ONYXC 2 is a new Malware-as-a-Service (MaaS) that provides enterprise-grade data theft capabilities for $250 to $6,000, depending on the package. It targets over 210 applications, including browsers, email clients, and password managers, by using DLL sideloading and encrypted payloads to avoid detection. The malware features include remote access tools like keyloggers, screen capture, and session hijacking, allowing continuous access to compromised systems.
It also offers pre-made lure installers to facilitate distribution. The developers back their evasion techniques with a service guarantee, claiming they can deliver malware that remains undetected.