As reported by HackRead, researchers have uncovered a sophisticated new Windows malware campaign that employs the Pulsar RAT and Stealerv37 malware, featuring a unique live chat interaction with victims.The discovered threat, identified by Point Wild's Lat61 Threat Intelligence Team, operates by hiding within a computer's memory, making it difficult for traditional antivirus software to detect. It utilizes a living-off-the-land technique (LOTL), hijacking trusted system tools like PowerShell and injecting malicious code into legitimate processes such as explorer.exe using a tool called Donut. The malware can disable Task Manager and User Account Control prompts to hinder defense. Its primary objective is theft, using Pulsar RAT for webcam and microphone access, and Stealerv37 to target cryptocurrency wallets, swap payment addresses, steal browser passwords and cookies, and harvest data from VPNs, developer tools, and gaming accounts. Stolen data is exfiltrated via Discord and Telegram.This campaign highlights the evolving nature of cybercrime, moving beyond static infections to dynamic operations where attackers actively engage with victims. Users are advised to monitor startup applications and implement two-factor authentication to mitigate risks.Source: HackRead
Get daily email updates
SC Media's daily must-read of the most current and pressing daily news
You can skip this ad in 5 seconds



