Cointime

Cointime

Download App
iOS & Android

Microsoft warns of new remote access trojan targeting crypto wallets

Tech giant Microsoft has discovered a new remote access trojan (RAT) that targets crypto held in 20 cryptocurrency wallet extensions for the Google Chrome browser. 

Microsoft’s Incident Response Team said in a March 17 blog post that it first discovered the malware StilachiRAT last November and found it can steal information such as credentials stored in the browser, digital wallet information and data stored in the clipboard. 

After deployment, the bad actors can use StilachiRAT to siphon crypto wallet data by scanning for the configuration information for 20 crypto wallet extensions, including Coinbase Wallet, Trust Wallet, MetaMask and OKX Wallet. 

“Analysis of the StilachiRAT’s WWStartupCtrl64.dll module that contains the RAT capabilities revealed the use of various methods to steal information from the target system,” Microsoft said. 

Among its other capabilities, the malware can extract credentials saved in the Google Chrome local state file and monitor clipboard activity for sensitive information like passwords and crypto keys

It can also use detection evasion and anti-forensics features, like the ability to clear event logs and check for signs it’s running in a sandbox to block analysis attempts, according to Microsoft.

At the moment, the tech giant says it can’t pinpoint who is behind the malware but hopes that publicly sharing information will lower the number of people who might be snared. 

“Based on Microsoft’s current visibility, the malware does not exhibit widespread distribution at this time,” Microsoft said. 

“However, due to its stealth capabilities and the rapid changes within the malware ecosystem, we are sharing these findings as part of our ongoing efforts to monitor, analyze, and report on the evolving threat landscape.”

Microsoft suggests to avoid falling prey to malware; users should have antivirus software, cloud-based anti-phishing and anti-malware components on their devices. 

Losses to crypto scams, exploits and hacks totaled nearly $1.53 billion in February, with the $1.4 billion Bybit hack accounting for the lion’s share of losses, according to blockchain security firm CertiK.

Blockchain analytics firm Chainalysis said in its 2025 Crypto Crime Report that crypto crime has entered a professionalized era dominated by AI-driven scams, stablecoin laundering, and efficient cyber syndicates, with the past year witnessing $51 billion in illicit transaction volume. 

Comments

All Comments

Recommended for you

  • Bitwise believes 2026 will be a bull market for cryptocurrencies and has released ten predictions.

    Bitwise believes 2026 will be a year of a cryptocurrency bull market. From institutional adoption to regulatory progress, the current positive trends in cryptocurrency are too strong to be suppressed for a long time. Here are Bitwise's top ten predictions for the coming year.

  • China Properties Investment plans to purchase and hold BNB as a strategic reserve asset.

    China Real Estate Investment (00736) announced that in order to promote the diversification of the company's asset allocation and seize the opportunities of digital economy development, the company has resolved to use its own funds to purchase and hold BNB (Binance Coin) and other suitable digital assets in the open market, under the premise of complying with relevant laws, regulations, and risk control, as the company's strategic reserve assets. The company is optimistic about the long-term development prospects of the digital asset industry and has full confidence in the operating entity behind BNB, its technology research and development, ecological layout, and industry competitiveness, recognizing its long-term development potential and value growth space in the blockchain field.

  • Payment infrastructure company Speed1 raises $8 million in funding, led by Tether.

    payment infrastructure company Speed1 announced the completion of an $8 million financing round, led by Tether and participated by Ego Death Capital. The company is committed to building instant global settlement channels using the Bitcoin Lightning Network and stablecoins.

  • Visa begins supporting US financial institutions to settle transactions using USDC on Solana.

    Visa has started supporting U.S. financial institutions to use USDC on Solana for transaction settlements. Cross River Bank and Lead Bank are the first institutions to use this service. As a partner of the Circle Arc blockchain, Visa will also provide support after Arc goes live.

  • Bank of America survey: Kevin Hassett expected to lead the Federal Reserve

     Bank of America's December Global Fund Manager Survey shows that most investors expect U.S. President Trump to nominate White House economic advisor Kevin Hassett as the next Federal Reserve Chair. About 69% expect Hassett to be nominated, while only 4% mentioned Federal Reserve Governor Christopher Waller, and another 4% expect former Fed Governor Kevin Warsh. The survey was conducted before Trump told the media he preferred Hassett or Warsh to lead the Fed. Current Federal Reserve Chair Jerome Powell's term will end in May.

  • Singapore-based digital trade platform Olea completes $30 million Series A funding round.

    Singapore digital trade platform Olea has completed a $30 million Series A funding round, with investors including Banco Bilbao Vizcaya Argentaria (BBVA), XDC Network, theDOCK, and SC Ventures, a subsidiary of Standard Chartered Bank. The funds will be used to accelerate the deployment of AI and Web3 solutions in high-growth markets, strengthening embedded finance, risk analysis, and other products. Since its establishment in 2022, the Olea platform has been licensed by the Monetary Authority of Singapore (MAS) CMS and has provided over $3 billion in financing to more than 1,000 enterprises across more than 70 trade corridors.

  • BTC breaks through $87,000

    market shows BTC breaking through $87,000, currently at $86,986.63, with a 24-hour decline of 3.19%. The market is highly volatile, please manage your risk accordingly.

  • MEXC now supports USD1 (AB Core network).

    On December 16, AB DAO announced that MEXC has officially supported the deposit of USD1 (World Liberty Financial USD) on the AB Core network, and withdrawals will be opened after liquidity meets the platform requirements, further promoting the cross-platform circulation and use of USD1 within the AB ecosystem.

  • The US spot Bitcoin ETF saw a net outflow of $315.69 million yesterday.

     according to TraderT monitoring, the US spot Bitcoin ETF had a net outflow of 315.69 million USD yesterday.

  • This week, the US spot Ethereum ETF saw a net outflow of $224.94 million.

     according to TraderT monitoring, this week the US spot Ethereum ETF had a net outflow of 224.94 million USD.

Daily Must-Read

Popular Activities

RaveDAO at Terra Solis by Tomorrowland: A Female-Led Techno Night Where Web3 Culture Converges

RaveDAO at Terra Solis by Tomorrowland: A Female-Led Techno Night Where Web3 Culture Converges

April 30 - April 30
Dubai

Popular Tags

Cointime
News
Contents
RSS
Company