Threat Intelligence Report

Dissecting ValleyRAT: From Loader to RAT Execution in Targeted Campaigns

📅 November 6, 2025 📰 www.picussecurity.com 🔍 0 CVE(s) referenced

ValleyRAT exemplifies a highly targeted, multi-stage Windows malware that combines geographic kill-switches, aggressive privilege escalation, and advanced anti-analysis techniques to stealthily compromise Chinese-language organizations while systematically disabling local defenses.

vendor

🔐 Sign In to Read Full Report

You'll need to accept our Terms of Service to access the platform.

📊 Visual Mindmap

🎯 IOC Extraction

⚔️ MITRE ATT&CK TTPs

📦 STIX 2.1 Bundle