Microsoft has warned Google Chrome users about a new malware attack. The malware, called StilachiRAT, can steal sensitive data, including saved passwords, digital wallet details, and clipboard content. It can also collect system information and remain hidden inside a victim’s device.
Microsoft Uncovers New Malware ‘StilachiRAT’ Targeting Crypto Wallets
The Microsoft Incident Response Team discovered StilachiRAT in November 2024. The malware is designed to evade detection and persist inside an infected system.
It can steal login credentials from Chrome, scan for cryptocurrency wallets, and collect data stored in the clipboard. The malware can also monitor Remote Desktop Protocol (RDP) sessions, allowing hackers to move through a network unnoticed.
How the Malware Works?
StilachiRAT is a type of remote access trojan (RAT), which means it allows hackers to control an infected system from a remote location. It can connect to command-and-control (C2) servers and execute various commands.
These commands include clearing logs, restarting the system, modifying the registry, and running applications.
To avoid detection, the malware clears event logs, detects analysis tools, and uses sandbox-evading techniques.
It can also reinstall itself if removed, making it difficult to get rid of. Microsoft warns that even though the malware is not widespread yet, it has the potential to cause serious harm.
Also Read: Hackers Blackmail YouTubers To Spread Crypto-Mining Malware, Kaspersky Warns
No Identified Attackers Yet
Microsoft has not yet identified the hackers behind StilachiRAT. It is also unclear how the malware is being spread. However, experts warn that it could be installed through various methods, such as phishing emails, malicious websites, or infected software downloads.
Microsoft has advised users to take security precautions. They recommend installing antivirus software, enabling cloud-based anti-malware protection, and using anti-phishing tools. Keeping software and operating systems updated can also help prevent attacks.
Crypto Crime on the Rise
This warning comes at a time when cybercrime, especially crypto-related attacks, is increasing. Blockchain security firm CertiK reported that losses from crypto scams, hacks, and exploits totalled $1.53 billion in February 2025. A major $1.4 billion hack of the Bybit exchange contributed to most of these losses.
A report from blockchain analytics firm Chainalysis revealed that crypto crime is becoming more professional.
Hackers are now using AI-powered scams, stablecoin laundering, and organised cybercrime networks to steal billions. In the past year alone, illicit transactions in crypto reached $51 billion.
How to Stay Safe?
With cyber threats becoming more advanced, users must be extra cautious. Experts recommend avoiding suspicious emails and links, using strong, unique passwords, and enabling two-factor authentication wherever possible.
Microsoft is actively monitoring the StilachiRAT malware and working on security measures. However, users must take steps to protect themselves from cyber threats. Staying informed and following security best practices can help reduce the risk of falling victim to these attacks.
Also Read: Crypto Hackers Exploit Telegram Accounts to Spread Malware Through Fake Video Call Links