- Joined
- Jan 8, 2019
- Messages
- 56,612
- Solutions
- 2
- Reputation
- 32
- Reaction score
- 100,454
- Points
- 2,313
- Credits
- 32,640
6 Years of Service
76%
About
A "Clipper" is a type of malware that targets cryptocurrency transactions. When users copy the address of a wallet that they intend to send Bitcoin to, the copied address is stealthily replaced by (you) the attacker's. This is to demonstrate the evolution of malware in the current crypto age. The script is currently undetected by VirusTotal, HybridAnalysis, MetaDefender, anyrun, etc.
Features
No external Python modules required
HIDE
AUTO STARTUP (REGISTRY ENTRY)
The script will add itself to startup through the registry to ensure that it runs persistently.
Disclaimer
This is intended for EDUCATIONAL PURPOSES , I am not reponsible for any malicious activity of others. For non technical users, the script is relatively harmless to test/run on your machine, however it is always good practice to use a Virtual Machine. For removal, you only need delete the script + the registry key located in HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run.