Targets browser extensions like MetaMask or desktop wallets (e.g., Atomic, Exodus).
The file is frequently identified in cybersecurity research and sandboxing environments as a container for malware , specifically associated with RedLine Stealer or Vidar Stealer campaigns . It is often disguised as a legitimate beta version of virtualization software (like Citrix HDX) to trick users into executing it. File: hdx-home-beta-windows.zip ...
Below is a detailed technical breakdown structured like an analysis paper. Targets browser extensions like MetaMask or desktop wallets
It checks for the presence of debuggers, sandboxes, or virtual machines (VMs). If detected, it may terminate to avoid analysis. B. Data Harvesting (Infostealing) The malware scans the local system for: Below is a detailed technical breakdown structured like
hdx-home-beta.exe (or similar executable inside the archive). Classification: Trojan / Infostealer. Common Families: RedLine Stealer or Vidar . 3. Infection Vector The malware typically spreads through:
Copyright © 2026 — Top Archive
Editorial Office of Biodiversity Science, 20 Nanxincun, Xiangshan, Beijing 100093, China
Tel: 010-62836137, 62836665 E-mail: biodiversity@ibcas.ac.cn
