Smart Contracts for C&C: How ClearFake Hid in Plain Sight on BSC Testnet

Threat actors exploited the EtherHiding technique to store ClearFake payload routing instructions within smart contracts on the BNB Smart Chain testnet, creating an immutable command-and-control infrastructure that cannot be taken down. The attack began with injected JavaScript on a compromised Swiss website that queried blockchain contracts to deliver malicious payloads. Victims passing anti-analysis checks were fingerprinted by operating system and routed to platform-specific ClickFix social engineering overlays. The campaign simultaneously deployed SectopRAT, a .NET-based remote access trojan capable of browser session hijacking, and ACRStealer, a C++ infostealer targeting credentials and cryptocurrency wallets. An on-chain execution tracker confirmed each compromise in real time. Four smart contracts shared a single deployer wallet, with the oldest deployed nearly a year before analysis, indicating a long-running, actively maintained operation.

Pulse ID: 6a15ba2632bd7e246e9c1250
Pulse Link: https://otx.alienvault.com/pulse/6a15ba2632bd7e246e9c1250
Pulse Author: AlienVault
Created: 2026-05-26 15:20:06

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#BlockChain #Browser #CandC #ClearFake #CyberSecurity #EtherHiding #InfoSec #InfoStealer #Java #JavaScript #NET #OTX #OpenThreatExchange #RAT #RemoteAccessTrojan #SocialEngineering #Trojan #bot #cryptocurrency #AlienVault

TONIGHT!
Join us for a Pub Night of C and C++ horror stories. Share your funniest and most frustrating experiences from the world of systems programming with others who understand the struggle.
 
Open to all experience levels.
Come for the laughs, stay for the community and conversation.
 
📆 Thursday, May 21, 2026
🕦 7-9 PM
📍Loose Goose Downtown (126 Ouellette Ave, Windsor, ON)
🎟️ RSVP atwww.hackf.org/events

#CandC++  #WindsorTech #WindsorEvents

Let's all take a moment to celebrate this underappreciated masterpiece.

#videogames #rts #commandandconquer #candc #kanelives!

Uuh, EA open sourced some of it‘s iconic Command & Conquer games.

#EA #CommandAndConquer #CAndC #OpenSource #GitHub #Games #GameDev #IndieGameDev #Gameing

#ArethaFraklin
#Clivilles' & #Cole
#ADeeperLove
#CandC

(B2 A Deeper Feeling Mix)

https://www.youtube.com/watch?v=8gIo_NmCYcU&list=RDQMjFVykNKVffQ&start_radio=1

Finished the #ShadowsOfTheHalflingHall #CastelsAndCrusades #CAndC adventure last night with my group.

I'm still really pleased with the game. Most of the players appreciate the simple resolution mechanic and how fast we can move through things.

I also came to realize that I tend to run most of my #TTRPG sessions much more old school than I initially realize.

I like to give them puzzles with no clear or set resolution and watch them come up with the cleverest solutions then let them make some rolls. They get so excited and it's a lot of work and planning off of my shoulders.

#OSR #GMLife