![]() The malware created using the PySilon builder was initially identified by NeikiAnalytics approximately one month ago, as shown below. PySilon v3.6, the most recent version, was released at the end of August 2023, boasting advanced malicious functionalities. The PySilon project (PySilon v1.0), featuring basic malware capabilities, was originally posted on GitHub in early December 2022. ![]() Figure 2 – PySilon RAT with Adobe Photoshop Icon After conducting an analysis, it was noticed that the PyInstaller malware executable was created utilizing an open-source GitHub project known as “PySilon,” a Remote Access Trojan (RAT). We presume that this executable comes from a phishing website. On September 13th, CRIL came across a PyInstaller file named “Adobe Photoshop.exe” on VirusTotal. The upward trend in these samples suggests a growing usage of PySilon RAT.įigure 1- Rise of PySilon RAT (Stats Source- VirusTotal) ![]() It has been noted that over 300 samples of this malware have been reported on VirusTotal since June 2023. CRIL has recently come across multiple instances of PySilon RAT, an open-source malware. Threat Actors (TAs) resort to open-source malware available on platforms like GitHub due to its convenience, advanced functionalities, and adaptability.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |