win.redenergy_stealer (Back to overview)

RedEnergy Stealer

According to Zscaler ThreatLabz, RedEnergy stealer uses a fake update campaign to target multiple industry verticals and possesses the ability to steal information from various browsers, enabling the exfiltration of sensitive data, while also incorporating different modules for carrying out ransomware activities.The name of the malware was kept due to the common method names observed during the analysis.

2023-06-21ZscalerGurkirat Singh, Shatak Jain
Ransomware Redefined: RedEnergy Stealer-as-a-Ransomware attacks
RedEnergy Stealer

There is no Yara-Signature yet.