80fe0cac8004f862b9eb90b53b57b06299f98e20923185eb08c363d1ec4.pem: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/dnsbirthday/45cbc80fe0cac8004f862b9eb90b53b57b06299f98e20923185eb08c363d1ec4.pem -------------------------------------------------------------------------------- /dnsbirthday/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/dnsbirthday/README.adoc -------------------------------------------------------------------------------- /dnsbirthday/rqz-dnsduvel_blocklist.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/dnsbirthday/rqz-dnsduvel_blocklist.json -------------------------------------------------------------------------------- /dnsbirthday/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/dnsbirthday/samples.md5 -------------------------------------------------------------------------------- /dnsbirthday/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/dnsbirthday/samples.sha1 -------------------------------------------------------------------------------- /dnsbirthday/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/dnsbirthday/samples.sha256 -------------------------------------------------------------------------------- /donot/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/donot/README.adoc -------------------------------------------------------------------------------- /donot/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/donot/samples.md5 -------------------------------------------------------------------------------- /donot/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/donot/samples.sha1 -------------------------------------------------------------------------------- /donot/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/donot/samples.sha256 -------------------------------------------------------------------------------- /dukes/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/dukes/README.adoc -------------------------------------------------------------------------------- /dukes/misp-dukes-operation-ghost-event.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/dukes/misp-dukes-operation-ghost-event.json -------------------------------------------------------------------------------- /dukes/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/dukes/samples.md5 -------------------------------------------------------------------------------- /dukes/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/dukes/samples.sha1 -------------------------------------------------------------------------------- /dukes/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/dukes/samples.sha256 -------------------------------------------------------------------------------- /embargo/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/embargo/README.adoc -------------------------------------------------------------------------------- /embargo/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/embargo/samples.md5 -------------------------------------------------------------------------------- /embargo/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/embargo/samples.sha1 -------------------------------------------------------------------------------- /embargo/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/embargo/samples.sha256 -------------------------------------------------------------------------------- /emotet/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/emotet/README.adoc -------------------------------------------------------------------------------- /emotet/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/emotet/samples.md5 -------------------------------------------------------------------------------- /emotet/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/emotet/samples.sha1 -------------------------------------------------------------------------------- /emotet/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/emotet/samples.sha256 -------------------------------------------------------------------------------- /especter/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/especter/README.adoc -------------------------------------------------------------------------------- /especter/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/especter/samples.md5 -------------------------------------------------------------------------------- /especter/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/especter/samples.sha1 -------------------------------------------------------------------------------- /especter/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/especter/samples.sha256 -------------------------------------------------------------------------------- /evasive_panda/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/evasive_panda/README.adoc -------------------------------------------------------------------------------- /evasive_panda/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/evasive_panda/samples.md5 -------------------------------------------------------------------------------- /evasive_panda/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/evasive_panda/samples.sha1 -------------------------------------------------------------------------------- /evasive_panda/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/evasive_panda/samples.sha256 -------------------------------------------------------------------------------- /evilnum/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/evilnum/README.adoc -------------------------------------------------------------------------------- /evilnum/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/evilnum/samples.md5 -------------------------------------------------------------------------------- /evilnum/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/evilnum/samples.sha1 -------------------------------------------------------------------------------- /evilnum/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/evilnum/samples.sha256 -------------------------------------------------------------------------------- /evilvideo/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/evilvideo/README.adoc -------------------------------------------------------------------------------- /evilvideo/samples.md5: -------------------------------------------------------------------------------- 1 | 19e5c726ccf1b1797cc6b379cf5ba41a 2 | -------------------------------------------------------------------------------- /evilvideo/samples.sha1: -------------------------------------------------------------------------------- 1 | f159886dcf9021f41eaa2b0641a758c4f0c4033d 2 | -------------------------------------------------------------------------------- /evilvideo/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/evilvideo/samples.sha256 -------------------------------------------------------------------------------- /exchange_exploitation/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/exchange_exploitation/README.adoc -------------------------------------------------------------------------------- /exchange_exploitation/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/exchange_exploitation/samples.md5 -------------------------------------------------------------------------------- /exchange_exploitation/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/exchange_exploitation/samples.sha1 -------------------------------------------------------------------------------- /exchange_exploitation/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/exchange_exploitation/samples.sha256 -------------------------------------------------------------------------------- /famoussparrow/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/famoussparrow/README.adoc -------------------------------------------------------------------------------- /famoussparrow/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/famoussparrow/samples.md5 -------------------------------------------------------------------------------- /famoussparrow/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/famoussparrow/samples.sha1 -------------------------------------------------------------------------------- /famoussparrow/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/famoussparrow/samples.sha256 -------------------------------------------------------------------------------- /fishmonger/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/fishmonger/README.adoc -------------------------------------------------------------------------------- /fishmonger/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/fishmonger/samples.md5 -------------------------------------------------------------------------------- /fishmonger/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/fishmonger/samples.sha1 -------------------------------------------------------------------------------- /fishmonger/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/fishmonger/samples.sha256 -------------------------------------------------------------------------------- /gamaredon/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/gamaredon/README.adoc -------------------------------------------------------------------------------- /gamaredon/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/gamaredon/samples.md5 -------------------------------------------------------------------------------- /gamaredon/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/gamaredon/samples.sha1 -------------------------------------------------------------------------------- /gamaredon/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/gamaredon/samples.sha256 -------------------------------------------------------------------------------- /gamarue/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/gamarue/README.adoc -------------------------------------------------------------------------------- /gamarue/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/gamarue/samples.md5 -------------------------------------------------------------------------------- /gamarue/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/gamarue/samples.sha1 -------------------------------------------------------------------------------- /gamarue/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/gamarue/samples.sha256 -------------------------------------------------------------------------------- /gelsemium/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/gelsemium/README.adoc -------------------------------------------------------------------------------- /gelsemium/misp.event_2021-06-09_gelsemium-when-threat-actors-go-gardening.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/gelsemium/misp.event_2021-06-09_gelsemium-when-threat-actors-go-gardening.json -------------------------------------------------------------------------------- /gelsemium/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/gelsemium/samples.md5 -------------------------------------------------------------------------------- /gelsemium/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/gelsemium/samples.sha1 -------------------------------------------------------------------------------- /gelsemium/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/gelsemium/samples.sha256 -------------------------------------------------------------------------------- /glupteba/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/glupteba/README.adoc -------------------------------------------------------------------------------- /glupteba/glupteba.misp-event.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/glupteba/glupteba.misp-event.json -------------------------------------------------------------------------------- /glupteba/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/glupteba/samples.md5 -------------------------------------------------------------------------------- /glupteba/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/glupteba/samples.sha1 -------------------------------------------------------------------------------- /glupteba/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/glupteba/samples.sha256 -------------------------------------------------------------------------------- /gmera/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/gmera/README.adoc -------------------------------------------------------------------------------- /gmera/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/gmera/samples.md5 -------------------------------------------------------------------------------- /gmera/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/gmera/samples.sha1 -------------------------------------------------------------------------------- /gmera/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/gmera/samples.sha256 -------------------------------------------------------------------------------- /goldenjackal/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/goldenjackal/README.adoc -------------------------------------------------------------------------------- /goldenjackal/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/goldenjackal/samples.md5 -------------------------------------------------------------------------------- /goldenjackal/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/goldenjackal/samples.sha1 -------------------------------------------------------------------------------- /goldenjackal/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/goldenjackal/samples.sha256 -------------------------------------------------------------------------------- /grandoreiro/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/grandoreiro/README.adoc -------------------------------------------------------------------------------- /grandoreiro/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/grandoreiro/samples.md5 -------------------------------------------------------------------------------- /grandoreiro/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/grandoreiro/samples.sha1 -------------------------------------------------------------------------------- /grandoreiro/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/grandoreiro/samples.sha256 -------------------------------------------------------------------------------- /gravityrat/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/gravityrat/README.adoc -------------------------------------------------------------------------------- /gravityrat/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/gravityrat/samples.md5 -------------------------------------------------------------------------------- /gravityrat/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/gravityrat/samples.sha1 -------------------------------------------------------------------------------- /gravityrat/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/gravityrat/samples.sha256 -------------------------------------------------------------------------------- /gref/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/gref/README.adoc -------------------------------------------------------------------------------- /gref/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/gref/samples.md5 -------------------------------------------------------------------------------- /gref/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/gref/samples.sha1 -------------------------------------------------------------------------------- /gref/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/gref/samples.sha256 -------------------------------------------------------------------------------- /greyenergy/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/greyenergy/README.adoc -------------------------------------------------------------------------------- /greyenergy/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/greyenergy/samples.md5 -------------------------------------------------------------------------------- /greyenergy/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/greyenergy/samples.sha1 -------------------------------------------------------------------------------- /greyenergy/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/greyenergy/samples.sha256 -------------------------------------------------------------------------------- /groundbait/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/groundbait/README.adoc -------------------------------------------------------------------------------- /groundbait/prikormka.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/groundbait/prikormka.yar -------------------------------------------------------------------------------- /groundbait/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/groundbait/samples.md5 -------------------------------------------------------------------------------- /groundbait/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/groundbait/samples.sha1 -------------------------------------------------------------------------------- /groundbait/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/groundbait/samples.sha256 -------------------------------------------------------------------------------- /guildma/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/guildma/README.adoc -------------------------------------------------------------------------------- /guildma/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/guildma/samples.md5 -------------------------------------------------------------------------------- /guildma/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/guildma/samples.sha1 -------------------------------------------------------------------------------- /guildma/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/guildma/samples.sha256 -------------------------------------------------------------------------------- /hamkombat/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/hamkombat/README.adoc -------------------------------------------------------------------------------- /hamkombat/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/hamkombat/samples.md5 -------------------------------------------------------------------------------- /hamkombat/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/hamkombat/samples.sha1 -------------------------------------------------------------------------------- /hamkombat/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/hamkombat/samples.sha256 -------------------------------------------------------------------------------- /hotpage/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/hotpage/README.adoc -------------------------------------------------------------------------------- /hotpage/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/hotpage/samples.md5 -------------------------------------------------------------------------------- /hotpage/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/hotpage/samples.sha1 -------------------------------------------------------------------------------- /hotpage/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/hotpage/samples.sha256 -------------------------------------------------------------------------------- /hybridpetya/README.doc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/hybridpetya/README.doc -------------------------------------------------------------------------------- /hybridpetya/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/hybridpetya/samples.md5 -------------------------------------------------------------------------------- /hybridpetya/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/hybridpetya/samples.sha1 -------------------------------------------------------------------------------- /hybridpetya/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/hybridpetya/samples.sha256 -------------------------------------------------------------------------------- /industroyer/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/industroyer/README.adoc -------------------------------------------------------------------------------- /industroyer/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/industroyer/samples.md5 -------------------------------------------------------------------------------- /industroyer/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/industroyer/samples.sha1 -------------------------------------------------------------------------------- /industroyer/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/industroyer/samples.sha256 -------------------------------------------------------------------------------- /interception/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/interception/README.adoc -------------------------------------------------------------------------------- /interception/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/interception/samples.md5 -------------------------------------------------------------------------------- /interception/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/interception/samples.sha1 -------------------------------------------------------------------------------- /interception/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/interception/samples.sha256 -------------------------------------------------------------------------------- /invisimole/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/invisimole/README.adoc -------------------------------------------------------------------------------- /invisimole/invisimole.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/invisimole/invisimole.yar -------------------------------------------------------------------------------- /invisimole/misp_invisimole.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/invisimole/misp_invisimole.json -------------------------------------------------------------------------------- /invisimole/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/invisimole/samples.md5 -------------------------------------------------------------------------------- /invisimole/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/invisimole/samples.sha1 -------------------------------------------------------------------------------- /invisimole/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/invisimole/samples.sha256 -------------------------------------------------------------------------------- /invisimole/sigma/win_apt_invisimole_cpl_chain.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/invisimole/sigma/win_apt_invisimole_cpl_chain.yml -------------------------------------------------------------------------------- /invisimole/sigma/win_apt_invisimole_eternalblue.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/invisimole/sigma/win_apt_invisimole_eternalblue.yml -------------------------------------------------------------------------------- /invisimole/sigma/win_apt_invisimole_gamaredon.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/invisimole/sigma/win_apt_invisimole_gamaredon.yml -------------------------------------------------------------------------------- /invisimole/sigma/win_apt_invisimole_helper_dll.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/invisimole/sigma/win_apt_invisimole_helper_dll.yml -------------------------------------------------------------------------------- /invisimole/sigma/win_apt_invisimole_powershell.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/invisimole/sigma/win_apt_invisimole_powershell.yml -------------------------------------------------------------------------------- /invisimole/sigma/win_apt_invisimole_rc2cl_backdoor.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/invisimole/sigma/win_apt_invisimole_rc2cl_backdoor.yml -------------------------------------------------------------------------------- /invisimole/sigma/win_apt_invisimole_rc2fm_backdoor.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/invisimole/sigma/win_apt_invisimole_rc2fm_backdoor.yml -------------------------------------------------------------------------------- /invisimole/sigma/win_apt_invisimole_sminit_chain.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/invisimole/sigma/win_apt_invisimole_sminit_chain.yml -------------------------------------------------------------------------------- /invisimole/sigma/win_apt_invisimole_speedfan_chain.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/invisimole/sigma/win_apt_invisimole_speedfan_chain.yml -------------------------------------------------------------------------------- /invisimole/sigma/win_apt_invisimole_uac_bypass.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/invisimole/sigma/win_apt_invisimole_uac_bypass.yml -------------------------------------------------------------------------------- /invisimole/sigma/win_apt_invisimole_wdigest_chain.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/invisimole/sigma/win_apt_invisimole_wdigest_chain.yml -------------------------------------------------------------------------------- /invisimole/sigma/win_apt_invisimole_wrapper_dll.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/invisimole/sigma/win_apt_invisimole_wrapper_dll.yml -------------------------------------------------------------------------------- /invisimole/sigma/win_lolbin_setupSNK.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/invisimole/sigma/win_lolbin_setupSNK.yml -------------------------------------------------------------------------------- /invisimole/sigma/win_lolbin_srvanyng.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/invisimole/sigma/win_lolbin_srvanyng.yml -------------------------------------------------------------------------------- /invisimole/sigma/win_lolbin_winapiexec.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/invisimole/sigma/win_lolbin_winapiexec.yml -------------------------------------------------------------------------------- /invisimole/sigma/win_suspicious_control_panel_applet.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/invisimole/sigma/win_suspicious_control_panel_applet.yml -------------------------------------------------------------------------------- /invisimole/sigma/win_suspicious_rundll32.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/invisimole/sigma/win_suspicious_rundll32.yml -------------------------------------------------------------------------------- /invisimole/sigma/win_vulnbin_video_player.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/invisimole/sigma/win_vulnbin_video_player.yml -------------------------------------------------------------------------------- /invisimole/sigma/win_vulnbin_wdigest.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/invisimole/sigma/win_vulnbin_wdigest.yml -------------------------------------------------------------------------------- /janeleiro/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/janeleiro/README.adoc -------------------------------------------------------------------------------- /janeleiro/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/janeleiro/samples.md5 -------------------------------------------------------------------------------- /janeleiro/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/janeleiro/samples.sha1 -------------------------------------------------------------------------------- /janeleiro/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/janeleiro/samples.sha256 -------------------------------------------------------------------------------- /kamran/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/kamran/README.adoc -------------------------------------------------------------------------------- /kamran/samples.md5: -------------------------------------------------------------------------------- 1 | 8d5e680e5a026b0e8198a34c1fbc6275 2 | -------------------------------------------------------------------------------- /kamran/samples.sha1: -------------------------------------------------------------------------------- 1 | 0f0259f288141edbe4ab2b8032911c69e03817d2 2 | -------------------------------------------------------------------------------- /kamran/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/kamran/samples.sha256 -------------------------------------------------------------------------------- /kasidet/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/kasidet/README.adoc -------------------------------------------------------------------------------- /kasidet/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/kasidet/samples.md5 -------------------------------------------------------------------------------- /kasidet/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/kasidet/samples.sha1 -------------------------------------------------------------------------------- /kasidet/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/kasidet/samples.sha256 -------------------------------------------------------------------------------- /keydnap/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/keydnap/README.adoc -------------------------------------------------------------------------------- /keydnap/keydnap.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/keydnap/keydnap.yar -------------------------------------------------------------------------------- /keydnap/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/keydnap/samples.md5 -------------------------------------------------------------------------------- /keydnap/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/keydnap/samples.sha1 -------------------------------------------------------------------------------- /keydnap/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/keydnap/samples.sha256 -------------------------------------------------------------------------------- /kimsuky/hotdoge_donutcat_case/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/kimsuky/hotdoge_donutcat_case/README.adoc -------------------------------------------------------------------------------- /king_tut/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/king_tut/README.adoc -------------------------------------------------------------------------------- /king_tut/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/king_tut/samples.md5 -------------------------------------------------------------------------------- /king_tut/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/king_tut/samples.sha1 -------------------------------------------------------------------------------- /king_tut/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/king_tut/samples.sha256 -------------------------------------------------------------------------------- /kobalos/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/kobalos/README.adoc -------------------------------------------------------------------------------- /kobalos/kobalos.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/kobalos/kobalos.yar -------------------------------------------------------------------------------- /kobalos/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/kobalos/samples.md5 -------------------------------------------------------------------------------- /kobalos/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/kobalos/samples.sha1 -------------------------------------------------------------------------------- /kobalos/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/kobalos/samples.sha256 -------------------------------------------------------------------------------- /krachulka/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/krachulka/README.adoc -------------------------------------------------------------------------------- /krachulka/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/krachulka/samples.md5 -------------------------------------------------------------------------------- /krachulka/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/krachulka/samples.sha1 -------------------------------------------------------------------------------- /krachulka/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/krachulka/samples.sha256 -------------------------------------------------------------------------------- /kryptocibule/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/kryptocibule/README.adoc -------------------------------------------------------------------------------- /kryptocibule/adjectives.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/kryptocibule/adjectives.txt -------------------------------------------------------------------------------- /kryptocibule/misp-kryptocibule.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/kryptocibule/misp-kryptocibule.json -------------------------------------------------------------------------------- /kryptocibule/nouns.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/kryptocibule/nouns.txt -------------------------------------------------------------------------------- /lokorrito/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/lokorrito/README.adoc -------------------------------------------------------------------------------- /lokorrito/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/lokorrito/samples.md5 -------------------------------------------------------------------------------- /lokorrito/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/lokorrito/samples.sha1 -------------------------------------------------------------------------------- /lokorrito/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/lokorrito/samples.sha256 -------------------------------------------------------------------------------- /lummastealer/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/lummastealer/README.adoc -------------------------------------------------------------------------------- /lummastealer/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/lummastealer/samples.md5 -------------------------------------------------------------------------------- /lummastealer/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/lummastealer/samples.sha1 -------------------------------------------------------------------------------- /lummastealer/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/lummastealer/samples.sha256 -------------------------------------------------------------------------------- /machete/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/machete/README.adoc -------------------------------------------------------------------------------- /machete/misp-machete-event.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/machete/misp-machete-event.json -------------------------------------------------------------------------------- /machete/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/machete/samples.md5 -------------------------------------------------------------------------------- /machete/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/machete/samples.sha1 -------------------------------------------------------------------------------- /machete/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/machete/samples.sha256 -------------------------------------------------------------------------------- /mekotio/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/mekotio/README.adoc -------------------------------------------------------------------------------- /mikroceen/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/mikroceen/README.adoc -------------------------------------------------------------------------------- /mikroceen/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/mikroceen/samples.md5 -------------------------------------------------------------------------------- /mikroceen/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/mikroceen/samples.sha1 -------------------------------------------------------------------------------- /mikroceen/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/mikroceen/samples.sha256 -------------------------------------------------------------------------------- /mirrorface/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/mirrorface/README.adoc -------------------------------------------------------------------------------- /mirrorface/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/mirrorface/samples.md5 -------------------------------------------------------------------------------- /mirrorface/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/mirrorface/samples.sha1 -------------------------------------------------------------------------------- /mirrorface/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/mirrorface/samples.sha256 -------------------------------------------------------------------------------- /mispadu/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/mispadu/README.adoc -------------------------------------------------------------------------------- /mispadu/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/mispadu/samples.md5 -------------------------------------------------------------------------------- /mispadu/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/mispadu/samples.sha1 -------------------------------------------------------------------------------- /mispadu/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/mispadu/samples.sha256 -------------------------------------------------------------------------------- /modiloader/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/modiloader/README.adoc -------------------------------------------------------------------------------- /modiloader/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/modiloader/samples.md5 -------------------------------------------------------------------------------- /modiloader/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/modiloader/samples.sha1 -------------------------------------------------------------------------------- /modiloader/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/modiloader/samples.sha256 -------------------------------------------------------------------------------- /moose/LinuxMooseETrules.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/moose/LinuxMooseETrules.txt -------------------------------------------------------------------------------- /moose/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/moose/README.adoc -------------------------------------------------------------------------------- /moose/linux-moose.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/moose/linux-moose.yar -------------------------------------------------------------------------------- /moose/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/moose/samples.md5 -------------------------------------------------------------------------------- /moose/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/moose/samples.sha1 -------------------------------------------------------------------------------- /moose/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/moose/samples.sha256 -------------------------------------------------------------------------------- /moustachedbouncer/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/moustachedbouncer/README.adoc -------------------------------------------------------------------------------- /moustachedbouncer/misp-moustachedbouncer.event.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/moustachedbouncer/misp-moustachedbouncer.event.json -------------------------------------------------------------------------------- /moustachedbouncer/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/moustachedbouncer/samples.md5 -------------------------------------------------------------------------------- /moustachedbouncer/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/moustachedbouncer/samples.sha1 -------------------------------------------------------------------------------- /moustachedbouncer/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/moustachedbouncer/samples.sha256 -------------------------------------------------------------------------------- /mozi/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/mozi/README.adoc -------------------------------------------------------------------------------- /mozi/mozi.misp-event.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/mozi/mozi.misp-event.json -------------------------------------------------------------------------------- /mozi/mozi.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/mozi/mozi.yar -------------------------------------------------------------------------------- /mozi/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/mozi/samples.md5 -------------------------------------------------------------------------------- /mozi/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/mozi/samples.sha1 -------------------------------------------------------------------------------- /mozi/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/mozi/samples.sha256 -------------------------------------------------------------------------------- /muddywater/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/muddywater/README.adoc -------------------------------------------------------------------------------- /muddywater/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/muddywater/samples.md5 -------------------------------------------------------------------------------- /muddywater/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/muddywater/samples.sha1 -------------------------------------------------------------------------------- /muddywater/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/muddywater/samples.sha256 -------------------------------------------------------------------------------- /mumblehard/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/mumblehard/README.adoc -------------------------------------------------------------------------------- /mumblehard/mumblehard_packer.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/mumblehard/mumblehard_packer.yar -------------------------------------------------------------------------------- /mustang_panda/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/mustang_panda/README.adoc -------------------------------------------------------------------------------- /mustang_panda/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/mustang_panda/samples.md5 -------------------------------------------------------------------------------- /mustang_panda/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/mustang_panda/samples.sha1 -------------------------------------------------------------------------------- /mustang_panda/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/mustang_panda/samples.sha256 -------------------------------------------------------------------------------- /ngate/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ngate/README.adoc -------------------------------------------------------------------------------- /ngate/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ngate/samples.md5 -------------------------------------------------------------------------------- /ngate/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ngate/samples.sha1 -------------------------------------------------------------------------------- /ngate/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ngate/samples.sha256 -------------------------------------------------------------------------------- /nightscout/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/nightscout/README.adoc -------------------------------------------------------------------------------- /nightscout/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/nightscout/samples.md5 -------------------------------------------------------------------------------- /nightscout/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/nightscout/samples.sha1 -------------------------------------------------------------------------------- /nightscout/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/nightscout/samples.sha256 -------------------------------------------------------------------------------- /nukesped_lazarus/Makefile: -------------------------------------------------------------------------------- 1 | all_hashes.txt: README.adoc 2 | grep ^- $< | cut -c 4-67 > $@ 3 | -------------------------------------------------------------------------------- /nukesped_lazarus/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/nukesped_lazarus/README.adoc -------------------------------------------------------------------------------- /nukesped_lazarus/lazarus_3cx.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/nukesped_lazarus/lazarus_3cx.json -------------------------------------------------------------------------------- /nukesped_lazarus/rich_headers_IconicPayloads_3CX.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/nukesped_lazarus/rich_headers_IconicPayloads_3CX.yar -------------------------------------------------------------------------------- /nukesped_lazarus/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/nukesped_lazarus/samples.md5 -------------------------------------------------------------------------------- /nukesped_lazarus/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/nukesped_lazarus/samples.sha1 -------------------------------------------------------------------------------- /nukesped_lazarus/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/nukesped_lazarus/samples.sha256 -------------------------------------------------------------------------------- /numando/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/numando/README.adoc -------------------------------------------------------------------------------- /numando/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/numando/samples.md5 -------------------------------------------------------------------------------- /numando/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/numando/samples.sha1 -------------------------------------------------------------------------------- /numando/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/numando/samples.sha256 -------------------------------------------------------------------------------- /oceanlotus/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/oceanlotus/README.adoc -------------------------------------------------------------------------------- /oceanlotus/oceanlotus-macOS.misp.event.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/oceanlotus/oceanlotus-macOS.misp.event.json -------------------------------------------------------------------------------- /oceanlotus/oceanlotus-rtf_ocx_campaigns.misp.event.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/oceanlotus/oceanlotus-rtf_ocx_campaigns.misp.event.json -------------------------------------------------------------------------------- /oceanlotus/oceanlotus-wateringhole-2018.misp.event.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/oceanlotus/oceanlotus-wateringhole-2018.misp.event.json -------------------------------------------------------------------------------- /oceanlotus/oceanlotus.misp.event.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/oceanlotus/oceanlotus.misp.event.json -------------------------------------------------------------------------------- /oceanlotus/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/oceanlotus/samples.md5 -------------------------------------------------------------------------------- /oceanlotus/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/oceanlotus/samples.sha1 -------------------------------------------------------------------------------- /oceanlotus/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/oceanlotus/samples.sha256 -------------------------------------------------------------------------------- /oilrig/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/oilrig/README.adoc -------------------------------------------------------------------------------- /oilrig/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/oilrig/samples.md5 -------------------------------------------------------------------------------- /oilrig/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/oilrig/samples.sha1 -------------------------------------------------------------------------------- /oilrig/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/oilrig/samples.sha256 -------------------------------------------------------------------------------- /okrum_ke3chang/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/okrum_ke3chang/README.adoc -------------------------------------------------------------------------------- /okrum_ke3chang/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/okrum_ke3chang/samples.md5 -------------------------------------------------------------------------------- /okrum_ke3chang/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/okrum_ke3chang/samples.sha1 -------------------------------------------------------------------------------- /okrum_ke3chang/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/okrum_ke3chang/samples.sha256 -------------------------------------------------------------------------------- /operation_jacana/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/operation_jacana/README.adoc -------------------------------------------------------------------------------- /operation_jacana/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/operation_jacana/samples.md5 -------------------------------------------------------------------------------- /operation_jacana/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/operation_jacana/samples.sha1 -------------------------------------------------------------------------------- /operation_jacana/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/operation_jacana/samples.sha256 -------------------------------------------------------------------------------- /operation_roundpress/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/operation_roundpress/README.adoc -------------------------------------------------------------------------------- /operation_roundpress/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/operation_roundpress/samples.md5 -------------------------------------------------------------------------------- /operation_roundpress/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/operation_roundpress/samples.sha1 -------------------------------------------------------------------------------- /operation_roundpress/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/operation_roundpress/samples.sha256 -------------------------------------------------------------------------------- /operation_texonto/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/operation_texonto/README.adoc -------------------------------------------------------------------------------- /operation_texonto/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/operation_texonto/samples.md5 -------------------------------------------------------------------------------- /operation_texonto/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/operation_texonto/samples.sha1 -------------------------------------------------------------------------------- /operation_texonto/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/operation_texonto/samples.sha256 -------------------------------------------------------------------------------- /ousaban/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ousaban/README.adoc -------------------------------------------------------------------------------- /polonium/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/polonium/README.adoc -------------------------------------------------------------------------------- /polonium/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/polonium/samples.md5 -------------------------------------------------------------------------------- /polonium/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/polonium/samples.sha1 -------------------------------------------------------------------------------- /polonium/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/polonium/samples.sha256 -------------------------------------------------------------------------------- /potao/PotaoNew.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/potao/PotaoNew.yara -------------------------------------------------------------------------------- /potao/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/potao/README.adoc -------------------------------------------------------------------------------- /potao/potao-et.rules: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/potao/potao-et.rules -------------------------------------------------------------------------------- /potao/potao.rules: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/potao/potao.rules -------------------------------------------------------------------------------- /potao/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/potao/samples.md5 -------------------------------------------------------------------------------- /potao/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/potao/samples.sha1 -------------------------------------------------------------------------------- /potao/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/potao/samples.sha256 -------------------------------------------------------------------------------- /powerpool/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/powerpool/README.adoc -------------------------------------------------------------------------------- /powerpool/misp-powerpool.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/powerpool/misp-powerpool.json -------------------------------------------------------------------------------- /powerpool/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/powerpool/samples.md5 -------------------------------------------------------------------------------- /powerpool/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/powerpool/samples.sha1 -------------------------------------------------------------------------------- /powerpool/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/powerpool/samples.sha256 -------------------------------------------------------------------------------- /prospytospy/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/prospytospy/README.adoc -------------------------------------------------------------------------------- /prospytospy/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/prospytospy/samples.md5 -------------------------------------------------------------------------------- /prospytospy/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/prospytospy/samples.sha1 -------------------------------------------------------------------------------- /prospytospy/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/prospytospy/samples.sha256 -------------------------------------------------------------------------------- /pwa_phishing/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/pwa_phishing/README.adoc -------------------------------------------------------------------------------- /pwa_phishing/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/pwa_phishing/samples.md5 -------------------------------------------------------------------------------- /pwa_phishing/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/pwa_phishing/samples.sha1 -------------------------------------------------------------------------------- /pwa_phishing/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/pwa_phishing/samples.sha256 -------------------------------------------------------------------------------- /pypi_backdoor/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/pypi_backdoor/README.adoc -------------------------------------------------------------------------------- /pypi_backdoor/malicious_pypi_packages.misp-event.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/pypi_backdoor/malicious_pypi_packages.misp-event.json -------------------------------------------------------------------------------- /pypi_backdoor/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/pypi_backdoor/samples.md5 -------------------------------------------------------------------------------- /pypi_backdoor/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/pypi_backdoor/samples.sha1 -------------------------------------------------------------------------------- /pypi_backdoor/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/pypi_backdoor/samples.sha256 -------------------------------------------------------------------------------- /quarterly_reports/2020_Q2/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/quarterly_reports/2020_Q2/README.adoc -------------------------------------------------------------------------------- /quarterly_reports/2020_Q2/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/quarterly_reports/2020_Q2/samples.md5 -------------------------------------------------------------------------------- /quarterly_reports/2020_Q2/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/quarterly_reports/2020_Q2/samples.sha1 -------------------------------------------------------------------------------- /quarterly_reports/2020_Q2/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/quarterly_reports/2020_Q2/samples.sha256 -------------------------------------------------------------------------------- /quarterly_reports/2020_Q3/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/quarterly_reports/2020_Q3/README.adoc -------------------------------------------------------------------------------- /quarterly_reports/2020_Q3/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/quarterly_reports/2020_Q3/samples.md5 -------------------------------------------------------------------------------- /quarterly_reports/2020_Q3/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/quarterly_reports/2020_Q3/samples.sha1 -------------------------------------------------------------------------------- /quarterly_reports/2020_Q3/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/quarterly_reports/2020_Q3/samples.sha256 -------------------------------------------------------------------------------- /quarterly_reports/2020_Q4/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/quarterly_reports/2020_Q4/README.adoc -------------------------------------------------------------------------------- /quarterly_reports/2020_Q4/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/quarterly_reports/2020_Q4/samples.md5 -------------------------------------------------------------------------------- /quarterly_reports/2020_Q4/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/quarterly_reports/2020_Q4/samples.sha1 -------------------------------------------------------------------------------- /quarterly_reports/2020_Q4/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/quarterly_reports/2020_Q4/samples.sha256 -------------------------------------------------------------------------------- /quarterly_reports/2021_T1/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/quarterly_reports/2021_T1/README.adoc -------------------------------------------------------------------------------- /quarterly_reports/2021_T1/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/quarterly_reports/2021_T1/samples.md5 -------------------------------------------------------------------------------- /quarterly_reports/2021_T1/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/quarterly_reports/2021_T1/samples.sha1 -------------------------------------------------------------------------------- /quarterly_reports/2021_T1/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/quarterly_reports/2021_T1/samples.sha256 -------------------------------------------------------------------------------- /quarterly_reports/2021_T2/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/quarterly_reports/2021_T2/README.adoc -------------------------------------------------------------------------------- /quarterly_reports/2021_T2/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/quarterly_reports/2021_T2/samples.md5 -------------------------------------------------------------------------------- /quarterly_reports/2021_T2/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/quarterly_reports/2021_T2/samples.sha1 -------------------------------------------------------------------------------- /quarterly_reports/2021_T2/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/quarterly_reports/2021_T2/samples.sha256 -------------------------------------------------------------------------------- /quarterly_reports/2021_T3/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/quarterly_reports/2021_T3/README.adoc -------------------------------------------------------------------------------- /quarterly_reports/2021_T3/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/quarterly_reports/2021_T3/samples.md5 -------------------------------------------------------------------------------- /quarterly_reports/2021_T3/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/quarterly_reports/2021_T3/samples.sha1 -------------------------------------------------------------------------------- /quarterly_reports/2021_T3/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/quarterly_reports/2021_T3/samples.sha256 -------------------------------------------------------------------------------- /quarterly_reports/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/quarterly_reports/README.adoc -------------------------------------------------------------------------------- /rakos/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/rakos/README.adoc -------------------------------------------------------------------------------- /rakos/rakos.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/rakos/rakos.yar -------------------------------------------------------------------------------- /rakos/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/rakos/samples.md5 -------------------------------------------------------------------------------- /rakos/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/rakos/samples.sha1 -------------------------------------------------------------------------------- /rakos/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/rakos/samples.sha256 -------------------------------------------------------------------------------- /rakos/vars.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/rakos/vars.yaml -------------------------------------------------------------------------------- /rakos/vf_ioc_linux_rakos.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/rakos/vf_ioc_linux_rakos.py -------------------------------------------------------------------------------- /ramsay/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ramsay/README.adoc -------------------------------------------------------------------------------- /ramsay/misp-ramsay.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ramsay/misp-ramsay.json -------------------------------------------------------------------------------- /ramsay/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ramsay/samples.md5 -------------------------------------------------------------------------------- /ramsay/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ramsay/samples.sha1 -------------------------------------------------------------------------------- /ramsay/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ramsay/samples.sha256 -------------------------------------------------------------------------------- /ransomhub/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ransomhub/README.adoc -------------------------------------------------------------------------------- /ransomhub/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ransomhub/samples.md5 -------------------------------------------------------------------------------- /ransomhub/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ransomhub/samples.sha1 -------------------------------------------------------------------------------- /ransomhub/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ransomhub/samples.sha256 -------------------------------------------------------------------------------- /redline/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/redline/README.adoc -------------------------------------------------------------------------------- /redline/redline.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/redline/redline.yar -------------------------------------------------------------------------------- /redline/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/redline/samples.md5 -------------------------------------------------------------------------------- /redline/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/redline/samples.sha1 -------------------------------------------------------------------------------- /redline/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/redline/samples.sha256 -------------------------------------------------------------------------------- /romcom/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/romcom/README.adoc -------------------------------------------------------------------------------- /romcom/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/romcom/samples.md5 -------------------------------------------------------------------------------- /romcom/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/romcom/samples.sha1 -------------------------------------------------------------------------------- /romcom/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/romcom/samples.sha256 -------------------------------------------------------------------------------- /rtm/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/rtm/README.adoc -------------------------------------------------------------------------------- /rtm/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/rtm/samples.md5 -------------------------------------------------------------------------------- /rtm/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/rtm/samples.sha1 -------------------------------------------------------------------------------- /rtm/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/rtm/samples.sha256 -------------------------------------------------------------------------------- /scarcruft/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/scarcruft/README.adoc -------------------------------------------------------------------------------- /scarcruft/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/scarcruft/samples.md5 -------------------------------------------------------------------------------- /scarcruft/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/scarcruft/samples.sha1 -------------------------------------------------------------------------------- /scarcruft/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/scarcruft/samples.sha256 -------------------------------------------------------------------------------- /sednit/2017-05-09_Trump_Attack_on_Syria_IoCs.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sednit/2017-05-09_Trump_Attack_on_Syria_IoCs.adoc -------------------------------------------------------------------------------- /sednit/2017-05-09_Trump_Attack_on_Syria_IoCs.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sednit/2017-05-09_Trump_Attack_on_Syria_IoCs.json -------------------------------------------------------------------------------- /sednit/2018-11-20_Zebrocy.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sednit/2018-11-20_Zebrocy.adoc -------------------------------------------------------------------------------- /sednit/2018-11-20_Zebrocy.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sednit/2018-11-20_Zebrocy.json -------------------------------------------------------------------------------- /sednit/2019-05-23_Zebrocy.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sednit/2019-05-23_Zebrocy.adoc -------------------------------------------------------------------------------- /sednit/2019-05-23_Zebrocy.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sednit/2019-05-23_Zebrocy.json -------------------------------------------------------------------------------- /sednit/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sednit/README.adoc -------------------------------------------------------------------------------- /sednit/lojax.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sednit/lojax.adoc -------------------------------------------------------------------------------- /sednit/part1.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sednit/part1.adoc -------------------------------------------------------------------------------- /sednit/part2.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sednit/part2.adoc -------------------------------------------------------------------------------- /sednit/part3.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sednit/part3.adoc -------------------------------------------------------------------------------- /sednit/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sednit/samples.md5 -------------------------------------------------------------------------------- /sednit/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sednit/samples.sha1 -------------------------------------------------------------------------------- /sednit/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sednit/samples.sha256 -------------------------------------------------------------------------------- /signsight/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/signsight/README.adoc -------------------------------------------------------------------------------- /signsight/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/signsight/samples.md5 -------------------------------------------------------------------------------- /signsight/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/signsight/samples.sha1 -------------------------------------------------------------------------------- /signsight/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/signsight/samples.sha256 -------------------------------------------------------------------------------- /signsight/signsight-misp-event.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/signsight/signsight-misp-event.json -------------------------------------------------------------------------------- /spalax/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/spalax/README.adoc -------------------------------------------------------------------------------- /spalax/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/spalax/samples.md5 -------------------------------------------------------------------------------- /spalax/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/spalax/samples.sha1 -------------------------------------------------------------------------------- /spalax/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/spalax/samples.sha256 -------------------------------------------------------------------------------- /sparklinggoblin/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sparklinggoblin/README.adoc -------------------------------------------------------------------------------- /sparklinggoblin/SparklingGoblin.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sparklinggoblin/SparklingGoblin.yar -------------------------------------------------------------------------------- /sparklinggoblin/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sparklinggoblin/samples.md5 -------------------------------------------------------------------------------- /sparklinggoblin/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sparklinggoblin/samples.sha1 -------------------------------------------------------------------------------- /sparklinggoblin/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sparklinggoblin/samples.sha256 -------------------------------------------------------------------------------- /spyloan/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/spyloan/README.adoc -------------------------------------------------------------------------------- /spyloan/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/spyloan/samples.md5 -------------------------------------------------------------------------------- /spyloan/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/spyloan/samples.sha1 -------------------------------------------------------------------------------- /spyloan/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/spyloan/samples.sha256 -------------------------------------------------------------------------------- /sshdoor/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sshdoor/README.adoc -------------------------------------------------------------------------------- /sshdoor/crait_report.ksy: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sshdoor/crait_report.ksy -------------------------------------------------------------------------------- /sshdoor/kessel_config.ksy: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sshdoor/kessel_config.ksy -------------------------------------------------------------------------------- /sshdoor/misp-events/abafar.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sshdoor/misp-events/abafar.json -------------------------------------------------------------------------------- /sshdoor/misp-events/akiva.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sshdoor/misp-events/akiva.json -------------------------------------------------------------------------------- /sshdoor/misp-events/alderaan.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sshdoor/misp-events/alderaan.json -------------------------------------------------------------------------------- /sshdoor/misp-events/ando.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sshdoor/misp-events/ando.json -------------------------------------------------------------------------------- /sshdoor/misp-events/anoat.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sshdoor/misp-events/anoat.json -------------------------------------------------------------------------------- /sshdoor/misp-events/atollon.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sshdoor/misp-events/atollon.json -------------------------------------------------------------------------------- /sshdoor/misp-events/batuu.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sshdoor/misp-events/batuu.json -------------------------------------------------------------------------------- /sshdoor/misp-events/bespin.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sshdoor/misp-events/bespin.json -------------------------------------------------------------------------------- /sshdoor/misp-events/bonadan.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sshdoor/misp-events/bonadan.json -------------------------------------------------------------------------------- /sshdoor/misp-events/borleias.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sshdoor/misp-events/borleias.json -------------------------------------------------------------------------------- /sshdoor/misp-events/chandrila.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sshdoor/misp-events/chandrila.json -------------------------------------------------------------------------------- /sshdoor/misp-events/coruscant.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sshdoor/misp-events/coruscant.json -------------------------------------------------------------------------------- /sshdoor/misp-events/crait.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sshdoor/misp-events/crait.json -------------------------------------------------------------------------------- /sshdoor/misp-events/endor.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sshdoor/misp-events/endor.json -------------------------------------------------------------------------------- /sshdoor/misp-events/jakku.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sshdoor/misp-events/jakku.json -------------------------------------------------------------------------------- /sshdoor/misp-events/kamino.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sshdoor/misp-events/kamino.json -------------------------------------------------------------------------------- /sshdoor/misp-events/kessel.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sshdoor/misp-events/kessel.json -------------------------------------------------------------------------------- /sshdoor/misp-events/mimban.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sshdoor/misp-events/mimban.json -------------------------------------------------------------------------------- /sshdoor/misp-events/onderon.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sshdoor/misp-events/onderon.json -------------------------------------------------------------------------------- /sshdoor/misp-events/polismassa.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sshdoor/misp-events/polismassa.json -------------------------------------------------------------------------------- /sshdoor/misp-events/quarren.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sshdoor/misp-events/quarren.json -------------------------------------------------------------------------------- /sshdoor/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sshdoor/samples.md5 -------------------------------------------------------------------------------- /sshdoor/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sshdoor/samples.sha1 -------------------------------------------------------------------------------- /sshdoor/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sshdoor/samples.sha256 -------------------------------------------------------------------------------- /sshdoor/sshdoor.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sshdoor/sshdoor.yar -------------------------------------------------------------------------------- /sshdoor/windigo_signatures.pl: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/sshdoor/windigo_signatures.pl -------------------------------------------------------------------------------- /stantinko/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/stantinko/README.adoc -------------------------------------------------------------------------------- /stantinko/cryptominer/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/stantinko/cryptominer/samples.md5 -------------------------------------------------------------------------------- /stantinko/cryptominer/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/stantinko/cryptominer/samples.sha1 -------------------------------------------------------------------------------- /stantinko/cryptominer/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/stantinko/cryptominer/samples.sha256 -------------------------------------------------------------------------------- /stantinko/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/stantinko/samples.md5 -------------------------------------------------------------------------------- /stantinko/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/stantinko/samples.sha1 -------------------------------------------------------------------------------- /stantinko/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/stantinko/samples.sha256 -------------------------------------------------------------------------------- /stantinko/stantinko.misp-event.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/stantinko/stantinko.misp-event.json -------------------------------------------------------------------------------- /stantinko/stantinko.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/stantinko/stantinko.yar -------------------------------------------------------------------------------- /stealthfalcon/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/stealthfalcon/README.adoc -------------------------------------------------------------------------------- /stealthfalcon/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/stealthfalcon/samples.md5 -------------------------------------------------------------------------------- /stealthfalcon/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/stealthfalcon/samples.sha1 -------------------------------------------------------------------------------- /stealthfalcon/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/stealthfalcon/samples.sha256 -------------------------------------------------------------------------------- /stealthytrident/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/stealthytrident/README.adoc -------------------------------------------------------------------------------- /stealthytrident/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/stealthytrident/samples.md5 -------------------------------------------------------------------------------- /stealthytrident/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/stealthytrident/samples.sha1 -------------------------------------------------------------------------------- /stealthytrident/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/stealthytrident/samples.sha256 -------------------------------------------------------------------------------- /swc-candiru/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/swc-candiru/README.adoc -------------------------------------------------------------------------------- /swc-candiru/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/swc-candiru/samples.md5 -------------------------------------------------------------------------------- /swc-candiru/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/swc-candiru/samples.sha1 -------------------------------------------------------------------------------- /swc-candiru/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/swc-candiru/samples.sha256 -------------------------------------------------------------------------------- /swc-candiru/swc-candiru_misp.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/swc-candiru/swc-candiru_misp.json -------------------------------------------------------------------------------- /ta410/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ta410/README.adoc -------------------------------------------------------------------------------- /ta410/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ta410/samples.md5 -------------------------------------------------------------------------------- /ta410/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ta410/samples.sha1 -------------------------------------------------------------------------------- /ta410/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ta410/samples.sha256 -------------------------------------------------------------------------------- /ta410/ta410.rules: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ta410/ta410.rules -------------------------------------------------------------------------------- /ta410/ta410.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ta410/ta410.yar -------------------------------------------------------------------------------- /telebots/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/telebots/README.adoc -------------------------------------------------------------------------------- /telebots/misp-telebots.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/telebots/misp-telebots.json -------------------------------------------------------------------------------- /telebots/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/telebots/samples.md5 -------------------------------------------------------------------------------- /telebots/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/telebots/samples.sha1 -------------------------------------------------------------------------------- /telebots/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/telebots/samples.sha256 -------------------------------------------------------------------------------- /telekopye/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/telekopye/README.adoc -------------------------------------------------------------------------------- /telekopye/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/telekopye/samples.md5 -------------------------------------------------------------------------------- /telekopye/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/telekopye/samples.sha1 -------------------------------------------------------------------------------- /telekopye/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/telekopye/samples.sha256 -------------------------------------------------------------------------------- /thewizards/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/thewizards/README.adoc -------------------------------------------------------------------------------- /thewizards/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/thewizards/samples.md5 -------------------------------------------------------------------------------- /thewizards/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/thewizards/samples.sha1 -------------------------------------------------------------------------------- /thewizards/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/thewizards/samples.sha256 -------------------------------------------------------------------------------- /tick/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/tick/README.adoc -------------------------------------------------------------------------------- /tick/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/tick/samples.md5 -------------------------------------------------------------------------------- /tick/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/tick/samples.sha1 -------------------------------------------------------------------------------- /tick/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/tick/samples.sha256 -------------------------------------------------------------------------------- /toolshell/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/toolshell/README.adoc -------------------------------------------------------------------------------- /toolshell/samples.md5: -------------------------------------------------------------------------------- 1 | 02b4571470d83163d103112f07f1c434 2 | -------------------------------------------------------------------------------- /toolshell/samples.sha1: -------------------------------------------------------------------------------- 1 | f5b60a8ead96703080e73a1f79c3e70ff44df271 2 | -------------------------------------------------------------------------------- /toolshell/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/toolshell/samples.sha256 -------------------------------------------------------------------------------- /turla/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/turla/README.adoc -------------------------------------------------------------------------------- /turla/carbon.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/turla/carbon.yar -------------------------------------------------------------------------------- /turla/carbon_tool.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/turla/carbon_tool.py -------------------------------------------------------------------------------- /turla/gazer.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/turla/gazer.yar -------------------------------------------------------------------------------- /turla/misp-mosquito-event.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/turla/misp-mosquito-event.json -------------------------------------------------------------------------------- /turla/misp-turla-comrat-v4-event.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/turla/misp-turla-comrat-v4-event.json -------------------------------------------------------------------------------- /turla/misp-turla-crutch-event.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/turla/misp-turla-crutch-event.json -------------------------------------------------------------------------------- /turla/misp-turla-lightneuron-event.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/turla/misp-turla-lightneuron-event.json -------------------------------------------------------------------------------- /turla/misp-turla-outlook-event.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/turla/misp-turla-outlook-event.json -------------------------------------------------------------------------------- /turla/misp-turla-powershell-event.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/turla/misp-turla-powershell-event.json -------------------------------------------------------------------------------- /turla/misp-turla-wateringhole-armenia-event.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/turla/misp-turla-wateringhole-armenia-event.json -------------------------------------------------------------------------------- /turla/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/turla/samples.md5 -------------------------------------------------------------------------------- /turla/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/turla/samples.sha1 -------------------------------------------------------------------------------- /turla/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/turla/samples.sha256 -------------------------------------------------------------------------------- /turla/turla-outlook.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/turla/turla-outlook.yar -------------------------------------------------------------------------------- /ua_wipers/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ua_wipers/README.adoc -------------------------------------------------------------------------------- /ua_wipers/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ua_wipers/samples.md5 -------------------------------------------------------------------------------- /ua_wipers/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ua_wipers/samples.sha1 -------------------------------------------------------------------------------- /ua_wipers/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/ua_wipers/samples.sha256 -------------------------------------------------------------------------------- /vadokrist/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/vadokrist/README.adoc -------------------------------------------------------------------------------- /vadokrist/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/vadokrist/samples.md5 -------------------------------------------------------------------------------- /vadokrist/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/vadokrist/samples.sha1 -------------------------------------------------------------------------------- /vadokrist/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/vadokrist/samples.sha256 -------------------------------------------------------------------------------- /vajraspy/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/vajraspy/README.adoc -------------------------------------------------------------------------------- /vajraspy/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/vajraspy/samples.md5 -------------------------------------------------------------------------------- /vajraspy/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/vajraspy/samples.sha1 -------------------------------------------------------------------------------- /vajraspy/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/vajraspy/samples.sha256 -------------------------------------------------------------------------------- /virtual_invaders/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/virtual_invaders/README.adoc -------------------------------------------------------------------------------- /virtual_invaders/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/virtual_invaders/samples.md5 -------------------------------------------------------------------------------- /virtual_invaders/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/virtual_invaders/samples.sha1 -------------------------------------------------------------------------------- /virtual_invaders/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/virtual_invaders/samples.sha256 -------------------------------------------------------------------------------- /windigo/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/windigo/README.adoc -------------------------------------------------------------------------------- /windigo/ebury.misp.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/windigo/ebury.misp.json -------------------------------------------------------------------------------- /windigo/ebury.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/windigo/ebury.yar -------------------------------------------------------------------------------- /windigo/helimod.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/windigo/helimod.yar -------------------------------------------------------------------------------- /windigo/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/windigo/samples.md5 -------------------------------------------------------------------------------- /windigo/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/windigo/samples.sha1 -------------------------------------------------------------------------------- /windigo/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/windigo/samples.sha256 -------------------------------------------------------------------------------- /windigo/windigo-calfbot.rules: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/windigo/windigo-calfbot.rules -------------------------------------------------------------------------------- /windigo/windigo-cdorked.rules: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/windigo/windigo-cdorked.rules -------------------------------------------------------------------------------- /windigo/windigo-ebury.rules: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/windigo/windigo-ebury.rules -------------------------------------------------------------------------------- /windigo/windigo-onimiki.rules: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/windigo/windigo-onimiki.rules -------------------------------------------------------------------------------- /windigo/windigo-onimiki.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/windigo/windigo-onimiki.yar -------------------------------------------------------------------------------- /windigo/windigo.ioc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/windigo/windigo.ioc -------------------------------------------------------------------------------- /winnti_group/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/winnti_group/README.adoc -------------------------------------------------------------------------------- /winnti_group/gaming_supply_chain.misp_event.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/winnti_group/gaming_supply_chain.misp_event.json -------------------------------------------------------------------------------- /winnti_group/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/winnti_group/samples.md5 -------------------------------------------------------------------------------- /winnti_group/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/winnti_group/samples.sha1 -------------------------------------------------------------------------------- /winnti_group/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/winnti_group/samples.sha256 -------------------------------------------------------------------------------- /winnti_group/skip20_sqllang_hook.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/winnti_group/skip20_sqllang_hook.yar -------------------------------------------------------------------------------- /winter_vivern/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/winter_vivern/README.adoc -------------------------------------------------------------------------------- /winter_vivern/misp-wintervivern.event.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/winter_vivern/misp-wintervivern.event.json -------------------------------------------------------------------------------- /winter_vivern/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/winter_vivern/samples.md5 -------------------------------------------------------------------------------- /winter_vivern/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/winter_vivern/samples.sha1 -------------------------------------------------------------------------------- /winter_vivern/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/winter_vivern/samples.sha256 -------------------------------------------------------------------------------- /worok/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/worok/README.adoc -------------------------------------------------------------------------------- /worok/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/worok/samples.md5 -------------------------------------------------------------------------------- /worok/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/worok/samples.sha1 -------------------------------------------------------------------------------- /worok/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/worok/samples.sha256 -------------------------------------------------------------------------------- /xdspy/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/xdspy/README.adoc -------------------------------------------------------------------------------- /xdspy/misp-xdspy-event.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/xdspy/misp-xdspy-event.json -------------------------------------------------------------------------------- /xdspy/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/xdspy/samples.md5 -------------------------------------------------------------------------------- /xdspy/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/xdspy/samples.sha1 -------------------------------------------------------------------------------- /xdspy/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/xdspy/samples.sha256 -------------------------------------------------------------------------------- /zimbra_phishing/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/zimbra_phishing/README.adoc -------------------------------------------------------------------------------- /zumanek/README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/zumanek/README.adoc -------------------------------------------------------------------------------- /zumanek/samples.md5: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/zumanek/samples.md5 -------------------------------------------------------------------------------- /zumanek/samples.sha1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/zumanek/samples.sha1 -------------------------------------------------------------------------------- /zumanek/samples.sha256: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/eset/malware-ioc/HEAD/zumanek/samples.sha256 --------------------------------------------------------------------------------