 |
CYFIRMA ResearchAuthor: CYFIRMA
Cyber defenders, listen up! The CYFIRMA Research podcast has some juicy intel on the latest cyber threats that are lurking in the shadows. Tune in to this security briefing to stay on top of emerging threats and be ready to tackle digital risk like never before. Language: en-us Contact email: Get it Feed URL: Get it iTunes ID: Get it |
Listen Now...
CYFIRMA Research: CrySome RAT
Thursday, 9 April, 2026
CrySome RAT – Advanced Threat InsightCrySome RAT is a sophisticated .NET-based remote access trojan engineered for long-term persistence and stealth on Windows systems. It extends beyond typical malware by maintaining execution even after system resets, leveraging recovery partition abuse and offline registry manipulation to ensure continued presence.Beyond persistence, it delivers a full post-exploitation toolkit. It supports remote command execution, file exfiltration, process manipulation, and network pivoting via SOCKS and reverse proxy. With capabilities like AVKiller to disable security tools, HVNC for hidden remote control, keylogging, credential theft from Chromium-based browsers, and real-time screen, audio, and webcam surveillance, it provides attackers with deep visibility and control over compromised environments.Adding to the concern, it’s being openly marketed via crysome[.]net, lowering the barrier for wider adoption.Link to the Research Report: https://www.cyfirma.com/research/crysome-rat-an-advanced-persistent-net-remote-access-trojan/#MalwareAnalysis #CyberSecurity#ThreatIntel #RAT #CYFIRMA #CYFIRMAResearch #WindowsRAT #HVNC #InfoSec #ExternalThreatLandscapeManagement #ETLMhttps://www.cyfirma.com/
