216.73.216.6

Technical Analysis of Marco Stealer

· Published 05/02/2026 20:06 · Modified 05/02/2026 21:07

Export JSON

Essential information

Published
05/02/2026 20:06
Modified
05/02/2026 21:07
Tags
2026-02-05 aes encryption anti-analysis browser data theft c2 communication cryptocurrency wallet data exfiltration information stealer marco stealer
Related entities
3 observables, 1 malware

Description

, discovered in June 2025, is an targeting browser data, cryptocurrency wallets, and sensitive files. It employs techniques, string encryption, and terminates security tools. The malware collects system information, exfiltrates browser data using embedded files, and extracts data from browser extensions. It also targets popular services and cloud storage. uses AES-256 encryption for over HTTP. Despite recent law enforcement actions against similar threats, information stealers continue to pose significant risks to corporate environments.

Related entities

Vulnerabilities, IOCs, intrusion sets, MITRE techniques and other entities referenced in this report.

External references