Crypto users at risk as Microsoft uncovers StilachiRAT malware stealing wallet data

Microsoft has emitted an alert on a new malware, Stilachirate, which stealthily targets cryptocurrency wallets and steals information stored in browsers like Google Chrome.

According to a March 17 announcement Stilachirat is a Trojan (rat) of remote access designed to escape the detection and exfilting of sensitive data.

Stilachirat represents a serious threat to crypto users. In particular, malware is actively scanning for cryptographic wallet extensions in Google Chrome, targeting at least 20 different portfolios, notably Metamask, Trust Ballet, Phantom, Coinbase, BNB Chain and Bitget Wallet, among others.

Once detected, malware can extract stored identification information and configuration data, which, in turn, allows attackers to drain the victims’ funds.

In addition, Stilachirat monitors the activity of the clipboard, looking for cryptocurrency keys and passwords that users may have copied, making it a direct threat to the safety of digital assets.

Malware allows attackers to carry out remote controls remotely, erase the newspapers and handle the registry parameters to maintain access. It employs anti-french measures, such as detecting analysis tools and the delay in execution, to circumvent security monitoring.

One of its main capacities is system recognition. Stilachirat collects detailed information on the infected device, including the details of the operating system, hardware identifiers and active applications. He also monitors the remote office protocol sessions, allowing attackers to identify users and move laterally on the networks.

Microsoft has not yet attributed malware to a specific threat player, but warns that his furtive tactics and advanced escape make it a serious risk.

Although it has not yet been widespread, Microsoft has urged users to be cautious.

“Malventy software like Stilachirat can be installed via several vectors; therefore, it is essential to implement safety hardening measures to prevent the initial compromise,” warned the technology giant.

The recommended precautions include downloading the software only from official sources, activation of Microsoft Defender’s real -time protection, activation of the security delivered by the cloud and the use of smartscreen to block malicious websites.

The cryptography sector has long been targeted using malicious software and increasingly sophisticated cyber attacks. Trojan horses with portfolio drainage in Phishing scamsattackers continue to evolve their tactics To exploit vulnerabilities.

As indicated above by Crypto.News, the hacking of $ 1.4 billion, the largest crypto flight to date, would have started with malware disguised as a false investment project in stock.

At the end of last year, the Taylor Monahan channel investigator reported A sophisticated social engineering scheme that pushed malicious software on victims’ devices during a false job interview process.