ClipboardClipper
PE32 clipboard hijacker. AddClipboardFormatListener API for clipboard monitoring. Crypto address swapping (Bitcoin/ETH/TRC20). High entropy (7.703) packed payload. Suspicious DOS stub. TLS directory. Console application.
Threat Profile
Type
Infostealer
Programming LanguageC/C++
C2 ProtocolLocal
First Seen2024
Targets
Küresel
Purpose / Capabilities
- Crypto Address Clipboard Swap
No C2 servers have been identified for this family yet.
Research Reports (1)
ClipboardClipper 52d0af7d -- AddClipboardFormatListener Pano Dinleme Kancasi, PE32 Console x86 1.8MB Yuksek Entropi Packed, DOS Stub Suspicious TLS Anti-Analiz | Orta
ClipboardClipper 52d0af7d PE32 console x86 1.8MB entropi 7.70 packed. AddClipboardFormatListener pano dinleme. DOS stub suspicious TLS anti-analiz. Kripto adres clipper.
Read Report →