Security News > 2021 > April > WeSteal: A Cryptocurrency-Stealing Tool That Does Just That

In a post on Thursday, the researchers picked apart the WeSteal cryptocurrency wallet-pickpocketing tool and a related remote-access trojan called WeControl, saying that it's "Shameless" the way the developers aren't even trying to hide the tools' true intent.

Code samples point to WeSteal having evolved from that earlier tool.

The tool's author also previously churned out the Zodiac Crypto Stealer, as well as malware called Spartan Crypter that's used to throw antivirus detection off the trail.

Neither did this malware developer mince words about a distributed denial-of-service tool they offered: fittingly enough, it was dubbed Site Killah: a tool that carried promises of having Unbeatable Prices, Fast Attacks and Amazing Support.

In an email on Friday, Dr. John Michener, chief scientist of Casaba Security, noted that the Palo Alto Networks report said that it's surprising that the criminal purchasers of the malware actually trust the malware to steal for them, and not for the authors of the malware itself.

"It's quite likely that the malware starts stealing a substantial fraction of the victim funds for the malware authors rather than for the malware purchasers after a reasonable trial and testing period," he said.

News URL

https://threatpost.com/westeal-cryptocurrency-stealing-tool/165762/