Rhadamanthys malware has expanded its toolkit with new tools like Elysium Proxy Bot and Crypt Service, and continues to evolve with updated features and branding efforts. The stealer is now part of a professionalized MaaS ecosystem, emphasizing its long-term operational strategy. #Rhadamanthys #MaaS #CybercrimeForums
Keypoints
- Rhadamanthys has been advertised along with additional tools like Elysium Proxy Bot and Crypt Service.
- The malware has evolved to include AI capabilities such as OCR for cryptocurrency seed phrase collection.
- Threat actors rebranded as “RHAD security” and “Mythical Origin Labs” to market their services professionally.
- The stealer employs tactics to avoid detection, including fake alerts and obfuscation of modules and configurations.
- Operational features include sandbox detection, steganographic payload delivery, and device fingerprinting.
Read More: https://thehackernews.com/2025/10/rhadamanthys-stealer-evolves-adds.html