The Zscaler ThreatLabz researchers have discovered a new type of malware called JanelaRAT that steals financial and cryptocurrency data from compromised Microsoft Windows systems in Latin America.
The tool uses a DLL script to load a ZIP archive from the attackers’ server and drop a batch file used to establish persistence.
It also employs string encryption and transitions into an idle state for long periods of time, making it difficult to detect and trace back to the original owner of the malware.
Users in LATAM are the target of this financial malwareAccording to the report, JanelaRat mainly targets financial and cryptocurrencies data from LATAM bank and financial institutions.
Its stealthy nature makes it particularly well-suited to capturing sensitive information from compromised victims
๐ Feeling the vibes?
Keep the good energy going by checking out my Amazon affiliate link for some cool finds! ๐๏ธ
If not, consider contributing to my caffeine supply at Buy Me a Coffee โ๏ธ.
Your clicks = cosmic support for more awesome content! ๐๐
Leave a Reply