SILENTRUNLOADER

SILENTRUNLOADERSilentRunLoader

Description

According to Proofpoint, SilentRunLoader is a Python-based stealer/loader used by TA4922 to quietly download and execute a next-stage payload. It is designed to harvest Chrome data and other browser artifacts and exfiltrate them to a C2 server. The Python code is relatively straightforward and often appears as vibe-coded, with rapid development of new Python-based tooling observed across campaigns. This reflects the actor’s use of Python-based malware to quickly deploy new payloads.
Sourced from MITRE ATT&CK Enterprise . Curated by Adam Lundqvist, SQUR.