""One of the key differences between these trojans is that JanelaRAT uses a custom title bar detection mechanism to identify desired websites in victims' browsers and perform malicious actions.""
""Telemetry data gathered by the Russian cybersecurity vendor shows that as many as 14,739 attacks were recorded in Brazil in 2025 and 11,695 in Mexico.""
""Upon execution, the installer initiates a multi-stage infection process using orchestrating scripts written in Go, PowerShell, and batch.""
JanelaRAT, a modified version of BX RAT, targets banks in Latin America, particularly in Brazil and Mexico. It steals financial and cryptocurrency data, tracks mouse inputs, logs keystrokes, takes screenshots, and collects system metadata. The malware uses a custom title bar detection mechanism to identify specific websites. In 2025, Brazil recorded 14,739 attacks, while Mexico had 11,695. JanelaRAT is distributed via rogue MSI installer files and employs a multi-stage infection process using scripts in Go, PowerShell, and batch to execute its payload.
Read at The Hacker News
Unable to calculate read time
Collection
[
|
...
]