Spyware.PasswordStealer

Spyware.PasswordStealer is Malwarebytes’ generic detection name for applications that may run in the background and silently collect information about the system, connected users, and network activity. It attempts to steal stored credentials, usernames, passwords, and other personal and confidential information. This information may be transmitted to a destination specified by the author.This spyware may allow an attacker to install additional software to the infected machine, or may direct the infected machine to participate in a malicious botnet for the purposes of sending spam or other malicious activities.

Spyware.PasswordStealer may be distributed using various methods. This spyware may be packaged with free online software, or could be disguised as a harmless program and distributed by email. Alternatively, this software may be installed by websites using software vulnerabilities. Infections that occur in this manner are usually silent and happen without user knowledge or consent.

Spyware.PasswordStealer may run silently in the background and may not provide any indication of infection to the user. It may also disable antivirusprograms and other Microsoft Windows security features.

Malwarebytes blocks Spyware.PasswordStealer

You can use the Malwarebytes Anti-Malware Nebula console to scan endpoints.

Nebula endpoint tasks menu

Choose the Scan + Quarantine option. Afterwards you can check the Detections pageto see which threats were found.

On the Quarantine pageyou can see which threats were quarantined and restore them if necessary.