News View Non-AMP

Trojan Malware Hits Crypto Wallets: What MetaMask, Coinbase and Other Users Need to Know

Published by
Anjali Belgaumkar

Microsoft has issued a warning about a new Trojan malware, StilachiRAT, which targets cryptocurrency wallet extensions on the Google Chrome browser. Discovered by Microsoft’s Incident Response team in November 2024, StilachiRAT is capable of stealing sensitive information, such as stored browser credentials, digital wallet data, clipboard content, and system details.

The malware affects 20 different crypto wallet extensions, including  Bitget Wallet, Trust Wallet, TronLink, MetaMask, TokenPocket, BNB Chain Wallet, OKX Wallet, Sui Wallet, Braavos – Starknet Wallet, Coinbase Wallet, Leap Cosmos Wallet, Manta Wallet, Keplr, Phantom, Compass Wallet for Sei, Math Wallet, Fractal Wallet, Station Wallet, ConfluxPortal, and Plug. While the malware has not yet been widely distributed, it poses a serious threat due to its stealthy methods of operation.

What Users Should Do

If you use crypto wallet extensions on Google Chrome, it’s crucial to be cautious. Microsoft recommends checking your browser plugins, clearing your browser history, and running antivirus scans. Users should also avoid downloading any suspicious files and ensure they are taking the necessary steps to secure their wallets.

How StilachiRAT Works

StilachiRAT uses various techniques to avoid detection and persist within the target system. One of the malware’s components, WWStartupCtrl64.dll, is responsible for gathering sensitive information, such as credentials stored in browsers and crypto wallets, making it a serious threat for anyone using these wallet extensions.

Microsoft has not yet identified the creators or origin of StilachiRAT, but has shared the findings as part of its ongoing efforts to monitor and address emerging cyber threats.

Protection Measures

Microsoft is providing mitigation guidance to help reduce the impact of StilachiRAT. The malware can be delivered through various vectors, so it is important to implement security measures to prevent compromise.

Anjali Belgaumkar

Writer by choice, CryptoCurrency Writer, and Researcher by chance. Currently, focusing on financial news and analysis, as well as cryptocurrency news and data. One may not call me a crypto “Enthusiast” but trust me I'm getting there.

Recent Posts

TRUMP Meme Coin Price Prediction 2025, 2026 – 2030: Will $TRUMP Price Hit $50?

Story Highlights The live price of the TRUMP crypto is . TRUMP price could reach…

April 24, 2025

Pi Coin Trading Suspended by BitMart, Delisted by Banxa: What’s Next for Pi Network Price?

Pi Coin is currently facing growing bearish sentiment, as it struggles to regain momentum after…

April 24, 2025

Ethereum Might Not Even Survive Next 10-15 Years – Says Cardano Founder Charles Hoskinson

Charles Hoskinson, the founder of Cardano and one of Ethereum’s early co-founders, has issued a…

April 24, 2025

April 25th SEC Crypto Roundtable: Paul Atkins to Address Broken Crypto Custody Rules

Following the success of its first session on April 11, the U.S. Securities and Exchange…

April 24, 2025

Why Is TRUMP Coin Going Up Today?

The TRUMP memecoin, linked to the U.S. President Donald Trump is making serious headlines after…

April 24, 2025

Binance Delists ALPACA, PDA, VIB, and WING Tokens

Binance has confirmed that it will delist and cease trading for all spot trading pairs…

April 24, 2025