EncryptionSpyware
Spyware with embedded OpenSSL. Developer PDB: E:\Doc\My work (C++)\Encryption. Victim IP geolocation via api.2ip.ua/geo.json. BitBlt screenshot. WNetOpenEnumW network share enum. UuidCreate for victim HWID. RSA+AES+SHA crypto.
Threat Profile
Type
Infostealer
Programming LanguageC++
C2 ProtocolHTTPS
First Seen2023
Targets
Küresel
Purpose / Capabilities
- Infostealer/Spyware
No C2 servers have been identified for this family yet.
Research Reports (1)
EncryptionSpyware Encryption_Project -- E:Doc My-work Encryption PDB Developer Yolu, api.2ip.ua Kurban IP Cografya Profili, GetDesktopWindow BitBlt Ekran Yakalama, WNetOpenEnumW Ag Paylasim Tarama, UuidCreate HWID Kurban Kimlik | Yuksek
EncryptionSpyware 2cf96012 PE32 x86 1.1MB OpenSSL. E:\Doc\My work\Encryption PDB developer. api.2ip.ua kurban IP cografya profili. BitBlt ekran yakalama. WNetOpenEnumW ag paylasim tarama. UuidCreate HWID kurban kimlik.
Read Report →