Highly Dangerous New Malware Can Destroy Windows PCs, Steal Passwords And Crypto

A dangerous new strain of malware is being used by cybercriminals for infecting susceptible Windows computers in order to steal passwords and cryptocurrency and exhort ransom from affected users.

The Neptune RAT (remote access trojan) is being called the “most Advanced RAT” and is now circulating online. According to reports, the RAT is extremely sophisticated with system destruction capabilities and—after taking over a Windows PC—can quietly steal credentials and spy on its users, all while avoiding detection by even many advanced antivirus software.

Tracked down by CYFIRMA security specialists, the Neptune RAT is being disseminated on social media sites like YouTube, Telegram, and GitHub.

The malware developer—allegedly linked to a “Mason Team”—has uploaded demos to YouTube. The malware builder is available for free on their GitHub page, but it is hinted that a more powerful version is protected by a paywall.

Notably, RATs are malware designed to allow an attacker to take over a vulnerable system remotely. Once the RAT is running on a compromised system, the attacker can give it orders and steal data, credentials, and more. 

The Neptune RAT can cause serious danger with its features:

Cryptocurrency Theft: The Neptune RAT comes with a crypto clipper that can transfer your money directly into the hacker’s pocket by replacing your cryptocurrency wallet address with theirs. 

Stealing Passwords: It possesses a password stealer that can retrieve login credentials from more than 270 apps, well-known browsers like Chrome, and system vaults, granting hackers access to almost everything, from your financial information to social media accounts.

Ransomware: The ransomware feature locks the victim’s files and demands a ransom to unlock them. 

Turning Off Antivirus: It can even turn off antivirus software, which means even advanced antivirus software and system defenders are rendered useless.

Spying: The Neptune RAT enables real-time screen monitoring, transforming your device into an open window that allows hackers to spy on your activities. 

System Destruction: If the attacker chooses to use the destruction option, the malware might totally destroy your PC.

Cybersecurity specialists are currently finding it challenging to analyse this malware, and it also has sophisticated mechanisms to evade detection by antivirus, so it may be some time before a sure-shot protection can be devised.

With GitHub, Telegram, and YouTube spreading the Neptune RAT, users should exercise caution while downloading files from these platforms and clicking on links, especially if such links are being shared by senders you don’t recognise.

Identity theft protection is a useful option, since it can assist you in recovering lost money following an attack and even provide insurance in dire circumstances of PC replacement.