CoinInsight360.com logo CoinInsight360.com logo
America's Social Casino
crypto.news 2025-03-18 08:17:17

Crypto users at risk as Microsoft uncovers StilachiRAT malware stealing wallet data

Microsoft has issued an alert about a new malware, StilachiRAT, that stealthily targets cryptocurrency wallets and steals information stored in browsers like Google Chrome. According to a Mar. 17 announcement StilachiRAT is a remote access trojan (RAT) designed to evade detection and exfiltrate sensitive data. StilachiRAT poses a serious threat to crypto users. Notably, the malware actively scans for crypto wallet extensions in Google Chrome, targeting at least 20 different wallets, including MetaMask, Trust Wallet, Phantom, Coinbase, BNB Chain, and Bitget Wallet, among others. List of wallets StilachiRAT can target | Source: Microsoft Once detected, the malware can extract stored credentials and configuration data, which, in turn, allows attackers to drain victims’ funds. Additionally, StilachiRAT monitors clipboard activity, searching for cryptocurrency keys and passwords that users may have copied, making it a direct threat to digital asset security. The malware allows attackers to remotely execute remote commands, clear logs, and manipulate registry settings to maintain access. It employs anti-forensic measures, such as detecting analysis tools and delaying execution, to bypass security monitoring. You might also like: Lazarus Group moves 400 ETH to Tornado Cash, expands malware campaign One of its key capabilities is system reconnaissance. StilachiRAT collects detailed information about the infected device, including OS details, hardware identifiers, and active applications. It also monitors Remote Desktop Protocol sessions, allowing attackers to impersonate users and move laterally across networks. Microsoft has not yet attributed the malware to a specific threat actor but warns that its stealth and advanced evasion tactics make it a serious risk. While it is not yet widespread, Microsoft has urged users to exercise caution. “Malware like StilachiRAT can be installed through multiple vectors; therefore, it is critical to implement security hardening measures to prevent the initial compromise,” the tech giant warned. Recommended precautions include downloading software only from official sources, enabling Microsoft Defender real-time protection, turning on cloud-delivered security, and using SmartScreen to block malicious websites. The crypto sector has long been targeted using increasingly sophisticated malware and cyberattacks. From wallet-draining trojans to phishing scams , attackers continue to evolve their tactics to exploit vulnerabilities. As previously reported by crypto.news, the $1.4 billion Bybit hack, the biggest crypto theft to date, allegedly started with malware disguised as a fake stock investment project. Late last year, on-chain investigator Taylor Monahan flagged a sophisticated social engineering scheme that pushed malware onto victims’ devices during a fake job interview process. Read more: Bybit’s $1.4b breach started with stock invest malware, investigation reveals

Loe lahtiütlusest : Kogu meie veebisaidi, hüperlingitud saitide, seotud rakenduste, foorumite, ajaveebide, sotsiaalmeediakontode ja muude platvormide ("Sait") siin esitatud sisu on mõeldud ainult teie üldiseks teabeks, mis on hangitud kolmandate isikute allikatest. Me ei anna meie sisu osas mingeid garantiisid, sealhulgas täpsust ja ajakohastust, kuid mitte ainult. Ükski meie poolt pakutava sisu osa ei kujuta endast finantsnõustamist, õigusnõustamist ega muud nõustamist, mis on mõeldud teie konkreetseks toetumiseks mis tahes eesmärgil. Mis tahes kasutamine või sõltuvus meie sisust on ainuüksi omal vastutusel ja omal äranägemisel. Enne nende kasutamist peate oma teadustööd läbi viima, analüüsima ja kontrollima oma sisu. Kauplemine on väga riskantne tegevus, mis võib põhjustada suuri kahjusid, palun konsulteerige enne oma otsuse langetamist oma finantsnõustajaga. Meie saidi sisu ei tohi olla pakkumine ega pakkumine