QueenOfClubs
Description
(Kaspersky) In the course of our investigations, we discovered another malware strain that appeared to fill the same role as QueenOfHearts. This C++ backdoor also offers similar features as KingOfHearts, as well as the ability to execute arbitrary Powershell scripts. One minute difference is that in this one, screenshot capture capabilities are embedded directly into the program instead of being handled by a separate utility.
Names
| Name |
|---|
| QueenOfClubs |
| SlothfulMedia |
Category
Malware
Type
- Backdoor
- Info stealer
Information
- https://securelist.com/iamtheking-and-the-slothfulmedia-malware-family/99000/
- https://us-cert.cisa.gov/ncas/analysis-reports/ar20-275a
Malpedia
Other Information
Uuid
144bd3d1-e6b4-4014-ad2a-ea2d32170c51
Last Card Change
2021-04-24