PhemedroneStealer2

PhemedroneStealer C# NET. WDSecureUtilities is a WD emulator. Firefox Key3Database ParseMasterKey. NtQuerySystemInformation.

Threat Profile
Type Infostealer
Programming LanguageC#/.NET
C2 ProtocolHTTPS
First Seen2023
Targets Küresel
Purpose / Capabilities
  • Credential Stealer
No C2 servers have been identified for this family yet.

Research Reports (1)

High

Phemedrone -- WDSecureUtilities Windows Defender Gizlemesi, Firefox Key3Database ParseMasterKey, SHA256 Hash IOC | Yüksek

PhemedroneStealer 239KB WDSecureUtilities Windows Defender utility gizlemesi. Firefox Key3Database ParseMasterKey ParsePasswords. SHA256 config hash.

Read Report →