IBM X-Force researchers reverse engineered the AVLay RAT found in Brazil. The malware uses a well-documented tactic, mixing Dynamic Link Library (DLL) hijacking with a legitimate executable borrowed from antivirus programs. The goal of this combination is to siphon money out of victim accounts, making fraudulent transactions appear to originate from trusted devices. Using this malware, attackers in Brazil target financial entities, but their interest also extends to cryptocurrency platforms, seeing how popular digital coins are in the region.”]