Daily newsMarkets

Microsoft Warns of New Trojan Stealing Crypto Wallet Data

Byte by byte

Microsoft has identified a new remote access trojan (RAT), StilachiRAT, designed to steal cryptocurrency stored in 20 different wallet extensions for Google Chrome.

The company’s Incident Response Team revealed in a March 17 blog post that the malware was first detected in November 2024. StilachiRAT is capable of extracting sensitive data, including credentials stored in browsers, digital wallet details, and clipboard information.

How StilachiRAT Attacks Crypto Wallets

Once deployed, the malware scans device settings for installed crypto wallet extensions, including Coinbase Wallet, Trust Wallet, MetaMask, and OKX Wallet. If detected, attackers can siphon valuable crypto data.

Microsoft’s analysis of the malware’s WWStartupCtrl64.dll module uncovered several techniques used to compromise target systems. The malware can:

A Growing Cyber Threat

While Microsoft has yet to identify the perpetrators, it hopes that publicizing its findings will help minimize potential victims.

“Based on our current visibility, the malware does not exhibit widespread distribution at this time,” Microsoft stated. “However, due to its stealth capabilities and the rapid evolution of the malware ecosystem, we are sharing these findings as part of our ongoing efforts to monitor, analyze, and report on emerging threats.”

Protecting Against Crypto Malware

StilachiRAT Attacks Crypto Wallets (Source: Bleeping Computer)

StilachiRAT Attacks Crypto Wallets (Source: Bleeping Computer)

Microsoft advises users to protect themselves by utilizing antiviruss software and enabling cloud-based anti-phishing and anti-malware features.

The emergence of StilachiRAT highlights the increasing risks within the crypto space. Losses to scams, exploits, and hacks reached $1.53 billion in February alone, with the Bybit hack accounting for $1.4 billion of that sum, according to blockchain security firm CertiK.

Meanwhile, Chainalysis’ 2025 Crypto Crime Report underscores the growing sophistication of cybercrime, with AI-driven scams, stablecoin laundering, and well-organized cyber syndicates contributing to a record $51 billion in illicit transaction volume over the past year.

As the threat landscape evolves, staying vigilant and employing robust security measures is more critical than ever for crypto users.

You May Also Like

US Bitcoin ETFs Face Record $937.9 Million Outflows in a Single Day

Ledger Lynx
This image has an empty alt attribute; its file name is AD_4nXcuo0i4xjFb32_X2PcCHRCwSG9VUBVgpKc_KsY-KrY59SMPzMTWCA9bS2f9ggzlgnJTftSLLSZjHhKyM29B5S47zWq5yXIefyDnUSROs7ZSu3q2_92U0D2OcYt4l1wR7MxK_V70

Metis Launches Hyperion Forum: A Community Hub for Collaboration and Campaigns

Meta Maven

US Senate Passes Historic GENIUS Act: Revolutionary Stablecoin Regulation Framework

BlockScout