Akira Stealer: An Undetected Python-Based Info-stealer

The Akira malware, discovered in March 2023, steals sensitive data (including login details and credit card information) and uploads it to a GoFile online storage and Discord IM service. Akira uses a multi-phase infection method to evade detection, which threat actors claim is Fully Undetectable (FUD). Operating via Telegram, C2 server, and GitHub, the malware targets financial information from multiple browsers for exfiltration. Cyfirma has published a comprehensive Akira report, outlining the malware’s behavior and source code details.