Rhadamanthys Infostealer Uses Microsoft Management Console to Spread Malware - #Rhadamanthys
The Rhadamanthys Stealer malware has evolved into a sophisticated cyber threat, targeting various industries globally with a focus on the oil and gas sector. Emerging in 2022 and continuously updated, it now incorporates AI-powered OCR capabilities to extract sensitive data, including cryptocurrency wallet information from images. Distributed through phishing campaigns using tactics such as copyright infringement themes and vehicle incident lures, Rhadamanthys exploits social engineering and technical vulnerabilities to bypass security measures. Its latest versions, including 0.7.0 and beyond, showcase enhanced stealing capabilities, evasion tactics, and distribution methods, such as using Microsoft Management Console files. The malware's rapid evolution, availability as Malware-as-a-Service, and the developers' ongoing efforts to improve its functionality highlight the increasing sophistication of cyber threats and the critical need for robust, multi-layered cybersecurity measures across all industries.