Newly Discovered PoweRAT Malware Distributed through PyPI

Threat Level

Attack Report

For a detailed threat advisory, download the pdf file here

Summary

A newly discovered malware called “PoweRAT” combines a stealer and a RAT (remote access tool). The malware is being distributed through the Python Package Index (PyPI), a repository of software for the Python programming language. The malware can steal sensitive information such as login credentials and cryptocurrency wallets, as well as give attackers remote access to the infected computer.