Reports containing the tag C#

ENCRYPTED.ps1

A fully fledged modular infostealer targeting browser, Discord and Mail clients.

VenomRAT - ClientAny.exe

A 32-bit C# VenomRAT-style Trojan persists in AppData and decrypts an AES-256 config (RSA-signed) before connecting to a certificate-pinned C2 over TLS. It logs keystrokes, enumerates system info, downloads plugins, and continuously runs anti-analysis checks plus a process-killer to evade inspection.

C# Remote Access Trojan Persistence Mechanisms Command Execution via Powershell Cmd Bash Data-Exfiltration VenomRAT