Summary: Researchers have identified a new remote access trojan (RAT) named NonEuclid, which enables attackers to control compromised Windows systems with advanced evasion techniques. This sophisticated malware has been actively promoted in underground forums and platforms like Discord and YouTube, indicating a concerted effort to distribute it as a crimeware solution.
Threat Actor: Cybercriminals | NonEuclid
Victim: Windows Users | Windows Users
Key Point :
- NonEuclid employs advanced evasion techniques, including antivirus bypass and privilege escalation.
- The RAT can encrypt files and rename them, effectively functioning as ransomware.
- It utilizes various anti-analysis techniques to avoid detection in virtual or sandboxed environments.
- Promotion of NonEuclid on underground forums and tutorial platforms highlights its appeal to cybercriminals.
Source: https://thehackernews.com/2025/01/researchers-expose-noneuclid-rat-using.html