A hacking group called Golden Chickens (also known as Venom Spider) has been spotted using two new malware programs—TerraStealerV2 and TerraLogger. These tools are designed to steal sensitive information and record everything victims type on their keyboards.

You might be interested in: WordPress Plugin Gives Attackers Full Control

According to cybersecurity experts at Recorded Future, the group is constantly improving its malware to target more victims.

What Do These New Malware Programs Do?

• TerraStealerV2 – Steals saved passwords from web browsers, cryptocurrency wallet details, and data from browser extensions.

• TerraLogger – A simple keylogger that captures every keystroke and saves it to a file.

Golden Chickens is a well-known cybercrime group that has been active since at least 2018. They sell their malware as a service (MaaS), meaning other criminals can rent or buy their tools.

How Do the Attacks Work?

The hackers deliver the malware in different ways, including:

• Fake program files (EXE)

• Malicious system files (DLL)

• Infected software installers (MSI)

• Shortcut files (LNK)

Once installed, the malware contacts a hacker-controlled website (wetransfers[.]io) to download additional malicious code.

TerraStealerV2 sends stolen data to both Telegram and the hackers’ server. To avoid detection, it uses legitimate Windows tools like regsvr32.exe and mshta.exe.

TerraLogger, on the other hand, only records keystrokes but doesn’t send the data anywhere yet. This suggests the hackers are still working on it or plan to combine it with other malware.

Who Is Behind Golden Chickens?

Researchers believe the group is run by a hacker using the online name badbullzvenom, possibly linked to individuals in Canada and Romania.

In the past, Golden Chickens has been connected to other dangerous malware like:

• More_eggs (a spyware tool)

• VenomLNK (a malicious file loader)

• TerraLoader and TerraCrypt (ransomware-related tools)

Other Recent Malware Threats

Golden Chickens isn’t the only group releasing new malware. Recently, cybersecurity firms have reported:

• Hannibal Stealer – A new data thief

• Gremlin Stealer – Targets sensitive files

• Nullpoint Stealer – Another info-stealing tool

Another malware, StealC, has also been updated with better hacking features, including:

• Faster communication with hacker servers

• Support for MSI installers and PowerShell scripts

• A new control panel that lets attackers customize attacks

What’s Next?

Since Golden Chickens keeps improving its malware, businesses and individuals should stay alert. Using strong passwords, enabling two-factor authentication (2FA), and keeping software updated can help prevent infections.

Cybersecurity experts warn that these threats will likely get more advanced, so staying informed is key to staying safe.