skip to content
Decrypt LOL

Get Cyber-Smart in Just 5 Minutes a Week

Decrypt delivers quick and insightful updates on cybersecurity. No spam, no data sharing—just the info you need to stay secure.

Read the latest edition

More_eggs Malware Operation Introduces New Threats

/ 1 min read

More_eggs malware expands with new threats. The More_eggs malware operation has been linked to two new malware families: RevC2, an information-stealing backdoor, and Venom Loader, a customized loader for each victim. Both are deployed via VenomLNK, which serves as an initial access vector. RevC2 can steal cookies and passwords, proxy network traffic, and execute remote commands, while Venom Loader launches a lightweight variant of the More_eggs backdoor. These developments indicate that the threat actors, tracked as Venom Spider, are actively refining their malware toolkit despite previous arrests. Additionally, a new fileless loader called PSLoramyra has been identified, which uses various scripts to deliver the Quasar RAT malware, highlighting the evolving landscape of cyber threats.