/NekoClient

Deobfuscated June 2023 CurseForge malware ("fractureiser") stage 3 payload

Primary LanguageJava

NekoClient

It appears that the attacker behind CurseForge's June 2023 malware incident posted a deobfuscated version of their malware by accident. Here it is on Github for public research purposes.

No, I am not the author of this, nor am I responsible for infecting your servers.