is a notorious Polish trojan/malware that gained infamy in the early 2010s. It was primarily distributed via instant messaging platforms like Gadu-Gadu (GG) and social media sites like Nasza Klasa . Threat Overview Classification: Trojan / Stealer.
It records keystrokes to capture usernames and passwords.
To steal login credentials, specifically for bank accounts, email, and social media. Technical Behavior
Stolen information is sent to a remote Command and Control (C2) server controlled by the attacker.
It accesses the victim's contact list (e.g., in Gadu-Gadu) and automatically sends the same malicious link to all contacts, rapidly spreading the infection. Removal & Protection