Font size options
Increase or decrease the font size for this website by clicking on the 'A's.
Contrast options
Choose a color combination to give the most comfortable
contrast.
The malware attempts to connect to a remote server (Command & Control) to send your private data to the attacker. ⚠️ Indicators of Compromise (IoCs)
Strange files appearing in %AppData% or %Temp% directories.
If you haven't opened it, delete it immediately and empty your recycle bin.
The file is a suspicious archive often associated with malware distribution , specifically targeting users through social engineering or "cracked" software sites. 🛡️ Executive Summary
It frequently contains code designed to steal browser cookies , saved passwords , and crypto wallet data.
Once extracted, it often contains an .exe or .vbs file that "drops" additional malware.