Skip to content

jkb-s/snake-attack

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

28 Commits

data sources

data sources

 
 

malware and tools - techniques graphs

malware and tools - techniques graphs

 
 

mitigations

mitigations

 
 

techniques

techniques

 
 

threat actors - techniques graphs

threat actors - techniques graphs

 
 

.gitignore

.gitignore

 
 

README.md

README.md

 
 

_config.yml

_config.yml

 
 

attack-groups.ipynb

attack-groups.ipynb

 
 

attack.ipynb

attack.ipynb

 
 

attack.py

attack.py

 
 

config.json

config.json

 
 

Repository files navigation

Website

Index

  1. Malware and Tools - techniques
  2. Groups / Threat Actors - techniques)
  3. [All Techniques](./techniques/All techniques.html)
  4. Techniques popularity graph Top10 per tactic, excel
  5. All data sources and components [graph](./data sources/All data sources.html)
  6. Data source importance [plot](./data sources/Data source importance.html), [excel](./data sources/Data source importance.xlsx)
  7. Mitigations importance [plot](./mitigations/Mitigations importance.html), [excel](./mitigations/Mitigations importance.xlsx)

Malware and Tools - techniques

  • [S0001 Trojan.Mebromi](./malware and tools - techniques graphs/S0001-Trojan.Mebromi.html)
  • [S0002 Mimikatz](./malware and tools - techniques graphs/S0002-Mimikatz.html)
  • [S0003 RIPTIDE](./malware and tools - techniques graphs/S0003-RIPTIDE.html)
  • [S0004 TinyZBot](./malware and tools - techniques graphs/S0004-TinyZBot.html)
  • [S0005 Windows Credential Editor](./malware and tools - techniques graphs/S0005-Windows Credential Editor.html)
  • [S0006 pwdump](./malware and tools - techniques graphs/S0006-pwdump.html)
  • [S0007 Skeleton Key](./malware and tools - techniques graphs/S0007-Skeleton Key.html)
  • [S0008 gsecdump](./malware and tools - techniques graphs/S0008-gsecdump.html)
  • [S0009 Hikit](./malware and tools - techniques graphs/S0009-Hikit.html)
  • [S0010 Lurid](./malware and tools - techniques graphs/S0010-Lurid.html)
  • [S0011 Taidoor](./malware and tools - techniques graphs/S0011-Taidoor.html)
  • [S0012 PoisonIvy](./malware and tools - techniques graphs/S0012-PoisonIvy.html)
  • [S0013 PlugX](./malware and tools - techniques graphs/S0013-PlugX.html)
  • [S0014 BS2005](./malware and tools - techniques graphs/S0014-BS2005.html)
  • [S0015 Ixeshe](./malware and tools - techniques graphs/S0015-Ixeshe.html)
  • [S0016 P2P ZeuS](./malware and tools - techniques graphs/S0016-P2P ZeuS.html)
  • [S0017 BISCUIT](./malware and tools - techniques graphs/S0017-BISCUIT.html)
  • [S0018 Sykipot](./malware and tools - techniques graphs/S0018-Sykipot.html)
  • [S0019 Regin](./malware and tools - techniques graphs/S0019-Regin.html)
  • [S0020 China Chopper](./malware and tools - techniques graphs/S0020-China Chopper.html)
  • [S0021 Derusbi](./malware and tools - techniques graphs/S0021-Derusbi.html)
  • [S0022 Uroburos](./malware and tools - techniques graphs/S0022-Uroburos.html)
  • [S0023 CHOPSTICK](./malware and tools - techniques graphs/S0023-CHOPSTICK.html)
  • [S0024 Dyre](./malware and tools - techniques graphs/S0024-Dyre.html)
  • [S0025 CALENDAR](./malware and tools - techniques graphs/S0025-CALENDAR.html)
  • [S0026 GLOOXMAIL](./malware and tools - techniques graphs/S0026-GLOOXMAIL.html)
  • [S0027 Zeroaccess](./malware and tools - techniques graphs/S0027-Zeroaccess.html)
  • [S0028 SHIPSHAPE](./malware and tools - techniques graphs/S0028-SHIPSHAPE.html)
  • [S0029 PsExec](./malware and tools - techniques graphs/S0029-PsExec.html)
  • [S0030 Carbanak](./malware and tools - techniques graphs/S0030-Carbanak.html)
  • [S0031 BACKSPACE](./malware and tools - techniques graphs/S0031-BACKSPACE.html)
  • [S0032 gh0st RAT](./malware and tools - techniques graphs/S0032-gh0st RAT.html)
  • [S0033 NetTraveler](./malware and tools - techniques graphs/S0033-NetTraveler.html)
  • [S0034 NETEAGLE](./malware and tools - techniques graphs/S0034-NETEAGLE.html)
  • [S0035 SPACESHIP](./malware and tools - techniques graphs/S0035-SPACESHIP.html)
  • [S0036 FLASHFLOOD](./malware and tools - techniques graphs/S0036-FLASHFLOOD.html)
  • [S0037 HAMMERTOSS](./malware and tools - techniques graphs/S0037-HAMMERTOSS.html)
  • [S0038 Duqu](./malware and tools - techniques graphs/S0038-Duqu.html)
  • [S0039 Net](./malware and tools - techniques graphs/S0039-Net.html)
  • [S0040 HTRAN](./malware and tools - techniques graphs/S0040-HTRAN.html)
  • [S0041 Wiper](./malware and tools - techniques graphs/S0041-Wiper.html)
  • [S0042 LOWBALL](./malware and tools - techniques graphs/S0042-LOWBALL.html)
  • [S0043 BUBBLEWRAP](./malware and tools - techniques graphs/S0043-BUBBLEWRAP.html)
  • [S0044 JHUHUGIT](./malware and tools - techniques graphs/S0044-JHUHUGIT.html)
  • [S0045 ADVSTORESHELL](./malware and tools - techniques graphs/S0045-ADVSTORESHELL.html)
  • [S0046 CozyCar](./malware and tools - techniques graphs/S0046-CozyCar.html)
  • [S0047 Hacking Team UEFI Rootkit](./malware and tools - techniques graphs/S0047-Hacking Team UEFI Rootkit.html)
  • [S0048 PinchDuke](./malware and tools - techniques graphs/S0048-PinchDuke.html)
  • [S0049 GeminiDuke](./malware and tools - techniques graphs/S0049-GeminiDuke.html)
  • [S0050 CosmicDuke](./malware and tools - techniques graphs/S0050-CosmicDuke.html)
  • [S0051 MiniDuke](./malware and tools - techniques graphs/S0051-MiniDuke.html)
  • [S0052 OnionDuke](./malware and tools - techniques graphs/S0052-OnionDuke.html)
  • [S0053 SeaDuke](./malware and tools - techniques graphs/S0053-SeaDuke.html)
  • [S0054 CloudDuke](./malware and tools - techniques graphs/S0054-CloudDuke.html)
  • [S0055 RARSTONE](./malware and tools - techniques graphs/S0055-RARSTONE.html)
  • [S0056 Net Crawler](./malware and tools - techniques graphs/S0056-Net Crawler.html)
  • [S0057 Tasklist](./malware and tools - techniques graphs/S0057-Tasklist.html)
  • [S0058 SslMM](./malware and tools - techniques graphs/S0058-SslMM.html)
  • [S0059 WinMM](./malware and tools - techniques graphs/S0059-WinMM.html)
  • [S0060 Sys10](./malware and tools - techniques graphs/S0060-Sys10.html)
  • [S0061 HDoor](./malware and tools - techniques graphs/S0061-HDoor.html)
  • [S0062 DustySky](./malware and tools - techniques graphs/S0062-DustySky.html)
  • [S0063 SHOTPUT](./malware and tools - techniques graphs/S0063-SHOTPUT.html)
  • [S0064 ELMER](./malware and tools - techniques graphs/S0064-ELMER.html)
  • [S0065 4H RAT](./malware and tools - techniques graphs/S0065-4H RAT.html)
  • [S0066 3PARA RAT](./malware and tools - techniques graphs/S0066-3PARA RAT.html)
  • [S0067 pngdowner](./malware and tools - techniques graphs/S0067-pngdowner.html)
  • [S0068 httpclient](./malware and tools - techniques graphs/S0068-httpclient.html)
  • [S0069 BLACKCOFFEE](./malware and tools - techniques graphs/S0069-BLACKCOFFEE.html)
  • [S0070 HTTPBrowser](./malware and tools - techniques graphs/S0070-HTTPBrowser.html)
  • [S0071 hcdLoader](./malware and tools - techniques graphs/S0071-hcdLoader.html)
  • [S0072 OwaAuth](./malware and tools - techniques graphs/S0072-OwaAuth.html)
  • [S0073 ASPXSpy](./malware and tools - techniques graphs/S0073-ASPXSpy.html)
  • [S0074 Sakula](./malware and tools - techniques graphs/S0074-Sakula.html)
  • [S0075 Reg](./malware and tools - techniques graphs/S0075-Reg.html)
  • [S0076 FakeM](./malware and tools - techniques graphs/S0076-FakeM.html)
  • [S0077 CallMe](./malware and tools - techniques graphs/S0077-CallMe.html)
  • [S0078 Psylo](./malware and tools - techniques graphs/S0078-Psylo.html)
  • [S0079 MobileOrder](./malware and tools - techniques graphs/S0079-MobileOrder.html)
  • [S0080 Mivast](./malware and tools - techniques graphs/S0080-Mivast.html)
  • [S0081 Elise](./malware and tools - techniques graphs/S0081-Elise.html)
  • [S0082 Emissary](./malware and tools - techniques graphs/S0082-Emissary.html)
  • [S0083 Misdat](./malware and tools - techniques graphs/S0083-Misdat.html)
  • [S0084 Mis-Type](./malware and tools - techniques graphs/S0084-Mis-Type.html)
  • [S0085 S-Type](./malware and tools - techniques graphs/S0085-S-Type.html)
  • [S0086 ZLib](./malware and tools - techniques graphs/S0086-ZLib.html)
  • [S0087 Hi-Zor](./malware and tools - techniques graphs/S0087-Hi-Zor.html)
  • [S0088 Kasidet](./malware and tools - techniques graphs/S0088-Kasidet.html)
  • [S0089 BlackEnergy](./malware and tools - techniques graphs/S0089-BlackEnergy.html)
  • [S0090 Rover](./malware and tools - techniques graphs/S0090-Rover.html)
  • [S0091 Epic](./malware and tools - techniques graphs/S0091-Epic.html)
  • [S0092 Agent.btz](./malware and tools - techniques graphs/S0092-Agent.btz.html)
  • [S0093 Backdoor.Oldrea](./malware and tools - techniques graphs/S0093-Backdoor.Oldrea.html)
  • [S0094 Trojan.Karagany](./malware and tools - techniques graphs/S0094-Trojan.Karagany.html)
  • [S0095 FTP](./malware and tools - techniques graphs/S0095-FTP.html)
  • [S0096 Systeminfo](./malware and tools - techniques graphs/S0096-Systeminfo.html)
  • [S0097 Ping](./malware and tools - techniques graphs/S0097-Ping.html)
  • [S0098 T9000](./malware and tools - techniques graphs/S0098-T9000.html)
  • [S0099 Arp](./malware and tools - techniques graphs/S0099-Arp.html)
  • [S0100 ipconfig](./malware and tools - techniques graphs/S0100-ipconfig.html)
  • [S0101 ifconfig](./malware and tools - techniques graphs/S0101-ifconfig.html)
  • [S0102 nbtstat](./malware and tools - techniques graphs/S0102-nbtstat.html)
  • [S0103 route](./malware and tools - techniques graphs/S0103-route.html)
  • [S0104 netstat](./malware and tools - techniques graphs/S0104-netstat.html)
  • [S0105 dsquery](./malware and tools - techniques graphs/S0105-dsquery.html)
  • [S0106 cmd](./malware and tools - techniques graphs/S0106-cmd.html)
  • [S0107 Cherry Picker](./malware and tools - techniques graphs/S0107-Cherry Picker.html)
  • [S0108 netsh](./malware and tools - techniques graphs/S0108-netsh.html)
  • [S0109 WEBC2](./malware and tools - techniques graphs/S0109-WEBC2.html)
  • [S0110 at](./malware and tools - techniques graphs/S0110-at.html)
  • [S0111 schtasks](./malware and tools - techniques graphs/S0111-schtasks.html)
  • [S0112 ROCKBOOT](./malware and tools - techniques graphs/S0112-ROCKBOOT.html)
  • [S0113 Prikormka](./malware and tools - techniques graphs/S0113-Prikormka.html)
  • [S0114 BOOTRASH](./malware and tools - techniques graphs/S0114-BOOTRASH.html)
  • [S0115 Crimson](./malware and tools - techniques graphs/S0115-Crimson.html)
  • [S0116 UACMe](./malware and tools - techniques graphs/S0116-UACMe.html)
  • [S0117 XTunnel](./malware and tools - techniques graphs/S0117-XTunnel.html)
  • [S0118 Nidiran](./malware and tools - techniques graphs/S0118-Nidiran.html)
  • [S0119 Cachedump](./malware and tools - techniques graphs/S0119-Cachedump.html)
  • [S0120 Fgdump](./malware and tools - techniques graphs/S0120-Fgdump.html)
  • [S0121 Lslsass](./malware and tools - techniques graphs/S0121-Lslsass.html)
  • [S0122 Pass-The-Hash Toolkit](./malware and tools - techniques graphs/S0122-Pass-The-Hash Toolkit.html)
  • [S0123 xCmd](./malware and tools - techniques graphs/S0123-xCmd.html)
  • [S0124 Pisloader](./malware and tools - techniques graphs/S0124-Pisloader.html)
  • [S0125 Remsec](./malware and tools - techniques graphs/S0125-Remsec.html)
  • [S0126 ComRAT](./malware and tools - techniques graphs/S0126-ComRAT.html)
  • [S0127 BBSRAT](./malware and tools - techniques graphs/S0127-BBSRAT.html)
  • [S0128 BADNEWS](./malware and tools - techniques graphs/S0128-BADNEWS.html)
  • [S0129 AutoIt backdoor](./malware and tools - techniques graphs/S0129-AutoIt backdoor.html)
  • [S0130 Unknown Logger](./malware and tools - techniques graphs/S0130-Unknown Logger.html)
  • [S0131 TINYTYPHON](./malware and tools - techniques graphs/S0131-TINYTYPHON.html)
  • [S0132 H1N1](./malware and tools - techniques graphs/S0132-H1N1.html)
  • [S0133 Miner-C](./malware and tools - techniques graphs/S0133-Miner-C.html)
  • [S0134 Downdelph](./malware and tools - techniques graphs/S0134-Downdelph.html)
  • [S0135 HIDEDRV](./malware and tools - techniques graphs/S0135-HIDEDRV.html)
  • [S0136 USBStealer](./malware and tools - techniques graphs/S0136-USBStealer.html)
  • [S0137 CORESHELL](./malware and tools - techniques graphs/S0137-CORESHELL.html)
  • [S0138 OLDBAIT](./malware and tools - techniques graphs/S0138-OLDBAIT.html)
  • [S0139 PowerDuke](./malware and tools - techniques graphs/S0139-PowerDuke.html)
  • [S0140 Shamoon](./malware and tools - techniques graphs/S0140-Shamoon.html)
  • [S0141 Winnti for Windows](./malware and tools - techniques graphs/S0141-Winnti for Windows.html)
  • [S0142 StreamEx](./malware and tools - techniques graphs/S0142-StreamEx.html)
  • [S0143 Flame](./malware and tools - techniques graphs/S0143-Flame.html)
  • [S0144 ChChes](./malware and tools - techniques graphs/S0144-ChChes.html)
  • [S0145 POWERSOURCE](./malware and tools - techniques graphs/S0145-POWERSOURCE.html)
  • [S0146 TEXTMATE](./malware and tools - techniques graphs/S0146-TEXTMATE.html)
  • [S0147 Pteranodon](./malware and tools - techniques graphs/S0147-Pteranodon.html)
  • [S0148 RTM](./malware and tools - techniques graphs/S0148-RTM.html)
  • [S0149 MoonWind](./malware and tools - techniques graphs/S0149-MoonWind.html)
  • [S0150 POSHSPY](./malware and tools - techniques graphs/S0150-POSHSPY.html)
  • [S0151 HALFBAKED](./malware and tools - techniques graphs/S0151-HALFBAKED.html)
  • [S0152 EvilGrab](./malware and tools - techniques graphs/S0152-EvilGrab.html)
  • [S0153 RedLeaves](./malware and tools - techniques graphs/S0153-RedLeaves.html)
  • [S0154 Cobalt Strike](./malware and tools - techniques graphs/S0154-Cobalt Strike.html)
  • [S0155 WINDSHIELD](./malware and tools - techniques graphs/S0155-WINDSHIELD.html)
  • [S0156 KOMPROGO](./malware and tools - techniques graphs/S0156-KOMPROGO.html)
  • [S0157 SOUNDBITE](./malware and tools - techniques graphs/S0157-SOUNDBITE.html)
  • [S0158 PHOREAL](./malware and tools - techniques graphs/S0158-PHOREAL.html)
  • [S0159 SNUGRIDE](./malware and tools - techniques graphs/S0159-SNUGRIDE.html)
  • [S0160 certutil](./malware and tools - techniques graphs/S0160-certutil.html)
  • [S0161 XAgentOSX](./malware and tools - techniques graphs/S0161-XAgentOSX.html)
  • [S0162 Komplex](./malware and tools - techniques graphs/S0162-Komplex.html)
  • [S0163 Janicab](./malware and tools - techniques graphs/S0163-Janicab.html)
  • [S0164 TDTESS](./malware and tools - techniques graphs/S0164-TDTESS.html)
  • [S0165 OSInfo](./malware and tools - techniques graphs/S0165-OSInfo.html)
  • [S0166 RemoteCMD](./malware and tools - techniques graphs/S0166-RemoteCMD.html)
  • [S0167 Matryoshka](./malware and tools - techniques graphs/S0167-Matryoshka.html)
  • [S0168 Gazer](./malware and tools - techniques graphs/S0168-Gazer.html)
  • [S0169 RawPOS](./malware and tools - techniques graphs/S0169-RawPOS.html)
  • [S0170 Helminth](./malware and tools - techniques graphs/S0170-Helminth.html)
  • [S0171 Felismus](./malware and tools - techniques graphs/S0171-Felismus.html)
  • [S0172 Reaver](./malware and tools - techniques graphs/S0172-Reaver.html)
  • [S0173 FLIPSIDE](./malware and tools - techniques graphs/S0173-FLIPSIDE.html)
  • [S0174 Responder](./malware and tools - techniques graphs/S0174-Responder.html)
  • [S0175 meek](./malware and tools - techniques graphs/S0175-meek.html)
  • [S0176 Wingbird](./malware and tools - techniques graphs/S0176-Wingbird.html)
  • [S0177 Power Loader](./malware and tools - techniques graphs/S0177-Power Loader.html)
  • [S0178 Truvasys](./malware and tools - techniques graphs/S0178-Truvasys.html)
  • [S0179 MimiPenguin](./malware and tools - techniques graphs/S0179-MimiPenguin.html)
  • [S0180 Volgmer](./malware and tools - techniques graphs/S0180-Volgmer.html)
  • [S0181 FALLCHILL](./malware and tools - techniques graphs/S0181-FALLCHILL.html)
  • [S0182 FinFisher](./malware and tools - techniques graphs/S0182-FinFisher.html)
  • [S0183 Tor](./malware and tools - techniques graphs/S0183-Tor.html)
  • [S0184 POWRUNER](./malware and tools - techniques graphs/S0184-POWRUNER.html)
  • [S0185 SEASHARPEE](./malware and tools - techniques graphs/S0185-SEASHARPEE.html)
  • [S0186 DownPaper](./malware and tools - techniques graphs/S0186-DownPaper.html)
  • [S0187 Daserf](./malware and tools - techniques graphs/S0187-Daserf.html)
  • [S0188 Starloader](./malware and tools - techniques graphs/S0188-Starloader.html)
  • [S0189 ISMInjector](./malware and tools - techniques graphs/S0189-ISMInjector.html)
  • [S0190 BITSAdmin](./malware and tools - techniques graphs/S0190-BITSAdmin.html)
  • [S0191 Winexe](./malware and tools - techniques graphs/S0191-Winexe.html)
  • [S0192 Pupy](./malware and tools - techniques graphs/S0192-Pupy.html)
  • [S0193 Forfiles](./malware and tools - techniques graphs/S0193-Forfiles.html)
  • [S0194 PowerSploit](./malware and tools - techniques graphs/S0194-PowerSploit.html)
  • [S0195 SDelete](./malware and tools - techniques graphs/S0195-SDelete.html)
  • [S0196 PUNCHBUGGY](./malware and tools - techniques graphs/S0196-PUNCHBUGGY.html)
  • [S0197 PUNCHTRACK](./malware and tools - techniques graphs/S0197-PUNCHTRACK.html)
  • [S0198 NETWIRE](./malware and tools - techniques graphs/S0198-NETWIRE.html)
  • [S0199 TURNEDUP](./malware and tools - techniques graphs/S0199-TURNEDUP.html)
  • [S0200 Dipsind](./malware and tools - techniques graphs/S0200-Dipsind.html)
  • [S0201 JPIN](./malware and tools - techniques graphs/S0201-JPIN.html)
  • [S0202 adbupd](./malware and tools - techniques graphs/S0202-adbupd.html)
  • [S0203 Hydraq](./malware and tools - techniques graphs/S0203-Hydraq.html)
  • [S0204 Briba](./malware and tools - techniques graphs/S0204-Briba.html)
  • [S0205 Naid](./malware and tools - techniques graphs/S0205-Naid.html)
  • [S0206 Wiarp](./malware and tools - techniques graphs/S0206-Wiarp.html)
  • [S0207 Vasport](./malware and tools - techniques graphs/S0207-Vasport.html)
  • [S0208 Pasam](./malware and tools - techniques graphs/S0208-Pasam.html)
  • [S0210 Nerex](./malware and tools - techniques graphs/S0210-Nerex.html)
  • [S0211 Linfo](./malware and tools - techniques graphs/S0211-Linfo.html)
  • [S0212 CORALDECK](./malware and tools - techniques graphs/S0212-CORALDECK.html)
  • [S0213 DOGCALL](./malware and tools - techniques graphs/S0213-DOGCALL.html)
  • [S0214 HAPPYWORK](./malware and tools - techniques graphs/S0214-HAPPYWORK.html)
  • [S0215 KARAE](./malware and tools - techniques graphs/S0215-KARAE.html)
  • [S0216 POORAIM](./malware and tools - techniques graphs/S0216-POORAIM.html)
  • [S0217 SHUTTERSPEED](./malware and tools - techniques graphs/S0217-SHUTTERSPEED.html)
  • [S0218 SLOWDRIFT](./malware and tools - techniques graphs/S0218-SLOWDRIFT.html)
  • [S0219 WINERACK](./malware and tools - techniques graphs/S0219-WINERACK.html)
  • [S0220 Chaos](./malware and tools - techniques graphs/S0220-Chaos.html)
  • [S0221 Umbreon](./malware and tools - techniques graphs/S0221-Umbreon.html)
  • [S0222 CCBkdr](./malware and tools - techniques graphs/S0222-CCBkdr.html)
  • [S0223 POWERSTATS](./malware and tools - techniques graphs/S0223-POWERSTATS.html)
  • [S0224 Havij](./malware and tools - techniques graphs/S0224-Havij.html)
  • [S0225 sqlmap](./malware and tools - techniques graphs/S0225-sqlmap.html)
  • [S0226 Smoke Loader](./malware and tools - techniques graphs/S0226-Smoke Loader.html)
  • [S0227 spwebmember](./malware and tools - techniques graphs/S0227-spwebmember.html)
  • [S0228 NanHaiShu](./malware and tools - techniques graphs/S0228-NanHaiShu.html)
  • [S0229 Orz](./malware and tools - techniques graphs/S0229-Orz.html)
  • [S0230 ZeroT](./malware and tools - techniques graphs/S0230-ZeroT.html)
  • [S0231 Invoke-PSImage](./malware and tools - techniques graphs/S0231-Invoke-PSImage.html)
  • [S0232 HOMEFRY](./malware and tools - techniques graphs/S0232-HOMEFRY.html)
  • [S0233 MURKYTOP](./malware and tools - techniques graphs/S0233-MURKYTOP.html)
  • [S0234 Bandook](./malware and tools - techniques graphs/S0234-Bandook.html)
  • [S0235 CrossRAT](./malware and tools - techniques graphs/S0235-CrossRAT.html)
  • [S0236 Kwampirs](./malware and tools - techniques graphs/S0236-Kwampirs.html)
  • [S0237 GravityRAT](./malware and tools - techniques graphs/S0237-GravityRAT.html)
  • [S0238 Proxysvc](./malware and tools - techniques graphs/S0238-Proxysvc.html)
  • [S0239 Bankshot](./malware and tools - techniques graphs/S0239-Bankshot.html)
  • [S0240 ROKRAT](./malware and tools - techniques graphs/S0240-ROKRAT.html)
  • [S0241 RATANKBA](./malware and tools - techniques graphs/S0241-RATANKBA.html)
  • [S0242 SynAck](./malware and tools - techniques graphs/S0242-SynAck.html)
  • [S0243 DealersChoice](./malware and tools - techniques graphs/S0243-DealersChoice.html)
  • [S0244 Comnie](./malware and tools - techniques graphs/S0244-Comnie.html)
  • [S0245 BADCALL](./malware and tools - techniques graphs/S0245-BADCALL.html)
  • [S0246 HARDRAIN](./malware and tools - techniques graphs/S0246-HARDRAIN.html)
  • [S0247 NavRAT](./malware and tools - techniques graphs/S0247-NavRAT.html)
  • [S0248 yty](./malware and tools - techniques graphs/S0248-yty.html)
  • [S0249 Gold Dragon](./malware and tools - techniques graphs/S0249-Gold Dragon.html)
  • [S0250 Koadic](./malware and tools - techniques graphs/S0250-Koadic.html)
  • [S0251 Zebrocy](./malware and tools - techniques graphs/S0251-Zebrocy.html)
  • [S0252 Brave Prince](./malware and tools - techniques graphs/S0252-Brave Prince.html)
  • [S0253 RunningRAT](./malware and tools - techniques graphs/S0253-RunningRAT.html)
  • [S0254 PLAINTEE](./malware and tools - techniques graphs/S0254-PLAINTEE.html)
  • [S0255 DDKONG](./malware and tools - techniques graphs/S0255-DDKONG.html)
  • [S0256 Mosquito](./malware and tools - techniques graphs/S0256-Mosquito.html)
  • [S0257 VERMIN](./malware and tools - techniques graphs/S0257-VERMIN.html)
  • [S0258 RGDoor](./malware and tools - techniques graphs/S0258-RGDoor.html)
  • [S0259 InnaputRAT](./malware and tools - techniques graphs/S0259-InnaputRAT.html)
  • [S0260 InvisiMole](./malware and tools - techniques graphs/S0260-InvisiMole.html)
  • [S0261 Catchamas](./malware and tools - techniques graphs/S0261-Catchamas.html)
  • [S0262 QuasarRAT](./malware and tools - techniques graphs/S0262-QuasarRAT.html)
  • [S0263 TYPEFRAME](./malware and tools - techniques graphs/S0263-TYPEFRAME.html)
  • [S0264 OopsIE](./malware and tools - techniques graphs/S0264-OopsIE.html)
  • [S0265 Kazuar](./malware and tools - techniques graphs/S0265-Kazuar.html)
  • [S0266 TrickBot](./malware and tools - techniques graphs/S0266-TrickBot.html)
  • [S0267 FELIXROOT](./malware and tools - techniques graphs/S0267-FELIXROOT.html)
  • [S0268 Bisonal](./malware and tools - techniques graphs/S0268-Bisonal.html)
  • [S0269 QUADAGENT](./malware and tools - techniques graphs/S0269-QUADAGENT.html)
  • [S0270 RogueRobin](./malware and tools - techniques graphs/S0270-RogueRobin.html)
  • [S0271 KEYMARBLE](./malware and tools - techniques graphs/S0271-KEYMARBLE.html)
  • [S0272 NDiskMonitor](./malware and tools - techniques graphs/S0272-NDiskMonitor.html)
  • [S0273 Socksbot](./malware and tools - techniques graphs/S0273-Socksbot.html)
  • [S0274 Calisto](./malware and tools - techniques graphs/S0274-Calisto.html)
  • [S0275 UPPERCUT](./malware and tools - techniques graphs/S0275-UPPERCUT.html)
  • [S0276 Keydnap](./malware and tools - techniques graphs/S0276-Keydnap.html)
  • [S0277 FruitFly](./malware and tools - techniques graphs/S0277-FruitFly.html)
  • [S0278 iKitten](./malware and tools - techniques graphs/S0278-iKitten.html)
  • [S0279 Proton](./malware and tools - techniques graphs/S0279-Proton.html)
  • [S0280 MirageFox](./malware and tools - techniques graphs/S0280-MirageFox.html)
  • [S0281 Dok](./malware and tools - techniques graphs/S0281-Dok.html)
  • [S0282 MacSpy](./malware and tools - techniques graphs/S0282-MacSpy.html)
  • [S0283 jRAT](./malware and tools - techniques graphs/S0283-jRAT.html)
  • [S0284 More_eggs](./malware and tools - techniques graphs/S0284-More_eggs.html)
  • [S0330 Zeus Panda](./malware and tools - techniques graphs/S0330-Zeus Panda.html)
  • [S0331 Agent Tesla](./malware and tools - techniques graphs/S0331-Agent Tesla.html)
  • [S0332 Remcos](./malware and tools - techniques graphs/S0332-Remcos.html)
  • [S0333 UBoatRAT](./malware and tools - techniques graphs/S0333-UBoatRAT.html)
  • [S0334 DarkComet](./malware and tools - techniques graphs/S0334-DarkComet.html)
  • [S0335 Carbon](./malware and tools - techniques graphs/S0335-Carbon.html)
  • [S0336 NanoCore](./malware and tools - techniques graphs/S0336-NanoCore.html)
  • [S0337 BadPatch](./malware and tools - techniques graphs/S0337-BadPatch.html)
  • [S0338 Cobian RAT](./malware and tools - techniques graphs/S0338-Cobian RAT.html)
  • [S0339 Micropsia](./malware and tools - techniques graphs/S0339-Micropsia.html)
  • [S0340 Octopus](./malware and tools - techniques graphs/S0340-Octopus.html)
  • [S0341 Xbash](./malware and tools - techniques graphs/S0341-Xbash.html)
  • [S0342 GreyEnergy](./malware and tools - techniques graphs/S0342-GreyEnergy.html)
  • [S0343 Exaramel for Windows](./malware and tools - techniques graphs/S0343-Exaramel for Windows.html)
  • [S0344 Azorult](./malware and tools - techniques graphs/S0344-Azorult.html)
  • [S0345 Seasalt](./malware and tools - techniques graphs/S0345-Seasalt.html)
  • [S0346 OceanSalt](./malware and tools - techniques graphs/S0346-OceanSalt.html)
  • [S0347 AuditCred](./malware and tools - techniques graphs/S0347-AuditCred.html)
  • [S0348 Cardinal RAT](./malware and tools - techniques graphs/S0348-Cardinal RAT.html)
  • [S0349 LaZagne](./malware and tools - techniques graphs/S0349-LaZagne.html)
  • [S0350 zwShell](./malware and tools - techniques graphs/S0350-zwShell.html)
  • [S0351 Cannon](./malware and tools - techniques graphs/S0351-Cannon.html)
  • [S0352 OSX_OCEANLOTUS.D](./malware and tools - techniques graphs/S0352-OSX_OCEANLOTUS.D.html)
  • [S0353 NOKKI](./malware and tools - techniques graphs/S0353-NOKKI.html)
  • [S0354 Denis](./malware and tools - techniques graphs/S0354-Denis.html)
  • [S0355 Final1stspy](./malware and tools - techniques graphs/S0355-Final1stspy.html)
  • [S0356 KONNI](./malware and tools - techniques graphs/S0356-KONNI.html)
  • [S0357 Impacket](./malware and tools - techniques graphs/S0357-Impacket.html)
  • [S0358 Ruler](./malware and tools - techniques graphs/S0358-Ruler.html)
  • [S0359 Nltest](./malware and tools - techniques graphs/S0359-Nltest.html)
  • [S0360 BONDUPDATER](./malware and tools - techniques graphs/S0360-BONDUPDATER.html)
  • [S0361 Expand](./malware and tools - techniques graphs/S0361-Expand.html)
  • [S0362 Linux Rabbit](./malware and tools - techniques graphs/S0362-Linux Rabbit.html)
  • [S0363 Empire](./malware and tools - techniques graphs/S0363-Empire.html)
  • [S0364 RawDisk](./malware and tools - techniques graphs/S0364-RawDisk.html)
  • [S0365 Olympic Destroyer](./malware and tools - techniques graphs/S0365-Olympic Destroyer.html)
  • [S0366 WannaCry](./malware and tools - techniques graphs/S0366-WannaCry.html)
  • [S0367 Emotet](./malware and tools - techniques graphs/S0367-Emotet.html)
  • [S0368 NotPetya](./malware and tools - techniques graphs/S0368-NotPetya.html)
  • [S0369 CoinTicker](./malware and tools - techniques graphs/S0369-CoinTicker.html)
  • [S0370 SamSam](./malware and tools - techniques graphs/S0370-SamSam.html)
  • [S0371 POWERTON](./malware and tools - techniques graphs/S0371-POWERTON.html)
  • [S0372 LockerGoga](./malware and tools - techniques graphs/S0372-LockerGoga.html)
  • [S0373 Astaroth](./malware and tools - techniques graphs/S0373-Astaroth.html)
  • [S0374 SpeakUp](./malware and tools - techniques graphs/S0374-SpeakUp.html)
  • [S0375 Remexi](./malware and tools - techniques graphs/S0375-Remexi.html)
  • [S0376 HOPLIGHT](./malware and tools - techniques graphs/S0376-HOPLIGHT.html)
  • [S0377 Ebury](./malware and tools - techniques graphs/S0377-Ebury.html)
  • [S0378 PoshC2](./malware and tools - techniques graphs/S0378-PoshC2.html)
  • [S0379 Revenge RAT](./malware and tools - techniques graphs/S0379-Revenge RAT.html)
  • [S0380 StoneDrill](./malware and tools - techniques graphs/S0380-StoneDrill.html)
  • [S0381 FlawedAmmyy](./malware and tools - techniques graphs/S0381-FlawedAmmyy.html)
  • [S0382 ServHelper](./malware and tools - techniques graphs/S0382-ServHelper.html)
  • [S0383 FlawedGrace](./malware and tools - techniques graphs/S0383-FlawedGrace.html)
  • [S0384 Dridex](./malware and tools - techniques graphs/S0384-Dridex.html)
  • [S0385 njRAT](./malware and tools - techniques graphs/S0385-njRAT.html)
  • [S0386 Ursnif](./malware and tools - techniques graphs/S0386-Ursnif.html)
  • [S0387 KeyBoy](./malware and tools - techniques graphs/S0387-KeyBoy.html)
  • [S0388 YAHOYAH](./malware and tools - techniques graphs/S0388-YAHOYAH.html)
  • [S0389 JCry](./malware and tools - techniques graphs/S0389-JCry.html)
  • [S0390 SQLRat](./malware and tools - techniques graphs/S0390-SQLRat.html)
  • [S0391 HAWKBALL](./malware and tools - techniques graphs/S0391-HAWKBALL.html)
  • [S0393 PowerStallion](./malware and tools - techniques graphs/S0393-PowerStallion.html)
  • [S0394 HiddenWasp](./malware and tools - techniques graphs/S0394-HiddenWasp.html)
  • [S0395 LightNeuron](./malware and tools - techniques graphs/S0395-LightNeuron.html)
  • [S0396 EvilBunny](./malware and tools - techniques graphs/S0396-EvilBunny.html)
  • [S0397 LoJax](./malware and tools - techniques graphs/S0397-LoJax.html)
  • [S0398 HyperBro](./malware and tools - techniques graphs/S0398-HyperBro.html)
  • [S0400 RobbinHood](./malware and tools - techniques graphs/S0400-RobbinHood.html)
  • [S0401 Exaramel for Linux](./malware and tools - techniques graphs/S0401-Exaramel for Linux.html)
  • [S0402 OSX-Shlayer](./malware and tools - techniques graphs/S0402-OSX-Shlayer.html)
  • [S0404 esentutl](./malware and tools - techniques graphs/S0404-esentutl.html)
  • [S0409 Machete](./malware and tools - techniques graphs/S0409-Machete.html)
  • [S0410 Fysbis](./malware and tools - techniques graphs/S0410-Fysbis.html)
  • [S0412 ZxShell](./malware and tools - techniques graphs/S0412-ZxShell.html)
  • [S0413 MailSniper](./malware and tools - techniques graphs/S0413-MailSniper.html)
  • [S0414 BabyShark](./malware and tools - techniques graphs/S0414-BabyShark.html)
  • [S0415 BOOSTWRITE](./malware and tools - techniques graphs/S0415-BOOSTWRITE.html)
  • [S0416 RDFSNIFFER](./malware and tools - techniques graphs/S0416-RDFSNIFFER.html)
  • [S0417 GRIFFON](./malware and tools - techniques graphs/S0417-GRIFFON.html)
  • [S0428 PoetRAT](./malware and tools - techniques graphs/S0428-PoetRAT.html)
  • [S0430 Winnti for Linux](./malware and tools - techniques graphs/S0430-Winnti for Linux.html)
  • [S0431 HotCroissant](./malware and tools - techniques graphs/S0431-HotCroissant.html)
  • [S0433 Rifdoor](./malware and tools - techniques graphs/S0433-Rifdoor.html)
  • [S0434 Imminent Monitor](./malware and tools - techniques graphs/S0434-Imminent Monitor.html)
  • [S0435 PLEAD](./malware and tools - techniques graphs/S0435-PLEAD.html)
  • [S0436 TSCookie](./malware and tools - techniques graphs/S0436-TSCookie.html)
  • [S0437 Kivars](./malware and tools - techniques graphs/S0437-Kivars.html)
  • [S0438 Attor](./malware and tools - techniques graphs/S0438-Attor.html)
  • [S0439 Okrum](./malware and tools - techniques graphs/S0439-Okrum.html)
  • [S0441 PowerShower](./malware and tools - techniques graphs/S0441-PowerShower.html)
  • [S0442 VBShower](./malware and tools - techniques graphs/S0442-VBShower.html)
  • [S0443 MESSAGETAP](./malware and tools - techniques graphs/S0443-MESSAGETAP.html)
  • [S0444 ShimRat](./malware and tools - techniques graphs/S0444-ShimRat.html)
  • [S0445 ShimRatReporter](./malware and tools - techniques graphs/S0445-ShimRatReporter.html)
  • [S0446 Ryuk](./malware and tools - techniques graphs/S0446-Ryuk.html)
  • [S0447 Lokibot](./malware and tools - techniques graphs/S0447-Lokibot.html)
  • [S0448 Rising Sun](./malware and tools - techniques graphs/S0448-Rising Sun.html)
  • [S0449 Maze](./malware and tools - techniques graphs/S0449-Maze.html)
  • [S0450 SHARPSTATS](./malware and tools - techniques graphs/S0450-SHARPSTATS.html)
  • [S0451 LoudMiner](./malware and tools - techniques graphs/S0451-LoudMiner.html)
  • [S0452 USBferry](./malware and tools - techniques graphs/S0452-USBferry.html)
  • [S0453 Pony](./malware and tools - techniques graphs/S0453-Pony.html)
  • [S0454 Cadelspy](./malware and tools - techniques graphs/S0454-Cadelspy.html)
  • [S0455 Metamorfo](./malware and tools - techniques graphs/S0455-Metamorfo.html)
  • [S0456 Aria-body](./malware and tools - techniques graphs/S0456-Aria-body.html)
  • [S0457 Netwalker](./malware and tools - techniques graphs/S0457-Netwalker.html)
  • [S0458 Ramsay](./malware and tools - techniques graphs/S0458-Ramsay.html)
  • [S0459 MechaFlounder](./malware and tools - techniques graphs/S0459-MechaFlounder.html)
  • [S0460 Get2](./malware and tools - techniques graphs/S0460-Get2.html)
  • [S0461 SDBbot](./malware and tools - techniques graphs/S0461-SDBbot.html)
  • [S0462 CARROTBAT](./malware and tools - techniques graphs/S0462-CARROTBAT.html)
  • [S0464 SYSCON](./malware and tools - techniques graphs/S0464-SYSCON.html)
  • [S0465 CARROTBALL](./malware and tools - techniques graphs/S0465-CARROTBALL.html)
  • [S0466 WindTail](./malware and tools - techniques graphs/S0466-WindTail.html)
  • [S0467 TajMahal](./malware and tools - techniques graphs/S0467-TajMahal.html)
  • [S0468 Skidmap](./malware and tools - techniques graphs/S0468-Skidmap.html)
  • [S0469 ABK](./malware and tools - techniques graphs/S0469-ABK.html)
  • [S0470 BBK](./malware and tools - techniques graphs/S0470-BBK.html)
  • [S0471 build_downer](./malware and tools - techniques graphs/S0471-build_downer.html)
  • [S0472 down_new](./malware and tools - techniques graphs/S0472-down_new.html)
  • [S0473 Avenger](./malware and tools - techniques graphs/S0473-Avenger.html)
  • [S0475 BackConfig](./malware and tools - techniques graphs/S0475-BackConfig.html)
  • [S0476 Valak](./malware and tools - techniques graphs/S0476-Valak.html)
  • [S0477 Goopy](./malware and tools - techniques graphs/S0477-Goopy.html)
  • [S0481 Ragnar Locker](./malware and tools - techniques graphs/S0481-Ragnar Locker.html)
  • [S0482 Bundlore](./malware and tools - techniques graphs/S0482-Bundlore.html)
  • [S0483 IcedID](./malware and tools - techniques graphs/S0483-IcedID.html)
  • [S0484 Carberp](./malware and tools - techniques graphs/S0484-Carberp.html)
  • [S0486 Bonadan](./malware and tools - techniques graphs/S0486-Bonadan.html)
  • [S0487 Kessel](./malware and tools - techniques graphs/S0487-Kessel.html)
  • [S0488 CrackMapExec](./malware and tools - techniques graphs/S0488-CrackMapExec.html)
  • [S0491 StrongPity](./malware and tools - techniques graphs/S0491-StrongPity.html)
  • [S0492 CookieMiner](./malware and tools - techniques graphs/S0492-CookieMiner.html)
  • [S0493 GoldenSpy](./malware and tools - techniques graphs/S0493-GoldenSpy.html)
  • [S0495 RDAT](./malware and tools - techniques graphs/S0495-RDAT.html)
  • [S0496 REvil](./malware and tools - techniques graphs/S0496-REvil.html)
  • [S0497 Dacls](./malware and tools - techniques graphs/S0497-Dacls.html)
  • [S0498 Cryptoistic](./malware and tools - techniques graphs/S0498-Cryptoistic.html)
  • [S0499 Hancitor](./malware and tools - techniques graphs/S0499-Hancitor.html)
  • [S0500 MCMD](./malware and tools - techniques graphs/S0500-MCMD.html)
  • [S0501 PipeMon](./malware and tools - techniques graphs/S0501-PipeMon.html)
  • [S0502 Drovorub](./malware and tools - techniques graphs/S0502-Drovorub.html)
  • [S0503 FrameworkPOS](./malware and tools - techniques graphs/S0503-FrameworkPOS.html)
  • [S0504 Anchor](./malware and tools - techniques graphs/S0504-Anchor.html)
  • [S0508 Ngrok](./malware and tools - techniques graphs/S0508-Ngrok.html)
  • [S0511 RegDuke](./malware and tools - techniques graphs/S0511-RegDuke.html)
  • [S0512 FatDuke](./malware and tools - techniques graphs/S0512-FatDuke.html)
  • [S0513 LiteDuke](./malware and tools - techniques graphs/S0513-LiteDuke.html)
  • [S0514 WellMess](./malware and tools - techniques graphs/S0514-WellMess.html)
  • [S0515 WellMail](./malware and tools - techniques graphs/S0515-WellMail.html)
  • [S0516 SoreFang](./malware and tools - techniques graphs/S0516-SoreFang.html)
  • [S0517 Pillowmint](./malware and tools - techniques graphs/S0517-Pillowmint.html)
  • [S0518 PolyglotDuke](./malware and tools - techniques graphs/S0518-PolyglotDuke.html)
  • [S0519 SYNful Knock](./malware and tools - techniques graphs/S0519-SYNful Knock.html)
  • [S0520 BLINDINGCAN](./malware and tools - techniques graphs/S0520-BLINDINGCAN.html)
  • [S0521 BloodHound](./malware and tools - techniques graphs/S0521-BloodHound.html)
  • [S0526 KGH_SPY](./malware and tools - techniques graphs/S0526-KGH_SPY.html)
  • [S0527 CSPY Downloader](./malware and tools - techniques graphs/S0527-CSPY Downloader.html)
  • [S0528 Javali](./malware and tools - techniques graphs/S0528-Javali.html)
  • [S0530 Melcoz](./malware and tools - techniques graphs/S0530-Melcoz.html)
  • [S0531 Grandoreiro](./malware and tools - techniques graphs/S0531-Grandoreiro.html)
  • [S0532 Lucifer](./malware and tools - techniques graphs/S0532-Lucifer.html)
  • [S0533 SLOTHFULMEDIA](./malware and tools - techniques graphs/S0533-SLOTHFULMEDIA.html)
  • [S0534 Bazar](./malware and tools - techniques graphs/S0534-Bazar.html)
  • [S0537 HyperStack](./malware and tools - techniques graphs/S0537-HyperStack.html)
  • [S0538 Crutch](./malware and tools - techniques graphs/S0538-Crutch.html)
  • [S0543 Spark](./malware and tools - techniques graphs/S0543-Spark.html)
  • [S0546 SharpStage](./malware and tools - techniques graphs/S0546-SharpStage.html)
  • [S0547 DropBook](./malware and tools - techniques graphs/S0547-DropBook.html)
  • [S0552 AdFind](./malware and tools - techniques graphs/S0552-AdFind.html)
  • [S0553 MoleNet](./malware and tools - techniques graphs/S0553-MoleNet.html)
  • [S0554 Egregor](./malware and tools - techniques graphs/S0554-Egregor.html)
  • [S0556 Pay2Key](./malware and tools - techniques graphs/S0556-Pay2Key.html)
  • [S0559 SUNBURST](./malware and tools - techniques graphs/S0559-SUNBURST.html)
  • [S0560 TEARDROP](./malware and tools - techniques graphs/S0560-TEARDROP.html)
  • [S0561 GuLoader](./malware and tools - techniques graphs/S0561-GuLoader.html)
  • [S0562 SUNSPOT](./malware and tools - techniques graphs/S0562-SUNSPOT.html)
  • [S0564 BlackMould](./malware and tools - techniques graphs/S0564-BlackMould.html)
  • [S0565 Raindrop](./malware and tools - techniques graphs/S0565-Raindrop.html)
  • [S0567 Dtrack](./malware and tools - techniques graphs/S0567-Dtrack.html)
  • [S0568 EVILNUM](./malware and tools - techniques graphs/S0568-EVILNUM.html)
  • [S0569 Explosive](./malware and tools - techniques graphs/S0569-Explosive.html)
  • [S0570 BitPaymer](./malware and tools - techniques graphs/S0570-BitPaymer.html)
  • [S0572 Caterpillar WebShell](./malware and tools - techniques graphs/S0572-Caterpillar WebShell.html)
  • [S0574 BendyBear](./malware and tools - techniques graphs/S0574-BendyBear.html)
  • [S0575 Conti](./malware and tools - techniques graphs/S0575-Conti.html)
  • [S0576 MegaCortex](./malware and tools - techniques graphs/S0576-MegaCortex.html)
  • [S0578 SUPERNOVA](./malware and tools - techniques graphs/S0578-SUPERNOVA.html)
  • [S0579 Waterbear](./malware and tools - techniques graphs/S0579-Waterbear.html)
  • [S0581 IronNetInjector](./malware and tools - techniques graphs/S0581-IronNetInjector.html)
  • [S0582 LookBack](./malware and tools - techniques graphs/S0582-LookBack.html)
  • [S0583 Pysa](./malware and tools - techniques graphs/S0583-Pysa.html)
  • [S0584 AppleJeus](./malware and tools - techniques graphs/S0584-AppleJeus.html)
  • [S0585 Kerrdown](./malware and tools - techniques graphs/S0585-Kerrdown.html)
  • [S0586 TAINTEDSCRIBE](./malware and tools - techniques graphs/S0586-TAINTEDSCRIBE.html)
  • [S0587 Penquin](./malware and tools - techniques graphs/S0587-Penquin.html)
  • [S0588 GoldMax](./malware and tools - techniques graphs/S0588-GoldMax.html)
  • [S0589 Sibot](./malware and tools - techniques graphs/S0589-Sibot.html)
  • [S0590 NBTscan](./malware and tools - techniques graphs/S0590-NBTscan.html)
  • [S0591 ConnectWise](./malware and tools - techniques graphs/S0591-ConnectWise.html)
  • [S0592 RemoteUtilities](./malware and tools - techniques graphs/S0592-RemoteUtilities.html)
  • [S0593 ECCENTRICBANDWAGON](./malware and tools - techniques graphs/S0593-ECCENTRICBANDWAGON.html)
  • [S0594 Out1](./malware and tools - techniques graphs/S0594-Out1.html)
  • [S0595 ThiefQuest](./malware and tools - techniques graphs/S0595-ThiefQuest.html)
  • [S0596 ShadowPad](./malware and tools - techniques graphs/S0596-ShadowPad.html)
  • [S0597 GoldFinder](./malware and tools - techniques graphs/S0597-GoldFinder.html)
  • [S0598 P.A.S. Webshell](./malware and tools - techniques graphs/S0598-P.A.S. Webshell.html)
  • [S0599 Kinsing](./malware and tools - techniques graphs/S0599-Kinsing.html)
  • [S0600 Doki](./malware and tools - techniques graphs/S0600-Doki.html)
  • [S0601 Hildegard](./malware and tools - techniques graphs/S0601-Hildegard.html)
  • [S0603 Stuxnet](./malware and tools - techniques graphs/S0603-Stuxnet.html)
  • [S0604 Industroyer](./malware and tools - techniques graphs/S0604-Industroyer.html)
  • [S0605 EKANS](./malware and tools - techniques graphs/S0605-EKANS.html)
  • [S0606 Bad Rabbit](./malware and tools - techniques graphs/S0606-Bad Rabbit.html)
  • [S0607 KillDisk](./malware and tools - techniques graphs/S0607-KillDisk.html)
  • [S0608 Conficker](./malware and tools - techniques graphs/S0608-Conficker.html)
  • [S0609 TRITON](./malware and tools - techniques graphs/S0609-TRITON.html)
  • [S0610 SideTwist](./malware and tools - techniques graphs/S0610-SideTwist.html)
  • [S0611 Clop](./malware and tools - techniques graphs/S0611-Clop.html)
  • [S0612 WastedLocker](./malware and tools - techniques graphs/S0612-WastedLocker.html)
  • [S0613 PS1](./malware and tools - techniques graphs/S0613-PS1.html)
  • [S0614 CostaBricks](./malware and tools - techniques graphs/S0614-CostaBricks.html)
  • [S0615 SombRAT](./malware and tools - techniques graphs/S0615-SombRAT.html)
  • [S0616 DEATHRANSOM](./malware and tools - techniques graphs/S0616-DEATHRANSOM.html)
  • [S0617 HELLOKITTY](./malware and tools - techniques graphs/S0617-HELLOKITTY.html)
  • [S0618 FIVEHANDS](./malware and tools - techniques graphs/S0618-FIVEHANDS.html)
  • [S0622 AppleSeed](./malware and tools - techniques graphs/S0622-AppleSeed.html)
  • [S0623 Siloscape](./malware and tools - techniques graphs/S0623-Siloscape.html)
  • [S0624 Ecipekac](./malware and tools - techniques graphs/S0624-Ecipekac.html)
  • [S0625 Cuba](./malware and tools - techniques graphs/S0625-Cuba.html)
  • [S0626 P8RAT](./malware and tools - techniques graphs/S0626-P8RAT.html)
  • [S0627 SodaMaster](./malware and tools - techniques graphs/S0627-SodaMaster.html)
  • [S0628 FYAnti](./malware and tools - techniques graphs/S0628-FYAnti.html)
  • [S0629 RainyDay](./malware and tools - techniques graphs/S0629-RainyDay.html)
  • [S0630 Nebulae](./malware and tools - techniques graphs/S0630-Nebulae.html)
  • [S0631 Chaes](./malware and tools - techniques graphs/S0631-Chaes.html)
  • [S0632 GrimAgent](./malware and tools - techniques graphs/S0632-GrimAgent.html)
  • [S0633 Sliver](./malware and tools - techniques graphs/S0633-Sliver.html)
  • [S0634 EnvyScout](./malware and tools - techniques graphs/S0634-EnvyScout.html)
  • [S0635 BoomBox](./malware and tools - techniques graphs/S0635-BoomBox.html)
  • [S0636 VaporRage](./malware and tools - techniques graphs/S0636-VaporRage.html)
  • [S0637 NativeZone](./malware and tools - techniques graphs/S0637-NativeZone.html)
  • [S0638 Babuk](./malware and tools - techniques graphs/S0638-Babuk.html)
  • [S0639 Seth-Locker](./malware and tools - techniques graphs/S0639-Seth-Locker.html)
  • [S0640 Avaddon](./malware and tools - techniques graphs/S0640-Avaddon.html)
  • [S0641 Kobalos](./malware and tools - techniques graphs/S0641-Kobalos.html)
  • [S0642 BADFLICK](./malware and tools - techniques graphs/S0642-BADFLICK.html)
  • [S0643 Peppy](./malware and tools - techniques graphs/S0643-Peppy.html)
  • [S0644 ObliqueRAT](./malware and tools - techniques graphs/S0644-ObliqueRAT.html)
  • [S0645 Wevtutil](./malware and tools - techniques graphs/S0645-Wevtutil.html)
  • [S0646 SpicyOmelette](./malware and tools - techniques graphs/S0646-SpicyOmelette.html)
  • [S0647 Turian](./malware and tools - techniques graphs/S0647-Turian.html)
  • [S0648 JSS Loader](./malware and tools - techniques graphs/S0648-JSS Loader.html)
  • [S0649 SMOKEDHAM](./malware and tools - techniques graphs/S0649-SMOKEDHAM.html)
  • [S0650 QakBot](./malware and tools - techniques graphs/S0650-QakBot.html)
  • [S0651 BoxCaon](./malware and tools - techniques graphs/S0651-BoxCaon.html)
  • [S0652 MarkiRAT](./malware and tools - techniques graphs/S0652-MarkiRAT.html)
  • [S0653 xCaon](./malware and tools - techniques graphs/S0653-xCaon.html)
  • [S0654 ProLock](./malware and tools - techniques graphs/S0654-ProLock.html)
  • [S0657 BLUELIGHT](./malware and tools - techniques graphs/S0657-BLUELIGHT.html)
  • [S0658 XCSSET](./malware and tools - techniques graphs/S0658-XCSSET.html)

Threat Actors - techniques

  • [G0001 Axiom](./threat actors - techniques graphs/G0001-Axiom.html)
  • [G0002 Moafee](./threat actors - techniques graphs/G0002-Moafee.html)
  • [G0003 Cleaver](./threat actors - techniques graphs/G0003-Cleaver.html)
  • [G0004 Ke3chang](./threat actors - techniques graphs/G0004-Ke3chang.html)
  • [G0005 APT12](./threat actors - techniques graphs/G0005-APT12.html)
  • [G0006 APT1](./threat actors - techniques graphs/G0006-APT1.html)
  • [G0007 APT28](./threat actors - techniques graphs/G0007-APT28.html)
  • [G0008 Carbanak](./threat actors - techniques graphs/G0008-Carbanak.html)
  • [G0009 Deep Panda](./threat actors - techniques graphs/G0009-Deep Panda.html)
  • [G0010 Turla](./threat actors - techniques graphs/G0010-Turla.html)
  • [G0011 PittyTiger](./threat actors - techniques graphs/G0011-PittyTiger.html)
  • [G0012 Darkhotel](./threat actors - techniques graphs/G0012-Darkhotel.html)
  • [G0013 APT30](./threat actors - techniques graphs/G0013-APT30.html)
  • [G0014 Night Dragon](./threat actors - techniques graphs/G0014-Night Dragon.html)
  • [G0015 Taidoor](./threat actors - techniques graphs/G0015-Taidoor.html)
  • [G0016 APT29](./threat actors - techniques graphs/G0016-APT29.html)
  • [G0017 DragonOK](./threat actors - techniques graphs/G0017-DragonOK.html)
  • [G0018 admin@338](./threat actors - techniques graphs/G0018-admin@338.html)
  • [G0019 Naikon](./threat actors - techniques graphs/G0019-Naikon.html)
  • [G0020 Equation](./threat actors - techniques graphs/G0020-Equation.html)
  • [G0021 Molerats](./threat actors - techniques graphs/G0021-Molerats.html)
  • [G0022 APT3](./threat actors - techniques graphs/G0022-APT3.html)
  • [G0023 APT16](./threat actors - techniques graphs/G0023-APT16.html)
  • [G0024 Putter Panda](./threat actors - techniques graphs/G0024-Putter Panda.html)
  • [G0025 APT17](./threat actors - techniques graphs/G0025-APT17.html)
  • [G0026 APT18](./threat actors - techniques graphs/G0026-APT18.html)
  • [G0027 Threat Group-3390](./threat actors - techniques graphs/G0027-Threat Group-3390.html)
  • [G0028 Threat Group-1314](./threat actors - techniques graphs/G0028-Threat Group-1314.html)
  • [G0029 Scarlet Mimic](./threat actors - techniques graphs/G0029-Scarlet Mimic.html)
  • [G0030 Lotus Blossom](./threat actors - techniques graphs/G0030-Lotus Blossom.html)
  • [G0031 Dust Storm](./threat actors - techniques graphs/G0031-Dust Storm.html)
  • [G0032 Lazarus Group](./threat actors - techniques graphs/G0032-Lazarus Group.html)
  • [G0033 Poseidon Group](./threat actors - techniques graphs/G0033-Poseidon Group.html)
  • [G0034 Sandworm Team](./threat actors - techniques graphs/G0034-Sandworm Team.html)
  • [G0035 Dragonfly](./threat actors - techniques graphs/G0035-Dragonfly.html)
  • [G0036 GCMAN](./threat actors - techniques graphs/G0036-GCMAN.html)
  • [G0037 FIN6](./threat actors - techniques graphs/G0037-FIN6.html)
  • [G0038 Stealth Falcon](./threat actors - techniques graphs/G0038-Stealth Falcon.html)
  • [G0039 Suckfly](./threat actors - techniques graphs/G0039-Suckfly.html)
  • [G0040 Patchwork](./threat actors - techniques graphs/G0040-Patchwork.html)
  • [G0041 Strider](./threat actors - techniques graphs/G0041-Strider.html)
  • [G0043 Group5](./threat actors - techniques graphs/G0043-Group5.html)
  • [G0044 Winnti Group](./threat actors - techniques graphs/G0044-Winnti Group.html)
  • [G0045 menuPass](./threat actors - techniques graphs/G0045-menuPass.html)
  • [G0046 FIN7](./threat actors - techniques graphs/G0046-FIN7.html)
  • [G0047 Gamaredon Group](./threat actors - techniques graphs/G0047-Gamaredon Group.html)
  • [G0048 RTM](./threat actors - techniques graphs/G0048-RTM.html)
  • [G0049 OilRig](./threat actors - techniques graphs/G0049-OilRig.html)
  • [G0050 APT32](./threat actors - techniques graphs/G0050-APT32.html)
  • [G0051 FIN10](./threat actors - techniques graphs/G0051-FIN10.html)
  • [G0052 CopyKittens](./threat actors - techniques graphs/G0052-CopyKittens.html)
  • [G0053 FIN5](./threat actors - techniques graphs/G0053-FIN5.html)
  • [G0054 Sowbug](./threat actors - techniques graphs/G0054-Sowbug.html)
  • [G0055 NEODYMIUM](./threat actors - techniques graphs/G0055-NEODYMIUM.html)
  • [G0056 PROMETHIUM](./threat actors - techniques graphs/G0056-PROMETHIUM.html)
  • [G0058 Charming Kitten](./threat actors - techniques graphs/G0058-Charming Kitten.html)
  • [G0059 Magic Hound](./threat actors - techniques graphs/G0059-Magic Hound.html)
  • [G0060 BRONZE BUTLER](./threat actors - techniques graphs/G0060-BRONZE BUTLER.html)
  • [G0061 FIN8](./threat actors - techniques graphs/G0061-FIN8.html)
  • [G0062 TA459](./threat actors - techniques graphs/G0062-TA459.html)
  • [G0063 BlackOasis](./threat actors - techniques graphs/G0063-BlackOasis.html)
  • [G0064 APT33](./threat actors - techniques graphs/G0064-APT33.html)
  • [G0065 Leviathan](./threat actors - techniques graphs/G0065-Leviathan.html)
  • [G0066 Elderwood](./threat actors - techniques graphs/G0066-Elderwood.html)
  • [G0067 APT37](./threat actors - techniques graphs/G0067-APT37.html)
  • [G0068 PLATINUM](./threat actors - techniques graphs/G0068-PLATINUM.html)
  • [G0069 MuddyWater](./threat actors - techniques graphs/G0069-MuddyWater.html)
  • [G0070 Dark Caracal](./threat actors - techniques graphs/G0070-Dark Caracal.html)
  • [G0071 Orangeworm](./threat actors - techniques graphs/G0071-Orangeworm.html)
  • [G0072 Honeybee](./threat actors - techniques graphs/G0072-Honeybee.html)
  • [G0073 APT19](./threat actors - techniques graphs/G0073-APT19.html)
  • [G0074 Dragonfly 2.0](./threat actors - techniques graphs/G0074-Dragonfly 2.0.html)
  • [G0075 Rancor](./threat actors - techniques graphs/G0075-Rancor.html)
  • [G0076 Thrip](./threat actors - techniques graphs/G0076-Thrip.html)
  • [G0077 Leafminer](./threat actors - techniques graphs/G0077-Leafminer.html)
  • [G0078 Gorgon Group](./threat actors - techniques graphs/G0078-Gorgon Group.html)
  • [G0079 DarkHydrus](./threat actors - techniques graphs/G0079-DarkHydrus.html)
  • [G0080 Cobalt Group](./threat actors - techniques graphs/G0080-Cobalt Group.html)
  • [G0081 Tropic Trooper](./threat actors - techniques graphs/G0081-Tropic Trooper.html)
  • [G0082 APT38](./threat actors - techniques graphs/G0082-APT38.html)
  • [G0083 SilverTerrier](./threat actors - techniques graphs/G0083-SilverTerrier.html)
  • [G0084 Gallmaker](./threat actors - techniques graphs/G0084-Gallmaker.html)
  • [G0085 FIN4](./threat actors - techniques graphs/G0085-FIN4.html)
  • [G0087 APT39](./threat actors - techniques graphs/G0087-APT39.html)
  • [G0088 TEMP.Veles](./threat actors - techniques graphs/G0088-TEMP.Veles.html)
  • [G0089 The White Company](./threat actors - techniques graphs/G0089-The White Company.html)
  • [G0090 WIRTE](./threat actors - techniques graphs/G0090-WIRTE.html)
  • [G0091 Silence](./threat actors - techniques graphs/G0091-Silence.html)
  • [G0092 TA505](./threat actors - techniques graphs/G0092-TA505.html)
  • [G0093 GALLIUM](./threat actors - techniques graphs/G0093-GALLIUM.html)
  • [G0094 Kimsuky](./threat actors - techniques graphs/G0094-Kimsuky.html)
  • [G0095 Machete](./threat actors - techniques graphs/G0095-Machete.html)
  • [G0096 APT41](./threat actors - techniques graphs/G0096-APT41.html)
  • [G0097 Bouncing Golf](./threat actors - techniques graphs/G0097-Bouncing Golf.html)
  • [G0098 BlackTech](./threat actors - techniques graphs/G0098-BlackTech.html)
  • [G0099 APT-C-36](./threat actors - techniques graphs/G0099-APT-C-36.html)
  • [G0100 Inception](./threat actors - techniques graphs/G0100-Inception.html)
  • [G0101 Frankenstein](./threat actors - techniques graphs/G0101-Frankenstein.html)
  • [G0102 Wizard Spider](./threat actors - techniques graphs/G0102-Wizard Spider.html)
  • [G0103 Mofang](./threat actors - techniques graphs/G0103-Mofang.html)
  • [G0104 Sharpshooter](./threat actors - techniques graphs/G0104-Sharpshooter.html)
  • [G0105 DarkVishnya](./threat actors - techniques graphs/G0105-DarkVishnya.html)
  • [G0106 Rocke](./threat actors - techniques graphs/G0106-Rocke.html)
  • [G0107 Whitefly](./threat actors - techniques graphs/G0107-Whitefly.html)
  • [G0108 Blue Mockingbird](./threat actors - techniques graphs/G0108-Blue Mockingbird.html)
  • [G0112 Windshift](./threat actors - techniques graphs/G0112-Windshift.html)
  • [G0114 Chimera](./threat actors - techniques graphs/G0114-Chimera.html)
  • [G0115 GOLD SOUTHFIELD](./threat actors - techniques graphs/G0115-GOLD SOUTHFIELD.html)
  • [G0116 Operation Wocao](./threat actors - techniques graphs/G0116-Operation Wocao.html)
  • [G0117 Fox Kitten](./threat actors - techniques graphs/G0117-Fox Kitten.html)
  • [G0119 Indrik Spider](./threat actors - techniques graphs/G0119-Indrik Spider.html)
  • [G0120 Evilnum](./threat actors - techniques graphs/G0120-Evilnum.html)
  • [G0121 Sidewinder](./threat actors - techniques graphs/G0121-Sidewinder.html)
  • [G0122 Silent Librarian](./threat actors - techniques graphs/G0122-Silent Librarian.html)
  • [G0123 Volatile Cedar](./threat actors - techniques graphs/G0123-Volatile Cedar.html)
  • [G0124 Windigo](./threat actors - techniques graphs/G0124-Windigo.html)
  • [G0125 HAFNIUM](./threat actors - techniques graphs/G0125-HAFNIUM.html)
  • [G0126 Higaisa](./threat actors - techniques graphs/G0126-Higaisa.html)
  • [G0127 TA551](./threat actors - techniques graphs/G0127-TA551.html)
  • [G0128 ZIRCONIUM](./threat actors - techniques graphs/G0128-ZIRCONIUM.html)
  • [G0129 Mustang Panda](./threat actors - techniques graphs/G0129-Mustang Panda.html)
  • [G0130 Ajax Security Team](./threat actors - techniques graphs/G0130-Ajax Security Team.html)
  • [G0131 Tonto Team](./threat actors - techniques graphs/G0131-Tonto Team.html)
  • [G0132 CostaRicto](./threat actors - techniques graphs/G0132-CostaRicto.html)
  • [G0133 Nomadic Octopus](./threat actors - techniques graphs/G0133-Nomadic Octopus.html)
  • [G0134 Transparent Tribe](./threat actors - techniques graphs/G0134-Transparent Tribe.html)
  • [G0135 BackdoorDiplomacy](./threat actors - techniques graphs/G0135-BackdoorDiplomacy.html)
  • [G0136 IndigoZebra](./threat actors - techniques graphs/G0136-IndigoZebra.html)
  • [G0137 Ferocious Kitten](./threat actors - techniques graphs/G0137-Ferocious Kitten.html)
  • [G0138 Andariel](./threat actors - techniques graphs/G0138-Andariel.html)
  • [G0139 TeamTNT](./threat actors - techniques graphs/G0139-TeamTNT.html)

About

MITRE ATT&CK visualizations

Topics

malware cybersecurity threat-actors blue-team mitre-attack

Resources

Readme
Activity

Stars

6 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages