OnyxC2 is a Malware-as-a-Service platform available for $250 per month on criminal markets, delivering HVNC, DLL sideloading, and credential harvesting across 210-plus Windows applications and browser extensions. There is no CVE and no vendor patch; defensive posture depends entirely on behavioral detection, endpoint hardening, and credential hygiene. The MaaS subscription model has broadened the attacker pool to include low-skill operators.