PyMICROPSIA

Description

(Palo Alto) PyMICROPSIA has a rich set of information-stealing and control capabilities, including: • File uploading. • Payload downloading and execution. • Browser credential stealing. Clearing browsing history and profiles. • Taking screenshots. • Keylogging. • Compressing RAR files for stolen information. • Collecting process information and killing processes. • Collecting file listing information. • Deleting files. • Rebooting machine. • Collecting Outlook .ost file. Killing and disabling Outlook process. • Deleting, creating, compressing and exfiltrating files and folders. • Collecting information from USB drives, including file exfiltration. • Audio recording. • Executing commands.

Names

Name
PyMICROPSIA

Type

Reconnaissance
Backdoor
Info stealer
Keylogger
Credential stealer
Downloader

Information

https://unit42.paloaltonetworks.com/pymicropsia/

Other Information

Uuid

baa168d6-593b-486f-b52e-cc12182de231

Last Card Change

2021-01-06

Threat Intelligence Garden

Explorer

PyMICROPSIA

PyMICROPSIA

Description

Names

Category

Type

Information

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks