VENON Malware Targets 33 Brazilian Banks with Credential-Stealing Overlays

First reported

12.03.2026 19:31

Last updated

1 unique sources, 1 articles

Summary

Hide ▲

A new Rust-based malware, codenamed VENON, targets 33 Brazilian banks and digital asset platforms. The malware uses credential-stealing overlays and shares behaviors with known Latin American banking trojans. It employs sophisticated evasion techniques and is distributed via social engineering ploys, including DLL side-loading and a complex infection chain. The malware's developer appears to have used generative AI to rewrite and expand functionalities in Rust, indicating significant technical expertise.

Timeline

12.03.2026 19:31 1 articles · 2h ago

VENON Malware Targets 33 Brazilian Banks with Credential-Stealing Overlays
A new Rust-based malware, codenamed VENON, targets 33 Brazilian banks and digital asset platforms. The malware uses credential-stealing overlays and shares behaviors with known Latin American banking trojans. It employs sophisticated evasion techniques and is distributed via social engineering ploys, including DLL side-loading and a complex infection chain. The malware's developer appears to have used generative AI to rewrite and expand functionalities in Rust, indicating significant technical expertise.
Show sources

Rust-Based VENON Malware Targets 33 Brazilian Banks with Credential-Stealing Overlays — thehackernews.com — 12.03.2026 19:31
Open in new tab

Information Snippets

VENON is a Rust-based malware targeting 33 Brazilian financial institutions and digital asset platforms.
First reported: 12.03.2026 19:31

1 source, 1 article
Show sources
- Rust-Based VENON Malware Targets 33 Brazilian Banks with Credential-Stealing Overlays — thehackernews.com — 12.03.2026 19:31
The malware shares behaviors with established Latin American banking trojans like Grandoreiro, Mekotio, and Coyote.
First reported: 12.03.2026 19:31

1 source, 1 article
Show sources
- Rust-Based VENON Malware Targets 33 Brazilian Banks with Credential-Stealing Overlays — thehackernews.com — 12.03.2026 19:31
VENON uses DLL side-loading and a complex infection chain involving social engineering ploys like ClickFix.
First reported: 12.03.2026 19:31

1 source, 1 article
Show sources
- Rust-Based VENON Malware Targets 33 Brazilian Banks with Credential-Stealing Overlays — thehackernews.com — 12.03.2026 19:31
The malware performs nine evasion techniques, including anti-sandbox checks, indirect syscalls, ETW bypass, and AMSI bypass.
First reported: 12.03.2026 19:31

1 source, 1 article
Show sources
- Rust-Based VENON Malware Targets 33 Brazilian Banks with Credential-Stealing Overlays — thehackernews.com — 12.03.2026 19:31
VENON targets the Itaú banking application with a shortcut hijacking mechanism.
First reported: 12.03.2026 19:31

1 source, 1 article
Show sources
- Rust-Based VENON Malware Targets 33 Brazilian Banks with Credential-Stealing Overlays — thehackernews.com — 12.03.2026 19:31
The malware's developer appears to have used generative AI to rewrite and expand functionalities in Rust.
First reported: 12.03.2026 19:31

1 source, 1 article
Show sources
- Rust-Based VENON Malware Targets 33 Brazilian Banks with Credential-Stealing Overlays — thehackernews.com — 12.03.2026 19:31