Contact

YUNIT STEALER

NetmanageIT OpenCTI - opencti.netmanageit.com

YUNIT STEALER



SUMMARY :

Yunit Stealer is a sophisticated malware targeting sensitive user data through credential theft and system manipulation. It employs advanced evasion techniques to bypass security measures, maintaining persistence on compromised systems. The malware performs comprehensive data extraction, including system information, browser data, and cryptocurrency wallets. It achieves persistence through registry modifications, scheduled tasks, and Windows Defender exclusions. Data exfiltration occurs via Telegram and Discord webhooks. The developer is likely a French speaker with ties to gaming platforms. The malware incorporates system checks, file management, and extraction of sensitive data like credentials and cookies. It uses obfuscation and geofencing capabilities to avoid detection and selectively operate based on geographic location.

OPENCTI LABELS :

cryptocurrency,gaming,data theft,credential extraction,yunit stealer


Open in NetmanageIT OpenCTI Public Instance with below link!


Use public read only username and password on login page.

NOTE : Use Public READ only user credentials on login page banner.


YUNIT STEALER