Skip to content
MalwareWiki

Malware

LOSTKEYS

According to Google, LOSTKEYS is capable of stealing files from a hard-coded list of extensions and directories, along with sending system information and running processes to the attacker.

LOSTKEYS is a VBScript malware family operated by Callisto.

Background

Google reports that LOSTKEYS can exfiltrate files matching a hard-coded set of extensions and directories, and additionally relays system details and the list of running processes back to the attacker.

Source: Malpedia (Fraunhofer FKIE).