Threat Intelligence / Actor / Silver Fox APT

Silver Fox APT

Nation: China · 2 tracked threat(s) · Categories: MALWARE

Also known as: SilverFox, Silver Fox, Void Arachne (overlapping cluster), ValleyRAT operators, Winos 4.0 operators, ValleyRAT Group, Winos4.0 Operators

Tracked threats

Fake Microsoft Teams Sites Deliver ValleyRAT via NSIS Installer and DLL Sideloading of Tencent GameBox.exe (Silver Fox APT) — HIGH
ValleyRAT via Fake Huorong AV Site — Silver Fox APT DLL Sideloading, Winos4.0 Framework, Encrypted Shellcode Persistence — HIGH

Full actor intelligence — infrastructure, IOCs, detection coverage and operator fingerprints — is available via the Threadlinqs MCP server (Purple tier). View plans →

Threadlinqs Intelligence