Connect with us

Hi, what are you looking for?

Tech

Microsoft Issues Warning on StilachiRAT Malware Targeting Cryptocurrency Wallets

Microsoft
FILE PHOTO: A Microsoft logo is seen in Los Angeles, California, U.S. June 14, 2016. REUTERS/Lucy Nicholson

Microsoft has issued a warning to users about a newly identified malware called StilachiRAT. The company describes StilachiRAT as a remote access trojan (RAT) with advanced capabilities that allow it to evade detection and steal sensitive data.

StilachiRAT primarily targets cryptocurrency wallets, scanning for wallet extensions in Google Chrome. The malware is capable of identifying at least 20 different wallet extensions, including MetaMask, Trust Wallet, Phantom, Coinbase, BNB Chain, and Bitget Wallet. Once these wallet extensions are detected,

StilachiRAT extracts credentials and configuration details, enabling attackers to drain funds from victims’ wallets.

The malware also monitors clipboard activity, searching for cryptocurrency keys or passwords that users may have copied, making it a serious threat for those holding digital assets.

In addition to stealing data, StilachiRAT grants attackers the ability to execute remote commands, clear logs, and manipulate system registry settings to maintain persistent access to infected devices. It uses anti-forensic techniques to bypass security defenses, including identifying analysis tools and delaying execution.

One of the most concerning aspects of StilachiRAT is its ability to gather detailed information about infected devices, such as operating system data, hardware identifiers, and active applications. It also monitors Remote Desktop Protocol sessions, allowing attackers to impersonate users and potentially spread laterally across networks.

Although StilachiRAT is not yet widespread, Microsoft has stressed the importance of proactive defense to protect against this growing threat.

The company recommends several security measures, such as downloading software only from official sources, enabling Microsoft Defender real-time protection, turning on cloud-delivered security, and using SmartScreen to block malicious websites.

Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

ad

You May Also Like

Tech

Leading technology company, MTN Nigeria has proudly announced the rebranding of its fibre broadband service to FibreX, marking a significant stride in delivering next-generation...

News

Mark Zuckerberg, Chief Executive Officer of Meta Platforms Inc., sold over $733 million worth of company shares in the first quarter of 2025, just...

News

Improved efforts at collaboration among financial service providers, telecommunication operators, and tech Startups, with conscious effort geared at consumer awareness, have been proffered as...

News

Director General of the Manufacturers Association of Nigeria (MAN), Segun Ajayi-Kadir, has expressed deep concern over the recent tariff hikes introduced by U.S. President...