Phishing Campaign Delivering Three Fileless Malware - Fortinet
The malware specifically targets cryptocurrency wallets to drain funds.
Disguised as "activators" or "patches" for expensive software (e.g., Photoshop, Windows activators, or games). BitRat.rar
It can extract login credentials, passwords, and cookies from over 35 different browsers and 500 other programs.
Attackers typically disguise BitRAT as legitimate software to trick users into downloading and opening the .rar archive. Common delivery methods include: Sent as an "invoice" or "urgent document" attached
Be wary of archives that contain .exe , .scr , or .vbs files when you were expecting a simple document or image. Did you find a file with this name on your computer, or
Even if the malware steals your password, MFA can prevent attackers from accessing your accounts. BitRat.rar
Sent as an "invoice" or "urgent document" attached to an email.