################################################################
# ThreatFox IOCs: recent SHA256 hashes - CSV format            #
# Last updated: 2025-09-26 23:30:49 UTC                        #
#                                                              #
# Terms Of Use: https://threatfox.abuse.ch/faq/#tos            #
# For questions please contact threatfox [at] abuse.ch         #
################################################################
#
# "first_seen_utc","ioc_id","ioc_value","ioc_type","threat_type","fk_malware","malware_alias","malware_printable","last_seen_utc","confidence_level","reference","tags","anonymous","reporter"
"2025-09-26 23:30:49", "1602599", "aae142810c653716d5acd0c128bd05ed96c30861188a09541ed16099e17de005", "sha256_hash", "payload", "win.vidar", "None", "Vidar", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:48", "1602596", "7109c74b24a883dbd37cf5d23a11642ed056d876e5120102ab860da498550e33", "sha256_hash", "payload", "win.hijackloader", "DOILoader,GHOSTPULSE,IDAT Loader,SHADOWLADDER", "HijackLoader", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:47", "1602593", "eb76458c04eee2af88d94ecdccc212573abbcb011ebab6287b683bb21dc03e36", "sha256_hash", "payload", "win.vidar", "None", "Vidar", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:40", "1602590", "ca603e0fb3203b252a1f4e866ff739f3799df8052aab5e36d501532b6a1c7e49", "sha256_hash", "payload", "win.asyncrat", "None", "AsyncRAT", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:39", "1602587", "917e92ceb2da1d60284d87721cc3de0efec208d20f66f4a536aabfe5eb5ff61e", "sha256_hash", "payload", "win.aurotun_stealer", "None", "Aurotun Stealer", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:38", "1602584", "54470471f8c6a425d973a9b80b1b1a8cbe4708393429cfbf02fc6ef00f09a468", "sha256_hash", "payload", "win.gcleaner", "None", "GCleaner", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:37", "1602581", "6adbf96480b47f1a9fc3a3705ee8e3663e76dfd06b3ae9f96820f456044a20ba", "sha256_hash", "payload", "win.ghost_rat", "Farfli,Gh0st RAT,PCRat", "Ghost RAT", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:36", "1602578", "cd9df8af108c7e01beedac8e4047d4972fd18d1ce29cc4fa0296fabb22179828", "sha256_hash", "payload", "win.agent_tesla", "AgenTesla,AgentTesla,Negasteal", "Agent Tesla", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:35", "1602575", "c9cc39c46a8d4cb82f41757da922d5f2428e77f655c8f052a4ef3dd596715be7", "sha256_hash", "payload", "win.vidar", "None", "Vidar", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:34", "1602572", "6a7396d49126f2c310c0a47f0e6c85890d7e609f382ff3309f79da2b1562398c", "sha256_hash", "payload", "win.vidar", "None", "Vidar", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:33", "1602569", "a154a53ea4cfd0dce680f963dde9d875362441e57960b669b05767bc99633d96", "sha256_hash", "payload", "win.valley_rat", "Winos", "ValleyRAT", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:32", "1602566", "2c00668e0dda59c11b8d54c89e0d8544678ee5304ec1471ff7f26751e781e351", "sha256_hash", "payload", "win.aurotun_stealer", "None", "Aurotun Stealer", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:31", "1602563", "d383abce3a04f57dfd3a3e706dae6aa2aa5d3af7d4c51e3b2b26df3fc4487f0e", "sha256_hash", "payload", "win.coinminer", "None", "Coinminer", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:30", "1602560", "64ec658ea1614f0c2f5cd4ac65f072df89e0a88ab600e807dc7b0d799666dd0a", "sha256_hash", "payload", "win.rhadamanthys", "None", "Rhadamanthys", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:29", "1602557", "e27e05c7be1115f5ead1b7c72c5ef3bd123f87d4cac75cd9e14462ff4845e074", "sha256_hash", "payload", "win.vidar", "None", "Vidar", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:28", "1602554", "95ac5479c696bc409cd11dbc92e57708590c1f8b8aff47d9c04edcfe4332ea70", "sha256_hash", "payload", "win.stealc", "None", "Stealc", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:27", "1602551", "15b963e6213360317164b419e7192cdf5c4145f54a5acc0a41fe7dfa9075fb3f", "sha256_hash", "payload", "win.rhadamanthys", "None", "Rhadamanthys", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:26", "1602548", "52003895b637d50bb99d8f810d0666b5868e77d832510035e5b8828ef641edf9", "sha256_hash", "payload", "win.stealc", "None", "Stealc", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:25", "1602545", "13a69916594902b88284e3b603f7e396d89767ffeafa8a3b619a2be3e9ad07fb", "sha256_hash", "payload", "win.vidar", "None", "Vidar", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:24", "1602542", "fa3b9f050519f8106a424f92aab6a7714fefe36ca3b859acb099ae1467d8c0ae", "sha256_hash", "payload", "win.latrodectus", "BLACKWIDOW,IceNova,Latrodectus,Lotus", "Latrodectus", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:23", "1602539", "c04f64f0b5cbd336ad8b5dcf40727f50dba7534d66df1998110f38af533b45b3", "sha256_hash", "payload", "win.vidar", "None", "Vidar", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:22", "1602536", "0c26d498ccd4d7aea16e4b6e7e647fe4e16b89f67e18a8eacb4b0965fce2f381", "sha256_hash", "payload", "win.riseloader", "None", "RiseLoader", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:21", "1602533", "eccf6b8a45f044951712b08013fcb020bff95e7c784164464afcf5e6adba1fdb", "sha256_hash", "payload", "win.riseloader", "None", "RiseLoader", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:20", "1602530", "5731851703e6ca1dd31c4ba3455a4e961621aab904d53ff5d747f811d3dee1b0", "sha256_hash", "payload", "win.riseloader", "None", "RiseLoader", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:17", "1602525", "e4cbf31ac0aacb712219b080af8ccbc11899cc1e7a695077b61df5317ffc3a1d", "sha256_hash", "payload", "win.riseloader", "None", "RiseLoader", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:16", "1602522", "e715ca77bca80baec611ba2f5982ce26a52211523f2db2115165e593b65ff6ef", "sha256_hash", "payload", "win.guidloader", "None", "GUIDLOADER", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:15", "1602519", "a3b7ad3ac10b437dbe004aa6ec90b480a14304f2d5c59b77cb8559e96e1a6841", "sha256_hash", "payload", "win.latrodectus", "BLACKWIDOW,IceNova,Latrodectus,Lotus", "Latrodectus", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:14", "1602516", "74b34fd58b8927a025dbba176442e079637049fe9b66fa80beed989e8939015e", "sha256_hash", "payload", "win.latrodectus", "BLACKWIDOW,IceNova,Latrodectus,Lotus", "Latrodectus", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:13", "1602513", "be5bcdfc0dbe204001b071e8270bd6856ce6841c43338d8db914e045147b0e77", "sha256_hash", "payload", "win.latrodectus", "BLACKWIDOW,IceNova,Latrodectus,Lotus", "Latrodectus", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:12", "1602510", "1374081c549ed143f2110a1b81ea617e323a3476f188923684a9f696e6ce087c", "sha256_hash", "payload", "win.latrodectus", "BLACKWIDOW,IceNova,Latrodectus,Lotus", "Latrodectus", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:11", "1602507", "34aadd5d6e50aa780d96028140cb71de1d15204c76126a54b98d3dfb5f9445e0", "sha256_hash", "payload", "win.latrodectus", "BLACKWIDOW,IceNova,Latrodectus,Lotus", "Latrodectus", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:10", "1602504", "dcdbcba9c56a123c2a494e23521ef80eb6cd69ba3b53d10f06b04cdc9477e2ed", "sha256_hash", "payload", "win.latrodectus", "BLACKWIDOW,IceNova,Latrodectus,Lotus", "Latrodectus", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:08", "1602501", "c131ae97938e782d3beb56c4a00ca9ddad3812364c3f0492aacdb0458f659b1c", "sha256_hash", "payload", "win.remcos", "RemcosRAT,Remvio,Socmer", "Remcos", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:07", "1602498", "818ed536a50e205f6ef036a109c847869ff78100e87ceae800f5c43d62bb26bd", "sha256_hash", "payload", "win.formbook", "win.xloader", "Formbook", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:06", "1602495", "4c65ac4c3af63c0c71c5b0e1b6b6db1c71f08778efc1a47524fef18d6ee91312", "sha256_hash", "payload", "win.vidar", "None", "Vidar", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:05", "1602492", "2afe0dfb8d2809e16356446428e83659c16d093cd6ce1a5418efe8e16b3f567c", "sha256_hash", "payload", "win.formbook", "win.xloader", "Formbook", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:03", "1602489", "46ebf0713b673f18360202e297685e3031456bf7d44a4ec97bbdc6187c716bc8", "sha256_hash", "payload", "win.strelastealer", "None", "StrelaStealer", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:01", "1602486", "b9404b68730c9f6c3f7aa156bec2374f76e64d1526512d87ff5451f823da8185", "sha256_hash", "payload", "win.formbook", "win.xloader", "Formbook", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:30:00", "1602483", "4f9df0124b362959024305dead04b4637ff379d2cc1b94962fddc9acd039bad4", "sha256_hash", "payload", "win.formbook", "win.xloader", "Formbook", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:29:59", "1602480", "1a9dedcdb3fa783b8211f36d2eeb9791e78df7dfedcecd4b08608484aea3c1bf", "sha256_hash", "payload", "win.vipkeylogger", "None", "VIP Keylogger", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:29:58", "1602477", "0ae6570d9e659ffd5efc1e3f9faca696bd12b66b8d125b1159aee9e5251a4d79", "sha256_hash", "payload", "win.troystealer", "None", "troystealer", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:29:57", "1602474", "1519c35519813943ccd719d66d625a356627b5cfd9e5b21314dafc5c0d6d29c8", "sha256_hash", "payload", "win.remcos", "RemcosRAT,Remvio,Socmer", "Remcos", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:29:56", "1602471", "459238815cef12916912d15825351651b6222161e9229e7ae66dbf40f733b589", "sha256_hash", "payload", "win.xenorat", "None", "XenoRAT", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:29:55", "1602468", "c374f2998fc7dcbc0c3e559a1dfcdf4b2729a12ea1783ead0624a1553a8bacf1", "sha256_hash", "payload", "win.formbook", "win.xloader", "Formbook", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:29:54", "1602465", "ccdf673390e032a11978be52ef503088dde4018bcf938522f848fee747715153", "sha256_hash", "payload", "win.formbook", "win.xloader", "Formbook", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:29:53", "1602462", "79b413ce2cecbe5cdb5ee6d8a29ab4da5e96a86870a393c264e997eebce7bcac", "sha256_hash", "payload", "win.xworm", "None", "XWorm", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:29:52", "1602459", "eb5fd87c0a5f2ca99cf846fd6148f4c1084e14c6f9e79a8b5635dbd3c6d1036d", "sha256_hash", "payload", "win.xworm", "None", "XWorm", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:29:51", "1602456", "31ad3cdc1ccc501f7d7ac1d15c4092e834fe9dd9f62d26c076cd4bf86ceeb444", "sha256_hash", "payload", "win.guidloader", "None", "GUIDLOADER", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:29:50", "1602453", "fe4a2ca725dbd1fe619d5c621751774d86fed32f112acf38f3b7c48fbe23d31a", "sha256_hash", "payload", "win.agent_tesla", "AgenTesla,AgentTesla,Negasteal", "Agent Tesla", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:29:49", "1602450", "3b34d7190c6169983a9acbe191c1aef937600c3818f0fd8be3a63bd96b3bbebf", "sha256_hash", "payload", "win.agent_tesla", "AgenTesla,AgentTesla,Negasteal", "Agent Tesla", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:29:48", "1602447", "5f9b01b88c7faf63239a79405c1f7c5521b9cfd1934c659a8c56345ad1549d17", "sha256_hash", "payload", "win.formbook", "win.xloader", "Formbook", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:29:47", "1602444", "6f0918d85cc9f27d09b3100b357e115a4cd35a492cc901f95d9a9cd07e1d4f9f", "sha256_hash", "payload", "win.formbook", "win.xloader", "Formbook", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:29:46", "1602441", "c905f0495ede4de681a29cf21a8915df1bb844328924b3c2c207630d7e33067b", "sha256_hash", "payload", "win.catchamas", "None", "Catchamas", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:29:45", "1602438", "c8fad764fa9fc2f8cc58809ef2be38c40e5560729019ff709614829cfbeb3111", "sha256_hash", "payload", "win.asyncrat", "None", "AsyncRAT", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:29:44", "1602435", "f4097951bcf8213b24354a923e92bc7b7aed1ae3954e800ed4838f0d6dba8cd5", "sha256_hash", "payload", "win.formbook", "win.xloader", "Formbook", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:29:43", "1602432", "8989c105f6a548982cbf744de60417d0d3137e2559335e43ba0ea1355b93b163", "sha256_hash", "payload", "win.agent_tesla", "AgenTesla,AgentTesla,Negasteal", "Agent Tesla", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:29:42", "1602429", "d9be31a6b588d4b0946ce181d3f1d7312a6f3e2682958e60dbe8ef4e7d2bd177", "sha256_hash", "payload", "win.rhadamanthys", "None", "Rhadamanthys", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:29:41", "1602426", "d970b4cd5467e48b6b0b8f99066f33110fc2b506e9ae90379e6792070f39e176", "sha256_hash", "payload", "win.salatstealer", "None", "SalatStealer", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:29:40", "1602423", "eb4355541f47bbace15054fada7c76ef673eb119342df68787a25e60dccc0d96", "sha256_hash", "payload", "win.salatstealer", "None", "SalatStealer", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:29:39", "1602420", "18726d40d598feb037efa36fd4419e3a06410a7c8339d8c2459c322acc17d0e9", "sha256_hash", "payload", "win.xworm", "None", "XWorm", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:29:38", "1602417", "e953fbb29aaf02c7f43fe27fede1cab32fddfc1ca1ac7d56e9e75417d72607fa", "sha256_hash", "payload", "win.xworm", "None", "XWorm", "", "95", "None", "None", "0", "Grim"
"2025-09-26 23:29:36", "1602414", "57365350234375cd60d16cba2aefbff8d0dc048ae37669fc40bb9c42cab64037", "sha256_hash", "payload", "win.agent_tesla", "AgenTesla,AgentTesla,Negasteal", "Agent Tesla", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:33:11", "1601806", "16bc4c9ca0a1461b82d8e731ab5ced982a895548210f49fa6e106fb49fe1cc30", "sha256_hash", "payload", "win.krakenkeylogger", "None", "KrakenKeylogger", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:33:10", "1601803", "e66437f20ac2fe570ad886d485354b997e873b9b7eb2ed2db00855e1b09f5e39", "sha256_hash", "payload", "win.krakenkeylogger", "None", "KrakenKeylogger", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:33:08", "1601800", "08340a503c6eb0b479acc2d5ad51f9a2ad1d3e3b8a30707448babd3416a22dab", "sha256_hash", "payload", "win.krakenkeylogger", "None", "KrakenKeylogger", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:33:07", "1601797", "b95af92a834eb681ddc75a01948eb1cb28657366911a657b43e3f3c9abc79f10", "sha256_hash", "payload", "win.redline_stealer", "RECORDSTEALER", "RedLine Stealer", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:33:06", "1601794", "634e76c0b66a36325be0d2d4c48566042173abd342b636bfb322c50a91cc5e75", "sha256_hash", "payload", "win.xworm", "None", "XWorm", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:33:05", "1601791", "07ff93264959e611dc2833c5b5d7625c1f18d0d943792a5019a319d48c260c17", "sha256_hash", "payload", "win.formbook", "win.xloader", "Formbook", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:33:04", "1601788", "6d583cacffa753561203ea70ca7dd3da996bdb0b6ef5b25aaef8eb01ae5c8326", "sha256_hash", "payload", "win.troystealer", "None", "troystealer", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:33:03", "1601785", "ad0a87e7d15323230f7732b7d734abe976d5e6b4e32ec086e7892ca0f67acfe7", "sha256_hash", "payload", "win.formbook", "win.xloader", "Formbook", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:33:02", "1601782", "4044d855baa6bb2633fcfa8d489c2e6a06e2923f545b94be7768cdcfba857b89", "sha256_hash", "payload", "win.agent_tesla", "AgenTesla,AgentTesla,Negasteal", "Agent Tesla", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:33:01", "1601779", "12f519e0749c4f2d852684cb3131506b89b941710c1f477ecc74b7958d9e9f46", "sha256_hash", "payload", "win.formbook", "win.xloader", "Formbook", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:33:00", "1601776", "519ab6b3a7f312dd520533bd579b161fd7a0fc7b07204ce22fe3b6279316c0b4", "sha256_hash", "payload", "win.guidloader", "None", "GUIDLOADER", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:58", "1601773", "55c420575256efe054c9e02202fce8e4540b62e5e7bbd5fb24b25effdbdefd98", "sha256_hash", "payload", "win.masslogger", "None", "MASS Logger", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:57", "1601770", "806c54f6774b7fd87697f35797bf146b7b72367c5ccb17ed21e10de5cb7d9020", "sha256_hash", "payload", "win.guidloader", "None", "GUIDLOADER", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:56", "1601767", "26f658333fbc8b9516cd269e6e367d117224e603bfb996fbcd33ce01ad321985", "sha256_hash", "payload", "win.krakenkeylogger", "None", "KrakenKeylogger", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:55", "1601764", "725e677966bf390ad5932fbdea2890a8dbcaf346d2b4bd606590b97ecd2c7d2a", "sha256_hash", "payload", "win.formbook", "win.xloader", "Formbook", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:54", "1601761", "203c3adfd8e7dfce5ad2eb48f32eadac9ea1ef359ba007f589e92e9c718339af", "sha256_hash", "payload", "win.formbook", "win.xloader", "Formbook", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:53", "1601758", "7a4d557a530f7630d2d22b60c1ed5adf386cb57401bfe73da141adbf1e9e91e4", "sha256_hash", "payload", "win.krakenkeylogger", "None", "KrakenKeylogger", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:52", "1601755", "bbe3c1845567df994a78b290fef9260d54f6ae3d9a0e2b121fc28ec3f34557db", "sha256_hash", "payload", "win.krakenkeylogger", "None", "KrakenKeylogger", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:51", "1601752", "b5e1c67dee17674abd3bb018b8cc80fc8c7524261f905a24ee38f341a382adba", "sha256_hash", "payload", "win.troystealer", "None", "troystealer", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:50", "1601749", "fdc4f6f01f98760794e04c00c6d9f2cd2332cbd7569c87663302c4deeb8a2e47", "sha256_hash", "payload", "win.darkcloud", "None", "DarkCloud Stealer", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:49", "1601746", "0874e7b9ba2653207308bad8a2efca4a30690413a4eaeace15a6b4d601a5bb94", "sha256_hash", "payload", "win.remcos", "RemcosRAT,Remvio,Socmer", "Remcos", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:48", "1601743", "f26b15aa89c33b3ceabfdbd1e2dbc1a1759587add95183baba90ca4d0607d6d2", "sha256_hash", "payload", "win.strelastealer", "None", "StrelaStealer", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:47", "1601740", "688f780750bb4f3baa5a0b3e460f4cae16d56ce0c173d630811ce14c9b614fa1", "sha256_hash", "payload", "win.guidloader", "None", "GUIDLOADER", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:46", "1601737", "eedcb9d6941ac0222326effff57b8d1311e38850f1feb008f871732eb4176e54", "sha256_hash", "payload", "win.masslogger", "None", "MASS Logger", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:45", "1601734", "6e009cb2ccbc1f7ab7595a488cee196394fbd771fac77ce393a8e3cbddd108b3", "sha256_hash", "payload", "win.masslogger", "None", "MASS Logger", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:44", "1601731", "ce489800817ea619199ea83ada512983e04a79cd0517bffedfb7db01dd6f3d17", "sha256_hash", "payload", "win.strelastealer", "None", "StrelaStealer", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:43", "1601728", "1bd7f308b3898676aa758530e4c98d95a6220ff0fa96a8670d4e61ab792e761c", "sha256_hash", "payload", "win.valley_rat", "Winos", "ValleyRAT", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:41", "1601725", "b35d99e722f9bbbbb7f0792f4193976e174191bda29b7616807f77ffdac5546b", "sha256_hash", "payload", "win.xworm", "None", "XWorm", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:40", "1601722", "184b60b719f2ef2425d6c7483c11bf6124e67a890fe14acf981b3429e6f56854", "sha256_hash", "payload", "win.remcos", "RemcosRAT,Remvio,Socmer", "Remcos", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:39", "1601719", "992909009f91cb9befb1649da1eb057f49b562ab9b6ffce8953a1f616a037042", "sha256_hash", "payload", "win.younglotus", "DarkShare", "YoungLotus", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:38", "1601716", "9af05270999fb97c3e0b25cc76e644be34b80442297b44103bae829f70d1820a", "sha256_hash", "payload", "win.webmonitor", "RevCode", "WebMonitor RAT", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:37", "1601713", "4c7dab2b02e95713227c4d42a450fb49611abc565f18fd986b80bd4f9c83d693", "sha256_hash", "payload", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:36", "1601710", "0dd61c2bc71e0dd4b4bd7bbd660b1b4646fb5d1240f067ed728a9dacd3fbed5d", "sha256_hash", "payload", "win.darkcloud", "None", "DarkCloud Stealer", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:35", "1601707", "15fb02f50b1e2452c28f43cf152763adfe0437334832bf5db5885512450b2d20", "sha256_hash", "payload", "win.luca_stealer", "None", "Luca Stealer", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:34", "1601704", "24c45bab55ca504b93a80cd8d72e94c3baf722c539e03aaa60ec8cbf4a11d69e", "sha256_hash", "payload", "win.rhadamanthys", "None", "Rhadamanthys", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:33", "1601701", "70de374f49537dc6227fd2172c7f7f38c3f61d234b4acf69058aa5c3404590da", "sha256_hash", "payload", "win.xworm", "None", "XWorm", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:32", "1601698", "7dd988ed0f432c6279698bcf0dc7500ab0153fe77378f06e718a2a3b1534c5d7", "sha256_hash", "payload", "win.remcos", "RemcosRAT,Remvio,Socmer", "Remcos", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:31", "1601695", "55b3f8a499020145a728a1b28e90b2753e9ec4895369ada8d2812f61f3696f42", "sha256_hash", "payload", "win.salatstealer", "None", "SalatStealer", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:30", "1601692", "242418928ee50cd9d4c70bddf5b9434ee65244aa46376f123f1c59359c281eaa", "sha256_hash", "payload", "win.remcos", "RemcosRAT,Remvio,Socmer", "Remcos", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:28", "1601689", "8fff303bfb9bfb67bbff7b1aabf41637887276d5e8b3d5763fb7c559c2ca581c", "sha256_hash", "payload", "win.formbook", "win.xloader", "Formbook", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:27", "1601686", "13199e42b39e183eea312c99eb0bb2cc697f925945b25a6e6dcc1550d4676a9d", "sha256_hash", "payload", "win.guidloader", "None", "GUIDLOADER", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:26", "1601683", "f2716726e0b5ffe70b16aadeb4210480aac6d5297246067737ca6268cc5738cb", "sha256_hash", "payload", "win.guidloader", "None", "GUIDLOADER", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:25", "1601680", "1e8455c7bcbcc2f000b972418d0e193fcc0a022f330c9eea750bacf95b2493b4", "sha256_hash", "payload", "win.krakenkeylogger", "None", "KrakenKeylogger", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:24", "1601677", "053fdd300865d1f2c9e73e7df6277335316767a45aeaff187d6495dc792f7689", "sha256_hash", "payload", "win.xworm", "None", "XWorm", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:23", "1601674", "f9716135b3eb5b91e697cb02fda30a5c1d0de0867382d9f5b99ac576d9bacf48", "sha256_hash", "payload", "win.ghostsocks", "None", "GhostSocks", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:22", "1601671", "26e6b93427949360b1b00f81af356a5b947b95ca021d8f4618fea76ec7f2c54d", "sha256_hash", "payload", "win.vidar", "None", "Vidar", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:21", "1601668", "a867e908995563dad71a115e74f73d0449ba21dc62310b2e0b2e179e399a4d73", "sha256_hash", "payload", "win.asyncrat", "None", "AsyncRAT", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:20", "1601665", "868bf28e2b667d23b3867b04e1e349ef625aee1db3c7fae1992db6d2bd03fe10", "sha256_hash", "payload", "win.formbook", "win.xloader", "Formbook", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:19", "1601662", "56aa595a5e815230d1fe0f9a9e9b744d809d7e5daf28cdf43283036126a7bc5d", "sha256_hash", "payload", "win.krakenkeylogger", "None", "KrakenKeylogger", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:18", "1601659", "befa46166e43d30548a11b5d93ba321bfc0304e4d3a22969545bc51df3e887be", "sha256_hash", "payload", "win.agent_tesla", "AgenTesla,AgentTesla,Negasteal", "Agent Tesla", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:17", "1601656", "6dd391bb10499681f406744962230bf176454a073955913a6278058e41bc02b2", "sha256_hash", "payload", "win.valley_rat", "Winos", "ValleyRAT", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:15", "1601653", "b56bfa3b2b15568250f21583deee3c5059f87fe830d4ce021deeaddfef880775", "sha256_hash", "payload", "win.aurotun_stealer", "None", "Aurotun Stealer", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:14", "1601650", "9f001462867b7d210dea54afb92c2b023efa6ee46e8bb43fe1574722e133cacc", "sha256_hash", "payload", "win.stealc", "None", "Stealc", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:13", "1601647", "b5def5a71c2c8f07fa30379346fdd97c89bc77f8fbd5200bc41a3bb13ce4ee4c", "sha256_hash", "payload", "win.masslogger", "None", "MASS Logger", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:12", "1601644", "94ab584f2783aceea12fa27325cf6a3398c37d0d0404b42526e9106d92556cc8", "sha256_hash", "payload", "win.masslogger", "None", "MASS Logger", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:11", "1601641", "8e1679072636b5c3dfcbb778b6eab126d385de5e4ed914118d954af5aa30d37b", "sha256_hash", "payload", "win.strelastealer", "None", "StrelaStealer", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:10", "1601638", "fc4fbf964b1ea4b01201f4f9fa13345ee834464272d6cdc9814de53e1c4d9e6b", "sha256_hash", "payload", "win.masslogger", "None", "MASS Logger", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:09", "1601635", "23c7f931514e66885cf41c759b4f746ee3e6a7ae4f4c587133e4016bfdc4b767", "sha256_hash", "payload", "win.masslogger", "None", "MASS Logger", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:08", "1601632", "8f69a8e1be4f5d02c3600b4e41d3f70a60ac7e0d9c7f25b6268f657917c4b749", "sha256_hash", "payload", "win.masslogger", "None", "MASS Logger", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:07", "1601629", "b6fdc7de80b3afad0be8be678dbd7dbf1edf000434f075e67bdc3236488cd1fe", "sha256_hash", "payload", "win.masslogger", "None", "MASS Logger", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:06", "1601626", "a78a574a8e118ebde1f21e3e94fd090af7b21771b6e7341dbb121ff93193a49e", "sha256_hash", "payload", "win.darkcloud", "None", "DarkCloud Stealer", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:05", "1601623", "75a68ccf94d77bd6b321a5aac66a93cf16624da85e14bb16458559434992a0be", "sha256_hash", "payload", "win.coinminer", "None", "Coinminer", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:04", "1601620", "4af56b9bfd7f7de86cc0b3b6a910c2ffb331f6c76e32104041c554c00409d296", "sha256_hash", "payload", "win.masslogger", "None", "MASS Logger", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:03", "1601617", "0e950d396f054459d624c7734c02e9357f2a0fa21bad98edc52d46169b3487eb", "sha256_hash", "payload", "win.masslogger", "None", "MASS Logger", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:01", "1601614", "560cb221607c3c5a2a2cfbf276cda17a9ef3dcea84c8ab2094edbb4184121a54", "sha256_hash", "payload", "win.rhadamanthys", "None", "Rhadamanthys", "", "95", "None", "None", "0", "Grim"
"2025-09-25 23:32:00", "1601611", "468b1a3d163c9123ff825af496e42cc29a7c8d2fd63bd5593f411f22150c76c8", "sha256_hash", "payload", "win.stealc", "None", "Stealc", "2025-09-26 23:30:50", "95", "None", "None", "0", "Grim"
"2025-09-25 23:31:59", "1601608", "dbab3fbea6138e57e996045a93a3105d86e5e659bbc311d71a4e7bcc698dc353", "sha256_hash", "payload", "win.vidar", "None", "Vidar", "2025-09-26 23:30:46", "95", "None", "None", "0", "Grim"
"2025-09-25 23:31:58", "1601605", "b085a54ff0c006b14309eb3edec70182ae7b036b15ccacb5b44dad1fcfd1c5b6", "sha256_hash", "payload", "win.vidar", "None", "Vidar", "2025-09-26 23:30:45", "95", "None", "None", "0", "Grim"
"2025-09-25 23:31:57", "1601602", "8e6b8cff477fe728413cd3547e19399053b80007d8a22280ae806a43c90e3d39", "sha256_hash", "payload", "win.guidloader", "None", "GUIDLOADER", "2025-09-26 23:30:44", "95", "None", "None", "0", "Grim"
"2025-09-25 23:31:56", "1601599", "ae9a6b6438f5d41b03219aa9e5ccfa77bd2fb0edbc39f4b6e98d28bbf7ea80e1", "sha256_hash", "payload", "win.owlproxy", "None", "Owlproxy", "2025-09-26 23:30:43", "95", "None", "None", "0", "Grim"
"2025-09-25 23:31:55", "1601596", "9f64cb8fde71c95ef227494e8e57ca897fcda3453156ba054689cfbe135fb208", "sha256_hash", "payload", "win.xworm", "None", "XWorm", "2025-09-26 23:30:42", "95", "None", "None", "0", "Grim"
"2025-09-25 23:31:53", "1601593", "a2e6cc6a5b6d0717fe70542d56aa5e201d4c5ad0cd82d8662d25ce2eae8c691e", "sha256_hash", "payload", "win.blackremote", "BlackRAT", "BlackRemote", "2025-09-26 23:30:41", "95", "None", "None", "0", "Grim"
# Number of entries: 134