BTC $71,807
2026 Bull Run Is Building Start trading with 5% OFF all fees
Sign Up Now
BTC $71,807
Bull Run 2026 | 5% Off Fees Open your Binance account today
Sign Up

New RATs Target Windows, Game Utilities for Access

Rising RAT threats: Steaelite, gaming Trojan, and DesckVB KazakRAT variants emerge.

  • Attackers are distributing a new Remote Access Trojan (RAT) disguised as gaming software through browsers and chat apps.
  • The malware uses stealthy techniques, modifies Microsoft Defender, and connects to an external server for command-and-control.
  • A powerful new “all-in-one” RAT called Steaelite is being advertised on criminal forums, combining data theft with ransomware deployment from a single panel.
  • Two additional new RAT families, DesckVB RAT and KazakRAT, have also been discovered targeting specific entities.

In late February 2026, researchers uncovered a campaign where cybercriminals distribute trojanized gaming utilities via online platforms to deploy a remote access trojan. The Microsoft Threat Intelligence team explained the attack uses a malicious Java downloader and living-off-the-land binaries for stealth. This multi-purpose malware acts as a loader, runner, and RAT to exfiltrate data and deploy other payloads.

- Advertisement -

The threat also establishes persistence and configures Microsoft Defender exclusions to avoid detection. Consequently, defenders are advised to audit these exclusions and scheduled tasks immediately. Meanwhile, a separate, far more comprehensive threat has emerged on the cybercrime market.

BlackFog disclosed a new Windows RAT family first advertised in November 2025 called Steaelite, marketed as a “best Windows RAT” with fully undetectable capabilities. Security researcher Wendy McCague said it “enables complete double extortion from one tool” by combining ransomware with data theft. The tool can disable antivirus, remove competing malware, and offers extensive features like live streaming and credential theft.

In recent weeks, two other new RAT families have also been discovered. One is the open-source DesckVB RAT available on GitHub, providing remote control capabilities. The other, KazakRAT, is suspected to be the work of a state-affiliated group and has been detailed in a report by Ctrl Alt Intel. This campaign has reportedly been targeting Kazakh and Afghan entities since at least August 2022.

✅ Follow BITNEWSBOT on Telegram, Facebook, LinkedIn, X.com, and Google News for instant updates.

- Advertisement -

Previous Articles:

- Advertisement -
Ad
Altseason Is Loading. Don't watch from the sidelines.
SOL $90.51
DOGE $0.0963
LINK $9.02
SUI $1.00
5% off fees when you sign up
Start Trading
Ad
Pay Less on Every Trade. For Life.
$10K/mo volume Save $60/yr
$50K/mo volume Save $300/yr
$100K/mo volume Save $600/yr
5% off all trading fees when you sign up
Claim Your Discount

Latest News

Google Degrades 2M-Device NetNut Botnet Network

Google and law enforcement have degraded the NetNut proxy network, shrinking its pool of...

Tesla Launches Three-Row Model Y L in U.S.

Tesla launched a new three-row Model Y L SUV in the U.S. and Puerto...

Solana’s World flagged as phishing by Cloudflare after complaint

A new Solana prediction market called World has been flagged for "suspected phishing" by...

Analysts See Nvidia as a Bargain Despite Stock Pullback

NVIDIA stock closed July 1 at $197.58, well below its 52-week high, despite a...

Tesla Q2 Deliveries Beat Forecasts, China Sales Jump

Tesla reported 480,126 vehicle deliveries for Q2 2026, surpassing Wall Street forecasts of ~406,600...

Must Read

Forex Trading Vs Crypto Trading: Which One Should You Choose?

So you're trying to decide between two types of trading: Forex and cryptocurrency.Forex trading is the big player in the trading world, with lots...
Ad
Altseason Is Loading. These 4 coins are trending right now.
SOL $92.12
DOGE $0.0950
LINK $9.02
SUI $1.02
5% off spot fees when you sign up
Start Trading