ProCC is an advanced persistent threat (APT) group with a suspected origin in Brazil, primarily motivated by cyber espionage and data theft. The group distinguishes itself through its consistent targeting of the hospitality sector and the use of email attachments to exploit specific vulnerabilities, notably CVE-2017-0199, to deploy custom Remote Access Trojans. ProCC's operational focus involves meticulous data collection, including information from clipboards and printer spoolers, and capturing screenshots on compromised systems.