这个项目旨在收集互联上存在的勒索软件样本,仅供研究使用。
勒索软件数据来源:Id-ransomware
勒索软件样本来源:AnyRun、VirusTotal、Triage、VirusShare
勒索软件列表暂时无规律排序,您可以使用Ctrl/Command+F直接查询您需要的勒索软件。
- 有些勒索软件有多个别名,请模糊搜索。
一个勒索软件家族有三个标签:
Genealogy:谱系,表此勒索软件从何变种过来或者变种为何
TG/AR/VT/VS:此样本的下载位置以及沙箱分析(VS需要md5搜索)
MD5:样本的MD5值,方便查询。同时样本文件也是以MD5值命名。
Anep Ransomware
Genealogy:
TG:https://tria.ge/220201-qc7xbschhq/behavioral1
MD5:f910a417c08f535d10ecaa42b3e688d2
FarAttack Ransomware
Genealogy:Balaclava > FarAttack
AR:https://app.any.run/tasks/28e7be07-7f65-43c7-b548-ab2779e3884d/
MD5:1c021f42e3a138060e1d298726d1579f
AR:https://tria.ge/220330-ky21bafbdq/behavioral1
MD5:cadf573e4ca120639a1e5484e985938d
AR:https://app.any.run/tasks/5114e28f-4565-407c-9a97-ba56ec1d52b2/#
MD5:5a11da9c4f6c103665d0a04932582927
TG:https://tria.ge/220330-ky7kssbab7/behavioral1
MD5:1a75e7dd18a7186ca44fcf27eb94c4aa
DeadBolt Ransomware
Genealogy:
TG:https://tria.ge/220130-avncmscabq
MD5:a76ecd6356f7a71e524c74abf2adec09
TG:https://tria.ge/220127-1svxtabhd7
MD5:718ae69788dc752a8db46b0e43e42f13
Ukrainian Stage Ransomware
Genealogy:
TG:https://tria.ge/220116-1fs8fsgder/behavioral1
MD5:5d5c99a08a7d927346ca2dafa7973fc1
TG:https://tria.ge/220116-1kw5xagdfp/behavioral1
MD5:14c8482f302b5e81e3fa1b18a509289d
TG:https://tria.ge/220117-dhk9asgggk/behavioral1
MD5:b3370eb3c5ef6c536195b3bea0120929
WaspLocker Ransomware
Genealogy:
TG:https://tria.ge/220108-f2qn8scge3/behavioral1
MD5:c004d38310f828f384f4360591b2c090
Chinese Coffee Ransomware
Genealogy:
AR:https://app.any.run/tasks/c8315063-3f69-47e1-a2c7-0c87bde26553/
MD5:aa877144edcef2e8d5a8d37d7ea0d4b6
MD5:313bc92dce801c2ec316c57ea74dd92a
Sample:No
AR:https://app.any.run/tasks/65b01bb2-bc12-4c43-96a5-e11b08fe46ac/
MD5:66996144cacadce3f9e98cff879055c6
EvilNominatus Ransomware
Genealogy:HiddenTear >> EvilNominatus
TG:https://tria.ge/220101-s5cm1agccn/behavioral1
MD5:a07ad47b052c812a2c2da5b1787855f4
TG:https://tria.ge/220120-r2fd2sadbk/behavioral1
MD5:8e23d84e5c58270136539c4cb3e604a4
AR:https://app.any.run/tasks/e7315414-e36b-4e6a-8692-4d7b34da68c7/
MD5:7cdf50ee4f3d0febc70dd36298ed07da
TG:https://tria.ge/220512-kpb3jabfe5/behavioral2
MD5:04da21c104ea3e996c4fbdc496475743
MD5:4066db9a56909fb07cd4779209809a85
MD5:592221150cd6ac91b8c087887ea8d497
NightSky Ransomware
Genealogy:Rook >> Night Sky
TG:https://tria.ge/220106-pnx1tsbfbn/behavioral1
MD5:9608c8b6c8d80fdc67b99edd3c53d3d2
VS:https://virusshare.com/search
MD5: f9481915373852640150ffe98e7218ab
PyCipher 2022 Ransomware
Genealogy:
TG:https://tria.ge/211230-shylyseebr/behavioral1
MD5:346b3c83128f1918b162694eec15963d
XYZconfig Ransomware
Genealogy:Hive, Decaf + Malicious Library >> XYZconfig
TG:https://tria.ge/220101-sbrvtshgb6/behavioral1
MD5:cf351819c69c94fbdaec24cb8c30990b
PSRansom Ransomware
Genealogy:
TG:https://tria.ge/220518-xmqjcschh4/behavioral1
MD5:822e50d817bbb212c9a5e16a782bc7c4
RU_Ransom Ransomware
Genealogy:
VS:https://virusshare.com/search
MD5:fe43de9ab92ac5f6f7016ba105c1cb4e
TG:https://tria.ge/220309-kvka4aadgn/behavioral1
MD5:8fe6f25fc7e8c0caab2fdca8b9a3be89
TG:https://tria.ge/220309-ktwmqsfgb6/behavioral1
MD5:01ae141dd0fb97e69e6ea7d6bf22ab32
Hermetic Ransomware
Genealogy: GoCryptoLocker >> Hermetic
TG:https://tria.ge/220224-dmw7csbgg3
MD5:d5d2c4ac6c724cd63b69ca054713e278
TG:https://tria.ge/220225-r1wdwahfep/behavioral1
MD5:f1a33b2be4c6215a1c39b45e391a3e85
TG:https://tria.ge/220223-y5klhacehn/behavioral1
MD5:3f4a16b29f2f0532b7ce3e7656799125
TG:https://tria.ge/220225-ztlvvshcc3/behavioral1
MD5:84ba0197920fd3e2b7dfa719fee09d2f
Zeon Ransomware
Genealogy:
TG:https://tria.ge/220209-pxfsxaaebj/behavioral1
MD5:33f612338b6b5e6b4fe8cbb17208795c
MonaLisa Ransomware
Genealogy:
AR:https://app.any.run/tasks/5cdfbcb4-9bfc-498c-b6f0-8bebeee76932/
MD5:6bc637edc08c18457647c02d9957fa18
AR:https://app.any.run/tasks/fe7c8add-d7ee-490f-b179-4f0900807a6a/
MD5:7b98b5055e8fbb6b3710b79889943971
AR:https://app.any.run/tasks/81c96f22-5418-4eaf-9737-f4105fade4e0/
MD5:34ee49b8b1e5ac3c1c5e748ebf23a8ed
D3adCrypt Ransomware
Genealogy:
AR:https://app.any.run/tasks/87ae2678-2983-4ed5-b38c-012d14b46278/
MD5:1c2af6c5e1b8b87189b5da7bd3cefe30
TG:https://tria.ge/220301-j4ypeaafcr
MD5:89892508d85f5923f978de4d6c6f3fb5
Sojusz Ransomware
Genealogy:Makop, Phobos >> Sojusz
AR:https://app.any.run/tasks/8a1cc1b4-b51b-4494-816a-2a9f306f3cec/
MD5:753585e5e099b192cf8d7593dd5ef4bf
TG:https://tria.ge/220706-jy9vgsadgp/behavioral1
MD5:707c69692402945982492eede5c829ca
NOKOYAWA Ransomware
Genealogy:
TG:https://tria.ge/220213-eak41adec3/behavioral1
MD5:2e936942613b9ef1a90b5216ef830fbf
TG:https://tria.ge/220311-23y8nacde4
MD5:22a006b6d19558c3cebd708b2b0543bc