{"id":80495,"date":"2023-06-20T15:00:57","date_gmt":"2023-06-20T12:00:57","guid":{"rendered":"https:\/\/forklog.com\/en\/?p=80495"},"modified":"2025-09-11T17:19:42","modified_gmt":"2025-09-11T14:19:42","slug":"mystic-stealer-malware-targets-dozens-of-cryptocurrency-apps","status":"publish","type":"post","link":"https:\/\/u1f987.com\/en\/mystic-stealer-malware-targets-dozens-of-cryptocurrency-apps\/","title":{"rendered":"Mystic Stealer malware targets dozens of cryptocurrency apps"},"content":{"rendered":"

On hacker forums and dark-web marketplaces, the Mystic Stealer malware for stealing information and cryptocurrency is gaining popularity. This, \u0441\u043e\u043e\u0431\u0449\u0438\u043b<\/a> a number of cybersecurity researchers.<\/p>\n

The malware targets 40 browsers, 21 cryptocurrency apps and 55 specialised browser extensions, 9 applications for multi-factor authentication and password management, and credentials for Steam and Telegram.<\/p>\n

Mystic Stealer is capable of attacking computers running all versions of Windows. It minimally impacts infected systems, encrypts its communication with the command-and-control server, and directly sends stolen files to it, which helps it evade detection. <\/p>\n

Upon first run, the malware collects information about the operating system and hardware, taking a screenshot. Depending on the instructions received from the operator, the malware targets more specific data stored in browsers and applications.<\/p>\n

The creators rent out the malware for $150 a month. They have added an exemption for use in CIS countries, which may indicate the malware’s origin.<\/p>\n

Mystic Stealer has been known since April and is actively evolving. The project has a Telegram channel where development news, feature requests, and other current topics are discussed.<\/p>\n

Earlier, ForkLog reported that the Pink Drainer group, via phishing and social engineering, stole $2.9 million<\/a> in the Ethereum, Arbitrum and other networks.<\/p>\n","protected":false},"excerpt":{"rendered":"

On hacker forums and dark-web marketplaces, Mystic Stealer malware for stealing information and cryptocurrency is gaining popularity.<\/p>\n","protected":false},"author":1,"featured_media":80496,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"select":"1","news_style_id":"1","cryptorium_level":"","_short_excerpt_text":"","creation_source":"","_metatest_mainpost_news_update":false,"footnotes":""},"categories":[3],"tags":[1111,57],"class_list":["post-80495","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news-and-analysis","tag-cybersecurity","tag-wallets"],"aioseo_notices":[],"amp_enabled":true,"views":"9","promo_type":"1","layout_type":"1","short_excerpt":"","is_update":"","_links":{"self":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/80495","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/comments?post=80495"}],"version-history":[{"count":1,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/80495\/revisions"}],"predecessor-version":[{"id":80497,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/80495\/revisions\/80497"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/media\/80496"}],"wp:attachment":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/media?parent=80495"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/categories?post=80495"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/tags?post=80495"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}