New Crypto Malware Targets Browser Wallet Extensions

New malware that can corrupt crypto wallets and extensions has been discovered, putting investors at risk of being hacked.

A type of malware known as Mars Stealer — an upgraded version of information bootlegger Oski Stealer – has surfaced to prey on web browsers, crypto extensions, and crypto wallets, according to a new blog post by network security specialist 3xp0rt.

Internet Explorer, Firefox, Microsoft Edge, and Thunderbird are some of the most common online browsers that are affected by the infection.

It also targets wallets like Bitcoin Core and its derivatives, as well as crypto extensions like MetaMask, TronLink, Binance Chain Wallet, and Coinbase Wallet. MultiDoge and Ethereum wallets might also be harmed in the future.

The virus, according to 3xp0rt, only targets crypto extensions on browsers that use Chromium instead of Opera.

Mars Stealer, according to the cybersecurity expert, works by gaining access to a computer’s internal library files and performing a sophisticated sequence of technical code reconfigurations to carry out its tasks.

According to 3xp0rt:

Mars Stealer is an improved version of Oski Stealer. [It] has added [functionality]: anti-debug check, crypto extension stealing, but Outlook stealing is missing. The code has been refactored, but some algorithm remained stupid as in Oski Stealer.

The virus targets sensitive data saved in the wallet.dat file to steal a user’s wallet information. According to the internet security expert, the file contains information such as the address and private key access data. A grabber, loader, and self-removal function are also included in the virus.


Posted

in

, , ,

by

  • Let’s Explore!

    It’s 04:03am Tuesday, and I’m starting this blog. There are a lot of things currently bothering my mind, and sometimes I’m thinking of what the future will look like. Waiting till 10:00 to get onto my work and start doing some stuff. Let’s find some beautiful place and get lost. – Me I’ve been a… Read More

  • Installing MySQL2 Ruby Gem in macOS Mojave

    Installing MySQL2 gem became a common problem for people who uses macOS to develop Ruby1 based apps that utilized MySQL2 data store. I’ve personally encountered this problem myself back in the days and still encountering this on brand new setup macOS workstation. In this article, we will go through the steps I did to resolved… Read More

  • Changing Xserver Default Applications Using XDG Tools

    XDG (freedesktop.org) which stands for X Desktop Group is a group which develop the X11 and xdg utilities which currently runs as barebones of linux desktop. So how do we change the defaults when opening a file on XServer? Be free, and live life fully. — Caroline Shaw. So how do we configure XDG? Tools… Read More