Qwixxrat

Malware updated 4 months ago (2024-05-04T17:33:45.090Z)

Download STIX

Preview STIX

QwixxRAT is a new form of malware that emerged in August 2023, as reported by SC Magazine and The Hacker News. This information-stealing software has been actively promoted on platforms like Discord and Telegram by threat actors. It's part of an ongoing malicious campaign alongside the deployment of another Remote Access Trojan (RAT) known as NetSupport Manager. The QwixxRAT malware has a wide range of capabilities, making it a significant threat to users' privacy and data security. According to a report from Uptycs, this malware can exfiltrate browser data, keystrokes, screenshots, credit card details, and data from applications like Telegram and Steam. Additionally, it features environment checking and sleep functionality, which are tactics designed to bypass detection mechanisms, thereby increasing its potential for damage. This new wave of malware attacks, especially with the emergence of sophisticated tools like QwixxRAT, emphasizes the need for increased vigilance and robust cybersecurity measures. Users should be wary of suspicious downloads, emails, or websites, as these are common channels for malware infection. Organizations, too, should ramp up their security protocols to protect against such threats, given the severity of the potential impact on operations and sensitive data.

Description last updated: 2024-05-04T16:45:44.649Z

What's your take? (Question 1 of 3)

Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.

Aliases We are not currently tracking any aliases

Miscellaneous Associations

Other elements of context that could aid in the identification of relevance

Discord

Rat

Malware

Analyst Notes & Discussion

Be the first to leave your mark here! Log in to share your views and vote.

Source Document References

Information about the Qwixxrat Malware was read from the documents corpus below. This display is limited to 20 results, create a free account to see more

Source Link	CreatedAt	Title
Securityaffairs	a year ago	Security Affairs newsletter Round 433 by Pierluigi Paganini
CERT-EU	a year ago	Latin America fintechs targeted by novel JanelaRAT malware
CERT-EU	a year ago	The Week in Security: Researchers hack 'unbreakable' card-shuffling hardware, Discord.io shut after breach
CERT-EU	a year ago	Data exfiltration tools by APT31 group detailed
CERT-EU	a year ago	Infostealers expose 100K hackers' computers
CERT-EU	a year ago	New QwixxRAT emerges, NetSupport Manager RAT deployed in new campaign
CERT-EU	a year ago	Over 100K hackers fall victim to infostealer malware
CERT-EU	a year ago	Updated Raccoon Stealer better evades detection
CERT-EU	a year ago	LolekHosted seized, five admins arrested following police operation
CERT-EU	a year ago	New QwixxRAT Trojan Spreads Through Messaging Apps
Securityaffairs	a year ago	QwixxRAT, a new Windows RAT appears in the threat landscape