HiddenTear

HiddenTear is open source ransomware. FlatChestWare derivative. Loli user. encryptAES SendPassword CreatePassword. Punycode C2.

Threat Profile
Type Ransomware
Programming LanguageC#/.NET
C2 ProtocolHTTP
First Seen2015
Targets Küresel
Purpose / Capabilities
  • ransomware

C2 Servers 1

Address Port Protocol Status Action
endyou.xn--6frz82g
80 HTTP INACTIVE

⚠ C2 addresses are shared solely for threat intelligence and defensive purposes. Unauthorized access to these addresses constitutes a criminal offense.

Research Reports (1)

High

HiddenTear -- endyou.xn--6frz82g Japonca Punycode C2, FlatChestWare Kullanıcı Loli PDB, encryptAES SendPassword | Yüksek

HiddenTear 937KB FlatWare.exe. endyou.xn--6frz82g listen.php Japonca Punycode C2. C Users Loli FlatChestWare PDB. encryptAES bytesToBeEncrypted SendPassword CreatePassword.

Read Report →