Powerful MaaS On the Prowl for Credentials and Crypto Assets
Essential information
- Published
- 17/07/2025 19:39
- Modified
- 17/07/2025 20:26
- Tags
- 2025-07-17 browser injection credential-theft cryptocurrency data exfiltration evasion techniques infostealer katz stealer maas
- Related entities
- 31 observables, 1 malware
Description
Katz Stealer is a sophisticated infostealer marketed as Malware-as-a-Service (MaaS), launched in early 2025. It features robust credential and data theft capabilities, along with modern evasion and anti-analysis techniques. The stealer targets a wide range of personal and sensitive information, including passwords, cryptocurrency keys, and browser session data. Operated through a web-based management panel, Katz Stealer allows affiliates to generate custom payloads and manage stolen data. Its infection chain involves obfuscated JavaScript droppers, steganography, and process hollowing techniques. The malware focuses heavily on browser data theft and cryptocurrency wallet targeting, with the ability to bypass some browser security measures.