{"id":17889,"date":"2025-03-18T23:48:30","date_gmt":"2025-03-18T23:48:30","guid":{"rendered":"https:\/\/dogewisperer.com\/?p=17889"},"modified":"2025-03-18T23:48:30","modified_gmt":"2025-03-18T23:48:30","slug":"what-is-stilachirat-microsoft-exposes-new-crypto-targeting-malware","status":"publish","type":"post","link":"https:\/\/dogewisperer.com\/?p=17889","title":{"rendered":"What Is StilachiRAT? Microsoft Exposes New Crypto-Targeting Malware"},"content":{"rendered":"<div>\n<p>In a 17 March 2025 \u201c<a href=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2025\/03\/17\/stilachirat-analysis-from-system-reconnaissance-to-cryptocurrency-theft\/\" target=\"_blank\" rel=\"nofollow\">incident response,<\/a>\u201d Microsoft revealed that it uncovered a novel remote access trojan (RAT) or StilachiRAT that can steal information from the target system, such as digital wallet information.<\/p>\n<p>According to Microsoft, key capabilities of StilachiRAT includes digital wallet targeting. The malware can scan for configuration data of 20 different cryptocurrency wallet extensions for the Google Chrome browser.<\/p>\n<p>\u201cStilachiRAT targets a list of specific cryptocurrency wallet extensions for the Google Chrome browser,\u201d said Microsoft.<\/p>\n<blockquote class=\"twitter-tweet\" data-width=\"500\" data-dnt=\"true\">\n<p lang=\"en\" dir=\"ltr\">Microsoft Incident Response researchers uncovered a novel remote access trojan (RAT) that demonstrates sophisticated techniques to evade detection, persist in the target environment, and exfiltrate sensitive data. <a href=\"https:\/\/t.co\/MJARVBz2zd\" target=\"_blank\" rel=\"nofollow\">https:\/\/t.co\/MJARVBz2zd<\/a><\/p>\n<p>\u2014 Microsoft Threat Intelligence (@MsftSecIntel) <a href=\"https:\/\/twitter.com\/MsftSecIntel\/status\/1901680503968690357?ref_src=twsrc%5Etfw\" target=\"_blank\" rel=\"nofollow\">March 17, 2025<\/a><\/p>\n<\/blockquote>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p><strong>Explore<\/strong>:\u00a0<a class=\"general-link\" href=\"https:\/\/99bitcoins.com\/cryptocurrency\/next-1000x-crypto\/\" rel=\"\">Next 1000X Crypto: 10+ Crypto Tokens That Can Hit 1000x in 2025<\/a><\/p>\n<h2>StilachiRAT\u2019s Popular Targets: Bitget, OKX, Coinbase, BNB Chain<\/h2>\n<p>First identified by Microsoft\u2019s Incident Response Team in November 2024, StilachiRAT is a sophisticated malware capable of infiltrating devices, stealing sensitive data, and evading detection. It targets over 20 cryptocurrency wallet extensions on Google Chrome, including popular wallets such Bitget, MetaMask, BNB Chain, OKX, Coinbase and more.<\/p>\n<p>Microsoft said that StilachiRAT collects comprehensive system information, including operating system (OS) details, hardware identifiers, camera presence, active Remote Desktop Protocol (RDP) sessions, and running graphical user interface (GUI) applications, allowing detailed profiling of the target system.<\/p>\n<blockquote class=\"twitter-tweet\" data-width=\"500\" data-dnt=\"true\">\n<p lang=\"en\" dir=\"ltr\"><img decoding=\"async\" src=\"https:\/\/s.w.org\/images\/core\/emoji\/15.0.3\/72x72\/1f6a8.png\" alt=\"\ud83d\udea8\" class=\"wp-smiley\" style=\"height: 1em; max-height: 1em;\"> New Malware Alert: Your Crypto Wallets Might Be at Risk! <img decoding=\"async\" src=\"https:\/\/s.w.org\/images\/core\/emoji\/15.0.3\/72x72\/1f6a8.png\" alt=\"\ud83d\udea8\" class=\"wp-smiley\" style=\"height: 1em; max-height: 1em;\"><\/p>\n<p>Microsoft just uncovered a sneaky new malware called StilachiRAT\u2014and it\u2019s coming straight for your crypto. <img decoding=\"async\" src=\"https:\/\/s.w.org\/images\/core\/emoji\/15.0.3\/72x72\/1f440.png\" alt=\"\ud83d\udc40\" class=\"wp-smiley\" style=\"height: 1em; max-height: 1em;\"><\/p>\n<p>Here\u2019s what it does:<br \/><img decoding=\"async\" src=\"https:\/\/s.w.org\/images\/core\/emoji\/15.0.3\/72x72\/1f539.png\" alt=\"\ud83d\udd39\" class=\"wp-smiley\" style=\"height: 1em; max-height: 1em;\"> Scans your device for 20+ crypto wallet extensions (including MetaMask, Coinbase\u2026 <a href=\"https:\/\/t.co\/BkUwgJPCL1\" target=\"_blank\" rel=\"nofollow\">pic.twitter.com\/BkUwgJPCL1<\/a><\/p>\n<p>\u2014 Ricards (@Ricardswo) <a href=\"https:\/\/twitter.com\/Ricardswo\/status\/1901884556875071737?ref_src=twsrc%5Etfw\" target=\"_blank\" rel=\"nofollow\">March 18, 2025<\/a><\/p>\n<\/blockquote>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>StilachiRAT is just one example of how cybercriminals are adapting their methods to exploit vulnerabilities in the crypto ecosystem. In 2024 alone, scammers stole approximately $9.9 billion in on-chain cryptocurrencies\u2014a 40% increase compared to the previous year.<\/p>\n<p>However, Microsoft has not yet attributed StilachiRAT to a specific threat actor or geolocation. But the company continues to monitor information on the delivery vector used in these attacks.<\/p>\n<p>\u201cMalware like StilachiRAT can be installed through multiple vectors; therefore, it is critical to implement security hardening measures to prevent the initial compromise,\u201d warned Microsoft.<\/p>\n<p><strong>Explore<\/strong>:\u00a0<a class=\"general-link\" href=\"https:\/\/99bitcoins.com\/cryptocurrency\/best-meme-coin-icos\/\" rel=\"\">Best Meme Coin ICOs to Invest in March 2025<\/a><\/p>\n<p><span style=\"font-weight: 400\">    <\/p>\n<div class=\"nnbtc-key-takeaways\">\n<h3 class=\"nnbtc-key-takeaways__title\">Key Takeaways<\/h3>\n<p><span style=\"font-weight: 400\">    <\/p>\n<ul class=\"nnbtc-key-takeaways__list\">\n        <\/ul>\n<p><\/span><\/p>\n<p><span style=\"font-weight: 400\">    <\/p>\n<li class=\"nnbtc-key-takeaways__list-item\">\n        <\/li>\n<p><\/span><span style=\"font-weight: 400\">Microsoft has issued a stark warning to cryptocurrency users following the discovery of a new malware, StilachiRAT, which poses a significant threat to digital asset security.<\/span><\/p>\n<p><span style=\"font-weight: 400\"><br \/>\n    <\/span><\/p>\n<p><span style=\"font-weight: 400\">    <\/p>\n<li class=\"nnbtc-key-takeaways__list-item\">\n        <\/li>\n<p><\/span><span style=\"font-weight: 400\"> First identified by Microsoft\u2019s Incident Response Team in November 2024, StilachiRAT is a sophisticated malware capable of infiltrating devices, stealing sensitive data, and evading detection.<\/span><\/p>\n<p><span style=\"font-weight: 400\"><br \/>\n    <\/span><\/p>\n<p><span style=\"font-weight: 400\"><br \/>\n    <\/span><\/p>\n<p><span style=\"font-weight: 400\">    <\/span><\/p>\n<\/div>\n<p>    <\/span><\/p>\n<p>The post <a href=\"https:\/\/99bitcoins.com\/guides\/what-is-stilachirat-microsoft-exposes-new-crypto-targeting-malware\/\">What Is StilachiRAT? Microsoft Exposes New Crypto-Targeting Malware<\/a> appeared first on <a href=\"https:\/\/99bitcoins.com\/\">99Bitcoins<\/a>.<\/p>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>In a 17 March 2025 \u201cincident response,\u201d Microsoft revealed that it uncovered a novel remote access trojan (RAT) or StilachiRAT that can steal information from the target system, such as digital wallet information. According to Microsoft, key capabilities of StilachiRAT includes digital wallet targeting. The malware can scan for configuration data of 20 different cryptocurrency [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"iawp_total_views":0,"footnotes":""},"categories":[2],"tags":[3,4,5],"class_list":["post-17889","post","type-post","status-publish","format-standard","hentry","category-news","tag-crypto","tag-doge","tag-news"],"_links":{"self":[{"href":"https:\/\/dogewisperer.com\/index.php?rest_route=\/wp\/v2\/posts\/17889","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/dogewisperer.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/dogewisperer.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/dogewisperer.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/dogewisperer.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=17889"}],"version-history":[{"count":0,"href":"https:\/\/dogewisperer.com\/index.php?rest_route=\/wp\/v2\/posts\/17889\/revisions"}],"wp:attachment":[{"href":"https:\/\/dogewisperer.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=17889"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/dogewisperer.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=17889"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/dogewisperer.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=17889"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}