SVCStealer
According to Broadcom, SVCStealer is an information stealer written in C++, targeting devices running an windows operating system. It collects sensitive information from the infected device such as system information, credentials, cryptocurrency wallets, data stored in browsers, screenshots, data from messaging applications such as Telegram or VPN apps. The collected information is compressed into a .zip archive and extracted to botnet C2 servers.
Last 7 days
Mar 13, 2026
C2 Hosts: 9
Mar 12, 2026
C2 Hosts: 4
| Date | C2 Hosts |
|---|---|
| Mar 13, 2026 | 9 |
| Mar 12, 2026 | 4 |
Further Reading
MalwareBazaar | SVCStealer
SVCStealer malware samples
bazaar.abuse.ch
SvcStealer Malware Targeting Users to Extract Sensitive Data from Browsers and Applications – Active IOCs - Rewterz
SvcStealer 2025 is a newly identified information stealer that primarily spreads through spear phishing email attachments.
rewterz.com
SVCStealer malware
SVCStealer malware
broadcom.com
SVC New Stealer on the Horizon | Seqrite
SvcStealer 2025 is a new strain of information stealers, which is delivered through spear phishing email attachments.
seqrite.com