China-Linked ValleyRAT Malware Resurfaces with Advanced Data Theft Tactics

Researchers studying cybersecurity have discovered that a new campaign is using an updated strain of malware known as ValleyRAT.

Researchers from Zscaler ThreatLabz Muhammed Irfan V A and Manisha Ramcharan Prajapati stated, “In the most recent version, ValleyRAT introduced new commands, such as capturing screenshots, process filtering, forced shutdown, and clearing Windows event logs.”

In 2023, QiAnXin and Proofpoint first reported findings related to ValleyRAT, which was associated with a phishing campaign aimed at Chinese-speaking users and Japanese organizations. The campaign disseminated multiple malware families, including Purple Fox and Sainbox RAT read more China-Linked ValleyRAT Malware Resurfaces with Advanced Data Theft Tactics.

Get up to date on the latest cybersecurity news and enhance your knowledge of cybersecurity with our thorough coverage of the dangers, breaches, and solutions.

Leave a Reply

Your email address will not be published. Required fields are marked *