Skip to content

Malware Tracker

Tracking active malware infrastructure: C2 servers that malware phones home to, and distribution hosts that deliver payloads. Updated daily from sandbox analysis and community threat intel.

92
Families Tracked (7d)
1,685
Active C2 Hosts (7d)
8,122
Active Distribution Hosts (7d)

C2 Infrastructure Type (7d)

Hosting 88% (1,485)
ISP 10% (162)
Unknown 2% (26)
Business 1% (12)

Distribution Infrastructure Type (7d)

Hosting 89% (7,266)
ISP 10% (831)
Business 0% (14)
Education 0% (5)
Unknown 0% (5)
Government 0% (1)

C2 Hosting Countries (7d)

Country Hosts
  1. 1 🇺🇸 US 1,048
  2. 2 🇨🇳 CN 101
  3. 3 🇭🇰 HK 53
  4. 4 🇩🇪 DE 51
  5. 5 🇬🇧 GB 44
  6. 6 🇸🇨 SC 42
  7. 7 🇷🇺 RU 38
  8. 8 🇫🇷 FR 26
  9. 9 🇸🇬 SG 23
  10. 10 🇻🇳 VN 19
  11. 11 Other 240

C2 Hosting Providers (7d)

Provider Hosts
  1. 1 Cloudflare, Inc. 507
  2. 2 GNET INC. 200
  3. 3 DigitalOcean, LLC 76
  4. 4 Shenzhen Tencent Computer Systems Company Limited 38
  5. 5 Hangzhou Alibaba Advertising Co.,Ltd. 31
  6. 6 Hetzner Online GmbH 26
  7. 7 Omegatech LTD 21
  8. 8 Amazon.com, Inc. 19
  9. 9 CTG Server Limited 18
  10. 10 HostPapa 16
  11. 11 Other providers 733

Distribution Countries (7d)

Country Hosts
  1. 1 🇺🇸 US 4,379
  2. 2 🇩🇪 DE 1,742
  3. 3 🇨🇳 CN 504
  4. 4 🇬🇧 GB 347
  5. 5 🇨🇾 CY 212
  6. 6 🇪🇸 ES 175
  7. 7 🇫🇷 FR 94
  8. 8 🇸🇬 SG 82
  9. 9 🇮🇳 IN 43
  10. 10 🇮🇹 IT 37
  11. 11 Other 507

Distribution Providers (7d)

Provider Hosts
  1. 1 Cloudflare, Inc. 3,003
  2. 2 IONOS SE 1,602
  3. 3 CHINA UNICOM China169 Backbone 432
  4. 4 Wildcard UK Limited 255
  5. 5 Hostinger International Limited 212
  6. 6 AIRE NETWORKS DEL MEDITERRANEO SL UNIPERSONAL 158
  7. 7 Oracle Corporation 147
  8. 8 Amazon.com, Inc. 138
  9. 9 Namecheap, Inc. 127
  10. 10 Google LLC 115
  11. 11 Other providers 1,933

All Tracked Malware (7d)

1–25 of 92 families
AsyncRAT 454 C2 · Jul 13, 2026 VShell 240 C2 · Jul 13, 2026 Quasar RAT 138 C2 · Jul 13, 2026 Remcos 95 C2 · Jul 13, 2026 Cobalt Strike 70 C2 · Jul 13, 2026 XWorm 50 C2 · Jul 13, 2026 Aisuru 47 C2 · Jul 13, 2026 Vidar 47 C2 · Jul 13, 2026 DCRat 36 C2 · Jul 13, 2026 Mirai 25 C2 · Jul 13, 2026 AdaptixC2 21 C2 · Jul 12, 2026 Kimwolf 20 C2 · Jul 13, 2026 StealC 19 C2 · Jul 13, 2026 ValleyRAT 19 C2 · Jul 13, 2026 NonEuclid RAT 18 C2 · Jul 13, 2026 Clickfix 16 C2 · Jul 13, 2026 Agent Tesla 15 C2 · Jul 11, 2026 AIRASHI 15 C2 · Jul 13, 2026 Overlord RAT 14 C2 · Jul 13, 2026 Nanocore RAT 13 C2 · Jul 12, 2026 Remus 10 C2 · Jul 13, 2026 Havoc 9 C2 · Jul 13, 2026 Meterpreter 9 C2 · Jul 13, 2026 Pikabot 9 C2 · Jul 10, 2026 RatonRAT 9 C2 · Jul 13, 2026

Recent Research

We appreciate you

Derp wouldn't exist without the work these projects do for the security community. We rely on their data sources to improve the quality and depth of what we publish. Thank you, we're genuinely grateful.