CryptBot (1b6fa662-556e-49ae-a420-41f7bfd36eb8)
CryptBot is an information-stealing malware first observed in 2019 that operates on Windows systems. Its capabilities include taking screenshots and identifying and collecting targeted data on victim systems, including credential data from web browsers.[ANYRUN CryptBot January 26 2023]
Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
---|---|---|---|---|
APT29 (4c3e48b9-4426-4271-a7af-c3dfad79f447) | Tidal Groups | CryptBot (1b6fa662-556e-49ae-a420-41f7bfd36eb8) | Tidal Software | 1 |