这个项目旨在收集互联上存在的勒索软件样本,仅供研究使用。
勒索软件数据来源:Id-ransomware
勒索软件样本来源:AnyRun、VirusTotal、Triage、VirusShare
勒索软件列表暂时无规律排序,您可以使用Ctrl/Command+F直接查询您需要的勒索软件。
- 有些勒索软件有多个别名,请模糊搜索。
一个勒索软件家族有三个标签:
Genealogy:谱系,表此勒索软件从何变种过来或者变种为何
TG/AR/VT/VS:此样本的下载位置以及沙箱分析(VS需要md5搜索)
MD5:样本的MD5值,方便查询。同时样本文件也是以MD5值命名。
Anep Ransomware
Genealogy:
TG:https://tria.ge/220201-qc7xbschhq/behavioral1
MD5:f910a417c08f535d10ecaa42b3e688d2
FarAttack Ransomware
Genealogy:Balaclava > FarAttack
AR:https://app.any.run/tasks/28e7be07-7f65-43c7-b548-ab2779e3884d/
MD5:1c021f42e3a138060e1d298726d1579f
AR:https://tria.ge/220330-ky21bafbdq/behavioral1
MD5:cadf573e4ca120639a1e5484e985938d
AR:https://app.any.run/tasks/5114e28f-4565-407c-9a97-ba56ec1d52b2/#
MD5:5a11da9c4f6c103665d0a04932582927
TG:https://tria.ge/220330-ky7kssbab7/behavioral1
MD5:1a75e7dd18a7186ca44fcf27eb94c4aa
DeadBolt Ransomware
Genealogy:
TG:https://tria.ge/220130-avncmscabq
MD5:a76ecd6356f7a71e524c74abf2adec09
TG:https://tria.ge/220127-1svxtabhd7
MD5:718ae69788dc752a8db46b0e43e42f13
Ukrainian Stage Ransomware
Genealogy:
TG:https://tria.ge/220116-1fs8fsgder/behavioral1
MD5:5d5c99a08a7d927346ca2dafa7973fc1
TG:https://tria.ge/220116-1kw5xagdfp/behavioral1
MD5:14c8482f302b5e81e3fa1b18a509289d
TG:https://tria.ge/220117-dhk9asgggk/behavioral1
MD5:b3370eb3c5ef6c536195b3bea0120929
WaspLocker Ransomware
Genealogy:
TG:https://tria.ge/220108-f2qn8scge3/behavioral1
MD5:c004d38310f828f384f4360591b2c090
Chinese Coffee Ransomware
Genealogy:
AR:https://app.any.run/tasks/c8315063-3f69-47e1-a2c7-0c87bde26553/
MD5:aa877144edcef2e8d5a8d37d7ea0d4b6
MD5:313bc92dce801c2ec316c57ea74dd92a
Sample:No
AR:https://app.any.run/tasks/65b01bb2-bc12-4c43-96a5-e11b08fe46ac/
MD5:66996144cacadce3f9e98cff879055c6
EvilNominatus Ransomware
Genealogy:HiddenTear >> EvilNominatus
TG:https://tria.ge/220101-s5cm1agccn/behavioral1
MD5:a07ad47b052c812a2c2da5b1787855f4
TG:https://tria.ge/220120-r2fd2sadbk/behavioral1
MD5:8e23d84e5c58270136539c4cb3e604a4
AR:https://app.any.run/tasks/e7315414-e36b-4e6a-8692-4d7b34da68c7/
MD5:7cdf50ee4f3d0febc70dd36298ed07da
TG:https://tria.ge/220512-kpb3jabfe5/behavioral2
MD5:04da21c104ea3e996c4fbdc496475743
MD5:4066db9a56909fb07cd4779209809a85
MD5:592221150cd6ac91b8c087887ea8d497
NightSky Ransomware
Genealogy:Rook >> Night Sky
TG:https://tria.ge/220106-pnx1tsbfbn/behavioral1
MD5:9608c8b6c8d80fdc67b99edd3c53d3d2
VS:https://virusshare.com/search
MD5: f9481915373852640150ffe98e7218ab
PyCipher 2022 Ransomware
Genealogy:
TG:https://tria.ge/211230-shylyseebr/behavioral1
MD5:346b3c83128f1918b162694eec15963d
XYZconfig Ransomware
Genealogy:Hive, Decaf + Malicious Library >> XYZconfig
TG:https://tria.ge/220101-sbrvtshgb6/behavioral1
MD5:cf351819c69c94fbdaec24cb8c30990b
PSRansom Ransomware
Genealogy:
TG:https://tria.ge/220518-xmqjcschh4/behavioral1
MD5:822e50d817bbb212c9a5e16a782bc7c4
RU_Ransom Ransomware
Genealogy:
VS:https://virusshare.com/search
MD5:fe43de9ab92ac5f6f7016ba105c1cb4e
TG:https://tria.ge/220309-kvka4aadgn/behavioral1
MD5:8fe6f25fc7e8c0caab2fdca8b9a3be89
TG:https://tria.ge/220309-ktwmqsfgb6/behavioral1
MD5:01ae141dd0fb97e69e6ea7d6bf22ab32
Hermetic Ransomware
Genealogy: GoCryptoLocker >> Hermetic
TG:https://tria.ge/220224-dmw7csbgg3
MD5:d5d2c4ac6c724cd63b69ca054713e278
TG:https://tria.ge/220225-r1wdwahfep/behavioral1
MD5:f1a33b2be4c6215a1c39b45e391a3e85
TG:https://tria.ge/220223-y5klhacehn/behavioral1
MD5:3f4a16b29f2f0532b7ce3e7656799125
TG:https://tria.ge/220225-ztlvvshcc3/behavioral1
MD5:84ba0197920fd3e2b7dfa719fee09d2f
Zeon Ransomware
Genealogy:
TG:https://tria.ge/220209-pxfsxaaebj/behavioral1
MD5:33f612338b6b5e6b4fe8cbb17208795c
MonaLisa Ransomware
Genealogy:
AR:https://app.any.run/tasks/5cdfbcb4-9bfc-498c-b6f0-8bebeee76932/
MD5:6bc637edc08c18457647c02d9957fa18
AR:https://app.any.run/tasks/fe7c8add-d7ee-490f-b179-4f0900807a6a/
MD5:7b98b5055e8fbb6b3710b79889943971
AR:https://app.any.run/tasks/81c96f22-5418-4eaf-9737-f4105fade4e0/
MD5:34ee49b8b1e5ac3c1c5e748ebf23a8ed
D3adCrypt Ransomware
Genealogy:
AR:https://app.any.run/tasks/87ae2678-2983-4ed5-b38c-012d14b46278/
MD5:1c2af6c5e1b8b87189b5da7bd3cefe30
TG:https://tria.ge/220301-j4ypeaafcr
MD5:89892508d85f5923f978de4d6c6f3fb5
Sojusz Ransomware
Genealogy:Makop, Phobos >> Sojusz
AR:https://app.any.run/tasks/8a1cc1b4-b51b-4494-816a-2a9f306f3cec/
MD5:753585e5e099b192cf8d7593dd5ef4bf
TG:https://tria.ge/220706-jy9vgsadgp/behavioral1
MD5:707c69692402945982492eede5c829ca
NOKOYAWA Ransomware
Genealogy:
TG:https://tria.ge/220213-eak41adec3/behavioral1
MD5:2e936942613b9ef1a90b5216ef830fbf
TG:https://tria.ge/220311-23y8nacde4
MD5:22a006b6d19558c3cebd708b2b0543bc
Pandora Ransomware
Genealogy: Rook >> Pandora
TG:https://tria.ge/220316-jnml7safg8/behavioral1
MD5:0c4a84b66832a08dccc42b478d9d5e1b
CryptoJoker 2022 Ransomware
Genealogy:CryptoJoker 2020 > CryptoJoker 2021 > CryptoJoker 2022
TG:https://tria.ge/220311-trwdmadcbj
MD5:964faa0f1a170358e1d0443aba23af2a
AntiWar Ransomware
Genealogy:
TG:https://tria.ge/220314-wgxvtaafb4/behavioral1
MD5:3b3a50b242841e1789a919b1291051f1
Acepy Ransomware
Genealogy:
AR:https://app.any.run/tasks/a2d57e5b-de5c-47de-b5f3-26bfc7828318/
MD5:cac20eac09ad235568bd0e2126f9decd
Industrial Spy Ransomware
Genealogy:
TG:https://tria.ge/220416-vq21fsabe5/behavioral1
MD5:333d29ffe93e71b521057698adf722e3
VS:https://virusshare.com/search
MD5:95d4d597b3065359e471890fc166abfc
VS:https://virusshare.com/search
MD5:011f60dd481f03c21a429f0ef91d4cef
GoodWill Ransomware
Genealogy:HiddenTear >> GoodWill
VS:https://virusshare.com/search
MD5:cea1cb418a313bdc8e67dbd6b9ea05ad
DoubleZero Ransomware
Genealogy:
VS:https://virusshare.com/search
MD5:36dc2a5bab2665c88ce407d270954d04
TG:https://tria.ge/220322-pfgnwabdgn/behavioral1
MD5:7d20fa01a703afa8907e50417d27b0a4
VS:https://virusshare.com/search
MD5:989c5de8ce5ca07cc2903098031c7134
VS:https://virusshare.com/search
MD5:b4f0ca61ab0c55a542f32bd4e66a7dc2
Vovabol Ransomware
Genealogy:
AR:https://app.any.run/tasks/4be02de0-c014-400f-8602-c794497d6be7/
MD5:2b99e5c85cd8b0e6decf30d6daee094e
NB65 Ransomware、ContiStolen Ransomware
Genealogy:Conti-2 (stolen code) > NB65 (ContiStolen)
VS:https://virusshare.com/search
MD5:f746ea39c0c5ff9d0a1f2d250170ad80
QuickBuck Ransomware Simulator
Genealogy:Elephant > QuickBuck
TG:https://tria.ge/220522-wqqg4aage6/behavioral1
MD5:5764e41fede27bf9c984242c2b7bfd33
BlockZ Ransomware
Genealogy:Babuk (modified) + ZZZ Locker >> BlockZ, 7-language Locker
TG:https://tria.ge/220815-2epz3sgegp
MD5:1a21d4620a25968ee64206d524827691
TG:https://tria.ge/220816-z4l9dahch3
MD5:a2086f41bc06adc69517bc0d9c07bf6e
Phantom Ransomware
ONYX Ransomware
Genealogy:Chaos Builder v4 >> ONYX
TG:https://tria.ge/220425-1573xaahfn/behavioral2
MD5:cf6ff9e0403b8d89e42ae54701026c1f
TxLocker Ransomware
StopWarInUkraine Ransowmare
Genealogy:
TG:https://tria.ge/220603-gdhjdseabp/behavioral1
MD5:cebcd8313ba1ac74b30bc1c81a3a3a8f
Pipikaki Ransomware
RansomHouse Ransomware
Kekpop Ransomware
Genealogy:G0nnaC0pe >> Kekpop, Kekware, YourCyanide (Cyn)
TG:https://tria.ge/220513-vb15lshdc7/behavioral1
MD5:f190183b6a6f55daa406c25cf5da66d8
VS:https://virusshare.com/search
MD5:c1492fa1cd62246ff192f2383f63afa2
TG:https://tria.ge/220519-wft3jadbgj/behavioral1
MD5:60105b0d25a609bbf93236f003064d2c
Crimson Walrus Ransomware
WsIR Ransomware
Genealogy:
TG:https://tria.ge/220522-gx1jbacbgk/behavioral1
MD5:c76aecc1eb0b47fc261a80b9fc06fb75
0mega Ransomware
EAF Ransomware
Genealogy:Chaos + other code >> EAF
TG:https://tria.ge/220529-wwbacscgfj/behavioral1
MD5:f477c3bd9d9599a59affb41a8807f8ae
CheckMate Ransomware
Genealogy:QNAP
PoliceRecords Ransomware
Genealogy:
VS:https://virusshare.com/search
MD5:00d77230603c745c638c5de737d1593e
AR:https://app.any.run/tasks/e3230ab2-2d91-457c-8d99-a43bea2b8511/
MD5:da1224121dd02b18891f0557d94e32ae
AR:https://app.any.run/tasks/1c3a9f2b-fb05-4fb1-878f-92dbb770e78f/
MD5:dfcfb3d614fd1b89a6f52edb48e8285e
Kawaii Anime Ransomware
Genealogy:
TG:https://tria.ge/220612-hk1tzsaedr/behavioral1
MD5:f0eef7dc5ba068dd99fe8a031c183f64
7-language Ransomware
Kanalia Ransomware
Genealogy:
TG:https://tria.ge/220624-ke9k2sdhb8/behavioral1
MD5:0700f3bffdbbf5ecc2a9c63f8b3742a8
Agenda Ransomware
Genealogy:Go-ransomware >> Agenda
TG:https://tria.ge/220629-m1cvbaghfq/behavioral1
MD5:a7ab0969bf6641cd0c7228ae95f6d217
Play Ransomware
Datastor2021 Ransomware
RedTeam Ransomware
Genealogy:Babuk >> RedTeam
TG:https://tria.ge/220628-m63mxsagf5/behavioral1
MD5:b1506fec2b3988ff33fb5e6c5076439d
TG:https://tria.ge/220628-m6zk9sagf4/behavioral1
MD5:344d23c036cf33a82cf9a454a90ff274
BlueSky Ransomware
Genealogy: Conti + other code >> BlueSky
TG:https://tria.ge/220628-ppntjshddq/behavioral1
MD5:d8a44d2ed34b5fee7c8e24d998f805d9
Lilith Ransomware
Genealogy:
TG:https://tria.ge/220708-l97klsdfh3
MD5:d8a44d2ed34b5fee7c8e24d998f805d9
RedAlert(N13V) Ransomware
Genealogy:
TG:https://tria.ge/220706-cemghsfeep/behavioral1
MD5:f2fa9a3ce883a7f5b43ba5c9ff7bdf75
BianLian Ransomware
Genealogy:
VS:https://virusshare.com/search
MD5:0c756fc8f34e409650cd910b5e2a3f00
Stop24/7 Ransomware
HolyGhost Ransomware
Genealogy:H0lyGh0st 2021 > H0lyGh0st 2022
TG:https://tria.ge/220715-kyb4wsabd2/behavioral1
MD5:aa4e99b717bcb7e916148a469e69788a
TG:https://tria.ge/220716-gza2fahcg3
MD5:54ca404d16db18d233c606b48c73d66f
GwisinLocker Ransomware
Rever Ransomware
Luna Ransomware
Filerec Ransomware
Moisha Ransomware
Genealogy:
TG:https://tria.ge/220826-jwaydaaeg2
MD5:d197883d8745a61fe25aebea85622a65