SYMBOLCOMMON_NAMEaka. SYNONYMS
vbs.lostkeys (Back to overview)

LOSTKEYS

Actor(s): Callisto


According to Google, LOSTKEYS is capable of stealing files from a hard-coded list of extensions and directories, along with sending system information and running processes to the attacker.

References
2025-05-07GoogleWesley Shields
COLDRIVER Using New Malware To Steal Documents From Western Targets and NGOs
LOSTKEYS

There is no Yara-Signature yet.