Spyware
DneSpy
DneSpy collects information, takes screenshots, and downloads and executes the latest version of other malicious components in the infected system.
DneSpy is a Windows spyware.
Background
DneSpy gathers data, captures screenshots, and retrieves and runs the newest builds of additional malicious components on the compromised host. It is built to consume a JSON-format “policy” file containing the commands it should run, and because the C&C server can revise and update this policy over time, dneSpy remains flexible and adaptable. The results of each command are compressed, encrypted, and sent back to the C&C server, qualities that make dneSpy a complete espionage backdoor.
Source: Malpedia (Fraunhofer FKIE).