Summary

JanelaRAT, a malware variant derived from BX RAT, has been targeting banks and financial institutions in Latin America, particularly in Brazil and Mexico. The malware has been involved in 14,739 attacks in Brazil alone in 2025, focusing on stealing financial and cryptocurrency data.

Key Points

• JanelaRAT is a modified version of BX RAT, specifically targeting Latin American banks.
• The malware is capable of stealing financial and cryptocurrency data, tracking mouse inputs, logging keystrokes, taking screenshots, and collecting system metadata.
• In 2025, there were 14,739 recorded attacks in Brazil.
• The primary targets are financial institutions in Brazil and Mexico.

Analysis

The JanelaRAT malware represents a significant threat to financial institutions in Latin America, with a high volume of attacks recorded in Brazil. Its capabilities to steal sensitive financial data and perform extensive system surveillance make it a critical concern for cybersecurity teams. The focus on cryptocurrency data also highlights the evolving nature of financial threats.

Conclusion

IT professionals, especially those in financial institutions, should prioritize strengthening their cybersecurity measures against JanelaRAT. Implementing advanced threat detection systems and conducting regular security audits can help mitigate the risks posed by this malware.