216.73.217.80

Chasing Eddies: New Rust-based InfoStealer used in CAPTCHA campaigns

· Published 29/05/2025 19:24 · Modified 29/05/2025 19:42

Export JSON

Essential information

Published
29/05/2025 19:24
Modified
29/05/2025 19:42
Tags
2025-05-29 captcha cryptocurrency data exfiltration eddiestealer infostealer powershell rust
Related entities
27 observables, 12 techniques (mitre), 1 malware

Description

A novel -based called has been discovered, distributed through fake campaigns. The malware uses deceptive verification pages to trick users into executing a malicious script, which deploys the . targets sensitive data including credentials, browser information, and wallet details. It communicates with a command and control server to receive tasks and exfiltrate data. The malware employs string obfuscation, API obfuscation, and other evasion techniques. It specifically targets various crypto wallets, browsers, password managers, FTP clients, and messaging applications. The use of in its development reflects a growing trend among threat actors seeking enhanced stealth and resilience against traditional analysis methods.

External references