PhemedroneStealer2
PhemedroneStealer C# NET. WDSecureUtilities is a WD emulator. Firefox Key3Database ParseMasterKey. NtQuerySystemInformation.
Threat Profile
Type
Infostealer
Programming LanguageC#/.NET
C2 ProtocolHTTPS
First Seen2023
Targets
Küresel
Purpose / Capabilities
- Credential Stealer
No C2 servers have been identified for this family yet.
Research Reports (1)
Phemedrone -- WDSecureUtilities Windows Defender Gizlemesi, Firefox Key3Database ParseMasterKey, SHA256 Hash IOC | Yüksek
PhemedroneStealer 239KB WDSecureUtilities Windows Defender utility gizlemesi. Firefox Key3Database ParseMasterKey ParsePasswords. SHA256 config hash.
Read Report →