A malware sample named EyePyramid has received considerable attention in Italy. The Italian police have arrested two suspects and published a preliminary report of the investigation. Talos was intrigued to determine how the malware managed to stay hidden under-the-radar for years. The sample is written in.Net and it is heavily obfuscated. The author paid attention to hiding the core functionalities by using either known.Net obfuscators or cryptography to hide crucial information such as URLs, email addresses and credentials.”]
Source: https://blog.talosintelligence.com/2017/01/Eye-Pyramid.html