all InfoSec news
Mystic Stealer
Security Boulevard securityboulevard.com
Key Points
Mystic Stealer is a new information stealer that was first advertised in April 2023
Mystic steals credentials from nearly 40 web browsers and more than 70 browser extensions
The malware also targets cryptocurrency wallets, Steam, and Telegram
The code is heavily obfuscated making use of polymorphic string obfuscation, hash-based import resolution, and runtime calculation of constants
Mystic implements a custom binary protocol that is encrypted with RC4
How do you know when something is in hot demand in …
april browser browser extensions browsers code credentials cryptocurrency cryptocurrency wallets extensions hash import information information stealer key key points making malware obfuscated obfuscation polymorphic resolution runtime stealer steam telegram wallets web web browsers