New RAT Trojan InnfiRAT steals personal data and cryptocurrency

Brother

Brother

Professional
Messages
2,590
Reaction score
533
Points
113
217540206dde09a4f679e.png

A new RAT Trojan called InnfiRAT has been added to the list of dangerous cyber threats. Malware can steal personal data and information from cryptocurrency wallets.

Researchers at Zscaler claim that InnfiRAT is written in .NET. In addition to the ability to extract personal data, the Trojan is capable of downloading additional malicious components to the victim's device.

When launched for the first time, the malware checks whether it was launched from the% AppData% directory with the name NvidiaDriver.exe. Then the program sends a request to iplogger [.] Com / 1HEt47.

The next step is to check all running processes against the name NvidiaDriver.exe. If such a process is found, InnfiRAT terminates it. According to the Zscaler report, the malware tries to detect in various ways in

The command server (C&C) can send the Trojan various tasks that are more typical of backdoors: download and run certain files, collect data, steal cookies from browsers, steal Bitcoin wallet data, extract text files containing confidential data, and take screenshots and complete certain processes.
 
You must log in or register to reply here.

Similar threads

S
Ransomware: A Detailed Educational Explanation
Replies
2
Views
587
chushpan
chushpan
B
Multi Password Stealer 1.6 PREMIUM Files & TOOLS
Replies
2
Views
590
adrian paratta
A
S
Technical details of banking Trojans
Replies
0
Views
486
Student
S
S
Worse than a flood, scarier than a fire: How to prepare your backups for ransomware
Replies
0
Views
613
Student
S
B
Atmos Banking trojan 2025 Cracked
Replies
1
Views
496
whataburgerz
W
Back
Top