menu_book Malware Family

Meduza Stealer

Also known as: Meduza

Meduza Stealer is a Windows infostealer marketed on underground forums that collects browser credentials, cookies, password managers, cryptocurrency wallets, and system data, with an emphasis on a clean operator dashboard and broad application support.

What is Meduza Stealer?

Meduza is an infostealer promoted on Russian-speaking forums and Telegram, positioned as a polished alternative to established families. It advertises support for a wide range of browsers, password managers, and cryptocurrency wallets, and provides operators with a web-based management panel.

Capabilities

Meduza collects saved credentials, cookies, autofill, and crypto wallet data, and gathers detailed system telemetry. It markets active development and evasion features to attract subscribers in a crowded stealer market.

How VantaPrism Tracks Meduza Stealer

VantaPrism monitors emerging families like Meduza so that newly active stealers are parsed and searchable shortly after they begin appearing in distribution channels.

Check Your Exposure arrow_forward

Frequently Asked Questions

Is Meduza Stealer a new infostealer?

expand_more

Meduza is a more recent entrant compared to families like RedLine and Raccoon, marketed as a polished, actively developed alternative.

Related Terms

Infostealer Malware arrow_outward

Infostealer malware is a category of malicious software designed to silently harvest sensitive data — passwords, sess…

Stealer Logs arrow_outward

A stealer log is the package of data exfiltrated from a single device by infostealer malware. It typically contains s…

Malware-as-a-Service (MaaS) arrow_outward

Malware-as-a-service (MaaS) is a criminal business model in which malware authors rent or sell their software, infras…

Compromised Credentials arrow_outward

Compromised credentials are usernames and passwords that have been exposed to unauthorized parties — frequently throu…

← All Glossary Terms Last reviewed: June 2026