Threat Research

    Operation Endgame Quakes Rhadamanthys

    Rhadamanthys malware has evolved considerably, showcasing continuous advancements in cybercriminal tactics. Initially discovered in 2022, it began as a sophisticated information stealer targeting credentials, financial data, and system details....
    11/14/2025  0
    Read More »

    ALCATRAZ Obfuscated DOUBLELOADER Backdoor

    "ALCATRAZ Obfuscated DOUBLELOADER Backdoor" is a technical analysis detailing a newly identified malware family called DOUBLELOADER, observed in conjunction with the RHADAMANTHYS infostealer. The malware is notable for using ALCATRAZ, an open-source obfuscator originally from the game hacking community but now adopted in cybercrime and targeted attacks....
    6/3/2025  0
    Read More »

    Discovery of Previously Unknown Loader

    A new loader has been identified leveraging the Pascal scripting engine in Inno Setup. It is used to distribute infostealers such as LummaC2, DeerStealer, Rhadamanthys, and StealC. Typically spread via fake application websites, the loader features anti-VM capabilities, XOR-based string encryption, and retrieves payloads from TinyURL using an authentication token....
    5/5/2025  0
    Read More »
    Looking for Something?
    Threat Research Categories:
    Tags

    Privacy & Security StatementTerms & Conditions
    Copyright © 2026 by Gurucul - All rights reserved.