all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Mystic Stealer

Add to bookmarks
June 15, 2023, 4:53 p.m. | Brett Stone-Gross

Security Boulevard securityboulevard.com

Key Points


Mystic Stealer is a new information stealer that was first advertised in April 2023

Mystic steals credentials from nearly 40 web browsers and more than 70 browser extensions

The malware also targets cryptocurrency wallets, Steam, and Telegram

The code is heavily obfuscated making use of polymorphic string obfuscation, hash-based import resolution, and runtime calculation of constants

Mystic implements a custom binary protocol that is encrypted with RC4


How do you know when something is in hot demand in …

april browser browser extensions browsers code credentials cryptocurrency cryptocurrency wallets extensions hash import information information stealer key key points making malware obfuscated obfuscation polymorphic resolution runtime stealer steam telegram wallets web web browsers

Visit resource

More from securityboulevard.com / Security Boulevard

KapeKa Backdoor: Russian Threat Actor Group’s Recent Attacks an hour ago | securityboulevard.com
actor advanced persistent threat (apt) attacks backdoor +26
MITRE ATT&CK v15: A Deeper Dive into SaaS Identity Compromise 2 hours ago | securityboulevard.com
adversaries amp att attack +22
RSAC 2024 Innovation Sandbox | RAD Security: New Solutions for Cloud-Native Anomaly Detection and Response 6 hours ago | securityboulevard.com
and response anomaly detection benchmark blog +23
External Penetration Testing: Cost, Tools, Steps, & Checklist 8 hours ago | securityboulevard.com
actions applications assets attacker +28
Continuous Risk Assessments Unify Healthcare Cybersecurity 9 hours ago | securityboulevard.com
advice aim assessments axio +18
How to Build a Phishing Playbook Part 4: Testing and Publishing 10 hours ago | securityboulevard.com
build data devops dynamic +11
Who Is Scattered Spider? 11 hours ago | securityboulevard.com
goal hacker hacker groups hackers +6
USPS Phishing Scams Generate Almost as Much Traffic as the Real Site 12 hours ago | securityboulevard.com
akamai bad bad actors cloud +41
Rubrik Sets Cyber Resiliency Course Following IPO 12 hours ago | securityboulevard.com
attack course cyber cyber resiliance +18

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Architect - Identity and Access Management Architect (80-100% | Hybrid option)

@ Swiss Re | Madrid, M, ES
View on infosec-jobs.com

Alternant - Consultant HSE (F-H-X)

@ Bureau Veritas Group | MULHOUSE, Grand Est, FR
View on infosec-jobs.com

Senior Risk/Cyber Security Analyst

@ Baker Hughes | IN-KA-BANGALORE-NEON BUILDING WEST TOWER
View on infosec-jobs.com

Offensive Security Engineer (University Grad)

@ Meta | Bellevue, WA | Menlo Park, CA | Seattle, WA | Washington, DC | New York City
View on infosec-jobs.com

Senior IAM Security Engineer

@ Norfolk Southern | Atlanta, GA, US, 30308
View on infosec-jobs.com
View more jobs