National Cyber Warfare Foundation (NCWF)

New Crypto Clipper Uses Windows Script Host and ActiveXObject for Remote Code Execution
0 user ratings		2026-06-19 06:05:14
milo
Red Team (CNA)

A novel Windows-based cryptocurrency clipper that has been active since February 2026 and leverages Windows Script Host (WScript) and ActiveXObject calls to achieve remote code execution and persistent, high-frequency data theft. The campaign stands out because it avoids traditional installers and exposed IP-based command-and-control (C2) infrastructure; instead, it bundles a portable Tor client. Routes all […]


The post New Crypto Clipper Uses Windows Script Host and ActiveXObject for Remote Code Execution appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.



Mayura Kathir

Source: gbHackers
Source Link: https://gbhackers.com/crypto-clipper-uses-windows-script/

Comments
new comment
Nobody has commented yet. Will you be the first?
  
Forum
Red Team (CNA)


Copyright 2012 through 2026 - National Cyber Warfare Foundation - All rights reserved worldwide.