Beware: New Realst Malware Threatens Crypto Wallets – Protect Yourself Now!

• A new malicious software called Realst is threatening users of Windows and Mac systems with cryptocurrency wallet attacks.
• The malware employs sophisticated techniques such as “AppleScript spoofing”, password division and keychain data extraction to gain unauthorized access to user information.
• Security researchers have identified 16 variants of the malware, divided into four families (A, B, C and D).

Beware: Crypto Wallets at Risk from New Malware “Realst”

A dangerous malware is causing havoc among Mac and Windows users, threatening cryptocurrency wallets. The Realst malware employs sophisticated techniques like “AppleScript spoofing”, password division, and keychain data extraction. Stay vigilant and learn how to spot threats to your wallets.


Hackers remain undeterred as governments turn a firm eye to the prevalence of cybercrime in the crypto space. Ever seeking innovations in exploitation, July has been an active period for hackers as a Coinbase user lost $4.2M to an attack known as “spear phishing” On July 6th, security researcher iamdeadlyz identified a new threat to users’ crypto wallets, known as “Realst” and dragged it into the spotlight.

16 Distinct Variants Pose Cryptocurrency Threat

The Realst malware affects users on both Windows and Mac by spreading through fake blockchain games. Threat actors use social media to promote games and share access codes for downloading. Access codes are then used to target victims’ wallets and evade security researchers. Game installers distribute data-stealing malware (e.g., RedLine Stealer on Windows, Realst on macOS), which pilfers data from web browsers and cryptocurrency wallets . SentinelOne analyzed 59 Mach-O samples of Realst, discovering 16 variants, highlighting active development. As per SentinelOne’s analysis , the Realst malware has these variants categorized into families A, B, C