Prinz Eugen is a newly identified ransomware group operating outside the RaaS ecosystem, gaining initial access via stolen RDP credentials and abusing RemotePC, a legitimate remote management tool, for persistence and lateral movement. The group’s Go-based encryptor targets recently modified files first to maximize operational disruption, and deliberately omits ransom notes to delay victim detection and extend dwell time. Standard Bank has been confirmed as a named victim, and Malwarebytes ThreatDown has published IOCs.