Silver Fox, a notorious Chinese cybercrime group, has expanded its malware operations, targeting Japan and Malaysia using the Winos 4.0 malware family and the HoldingHands RAT. These attacks primarily rely on phishing tactics that disguise malicious PDFs as official documents, leading to multi-stage infections. Recent campaigns have highlighted the group’s adaptability, shifting from targeting Taiwan to utilizing taxation-themed lures for malware distribution in Malaysia. The sophisticated nature of these attacks, including evasion techniques against security software, underscores a significant threat to both regional cybersecurity and individual privacy, emphasizing the need for heightened vigilance and robust defensive measures in the face of evolving cyber threats.