Tag: smart-contract

4 Attack Reports | 0 Vulnerabilities

Attack reports

StepDrainer MaaS Platform Targeting Multi-Chain Crypto Wallets and NFT Assets

StepDrainer is a Malware-as-a-Service (MaaS) platform engineered to steal digital assets from cryptocurrency wallets, including fungible tokens and high-value NFT collections. The malware supports more than 20 blockchain networks and incorporates multiple draining techniques, particularly abusing E…

Published: April 21, 2026

Downloadable IOCs: 3

EtherRAT Targeting Windows Disguised as a Game Mod Installer

A Windows variant of EtherRAT, a JavaScript-based malware, has been discovered disguised as game mod installers. The malware uses MSI files to create and execute obfuscated scripts that decrypt and run the main payload. EtherRAT retrieves its Command and Control (C2) server addresses dynamically th…

c2 communication

tsundere botnet

Published: January 21, 2026

Downloadable IOCs: 12

Smart Contract Scams | Ethereum Drainers Pose as Trading Bots to Steal Crypto

SentinelLABS has uncovered a series of cryptocurrency scams where threat actors distribute malicious smart contracts disguised as trading bots to drain user wallets. The campaign has stolen over $900,000 US and uses aged YouTube accounts with curated comment sections to create a false sense of legi…

ai-generated content

Published: August 7, 2025

Downloadable IOCs: 0

Supply Chain Attack Using Ethereum Smart Contracts to Distribute Multi-Platform Malware

A sophisticated supply chain attack has been discovered targeting the NPM ecosystem. The malicious package 'jest-fet-mock' impersonates popular testing utilities and uses Ethereum smart contracts for command-and-control operations. This cross-platform malware affects Windows, Linux, and macOS, exec…

development-tools

Published: November 5, 2024

Downloadable IOCs: 4

Click here to see more Attack Reports