BlueStealer

BlueStealer (aka BlueSteel) is a 2021 MaaS infostealer family written in Delphi. It has browser credentials, crypto wallet, clipboard hijacking and screenshot capture capabilities. It is often distributed via fake document (PDF/GZ) archives.

Threat Profile
Type Infostealer
Programming LanguageDelphi
C2 ProtocolHTTP
First Seen2021
Targets Kuresel
Purpose / Capabilities
  • Credential + Crypto Theft
No C2 servers have been identified for this family yet.

Research Reports (1)

Medium

BlueStealer — GZ Arsivi Ile Dagitilan Infostealer, Packlist ve Kripto Cuzdan Hedefi | Orta

BlueStealer infostealer GZ arsivi ile dagitiliyor. document approval_Pdf.gz olarak maskelenmis. Statik analizde cleartext C2 bulunamadi.

Read Report →