Content by Microsoft Defender Security Research Team and Microsoft Defender Experts (1)

Crypto Clipper uses Tor and worm-like propagation for persistence and control

by Microsoft Defender Security Research Team and Microsoft Defender Experts
Microsoft Defender Security Research Team and Microsoft Defender Experts break down a Windows crypto-clipper campaign that uses a bundled Tor proxy and worm-like USB propagation to maintain persistence, steal seed phrases and private keys from the clipboard, exfiltrate screenshots, and accept remote tasking via an EVAL-based backdoor.
News

End of content

Rejoining the server...

Rejoin failed... trying again in seconds.

Failed to rejoin.
Please retry or reload the page.

The session has been paused by the server.

Failed to resume the session.
Please reload the page.