HiddenTear
HiddenTear is open source ransomware. FlatChestWare derivative. Loli user. encryptAES SendPassword CreatePassword. Punycode C2.
Threat Profile
Type
Ransomware
Programming LanguageC#/.NET
C2 ProtocolHTTP
First Seen2015
Targets
Küresel
Purpose / Capabilities
- ransomware
C2 Servers 1
| Address | Port | Protocol | Status | Action |
|---|---|---|---|---|
endyou.xn--6frz82g
|
80 | HTTP | INACTIVE |
⚠ C2 addresses are shared solely for threat intelligence and defensive purposes. Unauthorized access to these addresses constitutes a criminal offense.
Research Reports (1)
HiddenTear -- endyou.xn--6frz82g Japonca Punycode C2, FlatChestWare Kullanıcı Loli PDB, encryptAES SendPassword | Yüksek
HiddenTear 937KB FlatWare.exe. endyou.xn--6frz82g listen.php Japonca Punycode C2. C Users Loli FlatChestWare PDB. encryptAES bytesToBeEncrypted SendPassword CreatePassword.
Read Report →