Dailydarkweb researchers warn of a concerning development in the realm of cryptocurrency security as a new software dubbed the “Seed Phrase Seeker” emerges on the dark web. This sophisticated tool, priced at a staggering $5,000 per month, poses a significant risk to users of popular hardware and desktop wallets.
The Seed Phrase Seeker operates by surreptitiously monitoring the windows of widely-used wallets such as Metamask, Ledger, Trezor, Exodus, and Atomic. When a targeted wallet window appears, the malicious software springs into action, creating a deceptive overlay that prompts unsuspecting users to enter their password and/or seed phrase.
Crafted in C++ with a file size of approximately 200kb, the Seed Phrase Seeker boasts a 32-bit architecture, making it particularly elusive to detection. Additionally, the administrator backend is powered by express.js, further enhancing its capabilities and agility. This backend infrastructure enables the orchestrators of the Seed Phrase Seeker to efficiently manage and deploy updates, ensuring that their illicit activities remain one step ahead of detection and mitigation efforts.