Masad Stealer swaps out crypto wallet
Masad Stealer Swaps out Crypto Wallet Addresses as ‘You Type Them’
September 28, 2019
Masad Stealer swaps out crypto wallet
Masad Stealer Swaps out Crypto Wallet Addresses as ‘You Type Them’
September 28, 2019

Masad Stealer, a new bit of malware can replace wallet addresses as ‘you type them’.

It has been reported that according to Juniper Networks, it steals PC and system information, Credit Card Browser Data, Browser passwords, Installed software and processes, Desktop Files, Screenshot of Desktop, Browser cookies, Steam files, AutoFill browser fields, Discord, and Telegram data and FileZilla files.

However, the program dumps this information to the malware controller’s Telegram account, assuring relative security for the data it steals. It can also clip and change Monero, Litecoin, Zcash, Dash and Ethereum which addresses automatically and uses special search functions to pinpoint these addresses on a clipboard. Once it swaps the addresses, it can obstruct crypto as its being sent to legitimate wallets.

 The Research Organization wrote:

“Based on our telemetry, Masad Stealer’s main distribution vectors are masquerading as a legitimate tool or bundling themselves into third-party tools.”

Research Organization

The Organization added:

“Threat actors achieve end-user downloads by advertising in forums, on third-party download sites or on file-sharing sites.” 

Research Organization

However, the software disguises as useful-looking software like Tradebot_binance.exe, Galaxy Software Update.exe, and Fortniteaimbot 2019.exe. Once infected, then the computer begins communicating with the command and controls the Telegram channel and sends back private data.

ALSO READ :  Binance Hires Former TradingView COO Iskander Malikov To Bolster Fiat-To-Crypto Gateways

Likewise, the malware allegedly costs $40 on the dark web and is completely configurable and very dangerous, said Juniper.

The researchers wrote:

“Juniper Threat Labs believes that Masad Stealer represents an active and ongoing threat.  Command and Control bots are still alive and responding as of this writing and the malware appears to still be available for purchase on the black market.”

Research Organization

Disclaimer

Crypto News Point a news platform of Digital Notice Media Labs is primarily a regular publication of information, commentary and articles focused extensively on fintech, blockchain technology, cryptocurrency, blockchain-based tokens, cryptocurrency market trends, and trading strategies. We do not provide individually tailored investment advice and does not take a subscriber’s or anyone’s circumstances into consideration when discussing investments, nor is Crypto News Point registered as an investment adviser or broker-dealer in any jurisdiction. Information contained herein is not an offer or solicitation to buy, hold, or sell any digital assets.

Affiliate Disclosure: To help support the work we do here at CNP, we often link to products and deals from around the web. Should you buy some of these, we may get a portion of the sale.

We in generally gather content from the major websites. In every article there is always a clear link and attribution to the source publication. If you have any issue with any of our published content taken from your site, kindly let us know so that we can take appropriate action. In any case, the content of the pages of this website is for your general information and use only. It is subject to change without notice.

You May Also like

Ishita Bora

Ishita Bora is a Senior Content Creator at Digital Notice Media Labs. She has completed her Master's Degree in Language and Linguistics in 2019 from Gauhati University, India. She is an archetypal writer, who loves to create her own little world with words and locutions. Apart from this, her interest lies in blockchain technology and cryptocurrency space, as she loves writing about blockchain and other blockchain-related articles. Currently, she is working on blockchain-based news, reviews, featured articles, and guides.
Share This

Share This

Share this post with your friends!