Skip to content

Information Security Research

Technical malware analysis, reverse engineering, and threat intelligence.

Latest Investigation Report
· 25 min read

VioletWorm v4.7 (Violet RAT): The Most Dangerous Payload in a 9-RAT Toolkit

Technical analysis of VioletWorm v4.7 (also tracked as Violet RAT) -- a .NET RAT with ransomware, HVNC, USB spreading, crypto clipping, and 120 command branches dispatched through C2-delivered plugin DLLs -- recovered from a multi-stage intrusion with tooling overlap to SERPENTINE#CLOUD.

We appreciate you

Derp wouldn't exist without the work these projects do for the security community. We rely on their data sources to improve the quality and depth of what we publish. Thank you, we're genuinely grateful.