Another tool set by the WindShift APT group is a second stage infection downloaded by WindTale malware.

Source: Dark Matter


Its main purpose is to take screenshots from the infected machine and send it a remote C&C every few seconds.


Links: