Home News Realst, Dangerous New Malware, Targets Apple and Windows Users’ Crypto Wallets

Realst, Dangerous New Malware, Targets Apple and Windows Users’ Crypto Wallets

Daniela Kirova

July 26th, 2023

Malware is distributed to Windows and macOS users as fake blockchain games
The installer sends an access code and infects the user’s device
The main goal is to steal funds held in crypto wallets

Realst, a dangerous new malware, is being leveraged in a massive campaign against Apple and Windows users. Some of its most recent forms include support for macOS 14 Sonoma, which is currently in development, Bankless Times learned from a specialized cybersecurity platform.

How does it work?

The malicious actors distribute the malware to both Windows and macOS users in the form of fake blockchain games with appealing names, such as Pearl, Evolition, Brawl Earth, Dawnland, Destruction, and SaintLegend.

They promote these games on social media. The actors share the access codes needed to download the fake games from associated websites in direct messages.

The installer infects the user’s device with malware that steals information. The malware is Realst on Mac and RedLine Stealer on Windows. This malware steals data from the user’s crypto wallet app and web browser and transfers it to the malicious actors.

16 variants of the malware

There are 16 variants of the macOS malware already, which indicates fast and active development. Users are offered either Mac or Windows malware when downloading the fake game from the fraudulent site depending on their OS.

Mac users are infected with the Realst data-stealing malware, which targets Mac devices as DMG disk files or PKG installers containing malicious files.

Following an analysis by the cybersecurity experts at SentinelOne, it emerged that all 16 Realst variants were similar in form and function, despite using different API call sets.

Only Safari is safe

It also emerged that the malware targets Chrome, Firefox, Brave, Opera, Telegram, and Vivaldi. Safari has not been targeted by any of the analyzed Realst samples.

MacOS users are advised to exercise caution when downloading blockchain games. The malevolent entities use “verified” Twitter accounts and Discord channels to look legitimate.

These attacks can be very costly as their main goal is to steal funds held in crypto wallets. They target crypto users specifically.

Contributors

Daniela Kirova

Writer

Daniela is a writer at Bankless Times, covering the latest news on the cryptocurrency market and blockchain industry. She has over 15 years of experience as a writer, having ghostwritten for several online publications in the financial sector.

Popcat Soars to New ATH as Investors Eye Solciety

Missed the Bitcoin Price Surge: Stacks (STX) Could Be Next

Crispus Nyaga

Cronos Price Prediction as CRO Gets Severely Overbought

Crispus Nyaga

Bitcoin Price Prediction: Will BTC Recover Ahead of US Election?

Crispus Nyaga

{"cryptoCoinData":{"marketData":{"coinGeckoId":"bitcoin","symbol":"BTC","name":"Bitcoin","currentPrice":97901,"high24H":99645,"low24H":97553,"priceChange24H":-1134.1201550862,"priceChangePercentage24H":-1.14517,"lastUpdated":"2024-11-23T18:41:38.056Z"}},"cryptoCoin24HSparkline":{"price":[99034.79556461393,99292.3564414546,99197.81777691726,98970.31339800949,98995.9389103507,98878.11175645719,98874.710477748,98651.05842413724,98455.20458030704,98540.56306371525,98662.12333172876,98675.12080876014,98865.83933810717,98918.85797689507,98613.9819099186,98522.08316266937,98640.14542652135,98456.91273610461,98599.48725948723,98606.77148160673,98931.14690065775,98611.03946102688,98907.83827505098,98600.88114018395,97982.71644144862,98153.74871727193,97910.10145999535]},"heading":"Latest Price"}

Cryptocurrency Guides

Best Cryptocurrency Apps

Best Crypto Exchanges

Best Coins To Invest In 2024

How to Stake Ethereum

How to Stake Cardano

Best Meme Coins to Buy

Best Crypto Trading Robots

Learn About Cryptocurrency

Cryptocurrency Tax

Is Crypto Staking Safe?

What is Blockchain and How Does it Work?

What is Cryptocurrency Arbitrage?