Skip to content

News
Cybercrime
Risk
Policy
Privacy
Research
Cloud
Insurance

LinkedIn
Facebook

SetcodeRat

GitHub repositories used to deliver new PyStoreRAT JavaScript RAT

Cybercrime, News, Research, Vendors

December 13, 2025

Researchers say GitHub-hosted Python repositories have been used to deliver a JavaScript-based RAT called PyStoreRAT that executes remote HTA payloads, deploys a Rhadamanthys stealer and includes persistence and evasion measures; Chinese vendor QiAnXin also reported a separate SetcodeRat campaign.

About
Editorial Policy
Privacy
Contact