malware-exe-list.txt

## Yogesh Ingale
## Following are the well known executables, especially launchers of different malwares, to trigger various malicious tasks.
## These are files created by malwares to start/execute actual malicious activities.
## These are collected from good blogs of complete analysis from cyberswachhtakendra (Cert-In), carbon black, sophos, symantec, malwarebytes, kaspersky etc
## As of now, I don't know their hashes (in same format), so going to block those from running, if same name found.
## Please add new file entries in separate line when you'll know more malware executables.
## I will keep updating this txt file when I get new launchers/exe/bat of different malwares.

----------------------WannaCry Ransomware-------------------------------
tasksche.exe
taskdl.exe
taskse.exe
mssecsvc.exe
taskhsvc.exe

----------------------BadRabbit Ransomware------------------------------
install_flash_player.exe
dispci.exe
Windowsdispci.exe


-------------------------Cerber Ransomware---------------------------------
csrstub.exe
dinotify.exe
ndadmin.exe
setx.exe
rasdial.exe
RelPost.exe
ntkrnlpa.exe

---------------------PClock Ransomware------------------------------------
WinCL.exe


---------------------CrySis----------------------------------
crysis.exe
Tetris.exe

---------------------Adrozek Malware-------------------------
Audiolava.exe
QuickAudio.exe
Converter.exe

---------------------Lucifier Malware------------------------
spreadXfghij.exe
SMB.exe
svchostlong.exe

---------------------Snatch Ransomware----------------------
cplXen.exe


----------------------VictoryGate Botnet---------------------
jcmewjjky.exe
tpmvscugr.exe
ctfmon2.exe

-----------------------Maze Ransomware---------------------
sss.exe
adfind.exe
rclone.exe
csrss_tc.exe
avkwctl.exe
Invoice_29557473.exe

------------------------Clipsa Malware----------------------
condlg.exe
zcondlg.exe
coresys.exe
x.exe
xx.exe
xxx.exe
xxxxxxxx.exe
xcoresys.exe

-------------------------Win/Phorpiex Worm-------------------
windsrcn.exe
winmgr.exe
winsam.exe
winsrvc.exe

-------------------------Powerratankba Malware---------------
WIN_REG.exe


-------------------------BokBot Malware (Trojan)-------------
ruizlfjkex.exe

-----------------------NRS Miner Malware (Trojan)------------
Wininit.exe
tmpxx.exe
WUDHos tUpgradexx.exe
WUDHostUpgradexx.exe


----------------------SamSam Ransomware----------------------
prelecturedexe.exe
winnetuse.exe
ss2.exe
g04inst.bat
samsam.exe
selfdel.exe

-------------------------DNSpionage Malware------------------
svshost_serv.exe


---------------------------Triton Malware (Trojan)--------------------
trilog.exe

----------------------------kuik adware-----------------------
upp.exe


----------------------------Trojan Glupteba (Trojan)-----------
cloudnet.exe
csrss.exe
NvdUpd.exe

---------------------------Petya ransomware and variants-------
petwrap.exe

---------Adylkuzz-Cryptocurrency Mining Malware (Trojan)------
windriver.exe
wuauser.exe
msiexev.exe


----------------------------Nivdort Trojan--------------------
ekrpepkr.exe
sjhejkqavhna.exe
bklp39qp1syfg.exe
bispxdqwmc.exe
pouyn354hxzyfgxcnulx.exe
lx1ym3phmkfjprdqk.exe
pfmkybnb.exe
uceyyfn.exe

--------------------------Dorkbot Worm------------------------
facebook-profile-pic--JPEG.exe
facebook-pic00.exe
ozkqke.exe


---------------------Zero Access Trojan/Botnet---------------
Download Nokia Dongle.exe
Facebook Password Cracker.exe
autocad_2007_full_crack.exe


----------------------ProLock Ransomware---------------------
clean.bat
run.bat

----------------------Conti Ransomware-----------------------
conti.exe

##Major Ref: https://www.cyberswachhtakendra.gov.in/alerts.html