Shuyal Stealer: Advanced Infostealer Targeting 19 Browsers
Essential information
- Published
- 08/10/2025 15:25
- Modified
- 08/10/2025 16:40
- Tags
- 2025-10-08 browser-targeting data exfiltration evasion infostealer persistence powershell shuyal stealer system reconnaissance telegram bot
- Related entities
- 1 observables, 18 techniques (mitre), 1 malware
Description
Shuyal Stealer is a sophisticated infostealer malware targeting 19 different browsers. It conducts deep system reconnaissance, collecting detailed hardware information and user data. The malware disables Windows Task Manager, ensures persistence through startup folder insertion, and exfiltrates stolen data via a Telegram bot. Shuyal's capabilities include credential harvesting from multiple browsers, clipboard capture, screenshot taking, and Discord token theft. It employs evasion techniques like self-deletion and uses PowerShell for data compression. The malware's wide-ranging browser targets and extensive data collection make it a significant threat to user privacy and system security.