Cegeka_Logo Careers Language Solutions
Back
Solutions
Hybrid Cloud

Hybrid Cloud

Explore the added value of cloud adoption for your business.

 Data solution

Data & AI

Discover our different data solutions to help you become a data-driven company.

 RegulatoryCompliance_Visuals_Navigation (1)

Regulatory Compliance

Ensure GDPR & GxP compliance with our comprehensive solutions.

 Cyber Security & Networking Solution

Cyber Security & Networking

With cyber resilience, your organisation becomes a bit more secure with each day.

 Digital Workplace Solution

Digital Workplace

Hybrid workplaces that increases productivity and reduces costs.

 Testing_Visuals_IconNavigation (1)

Quality Engineering

Ensuring seamless software, one Test at a time.

 Cegeka Applications Services

Cegeka Applications Services

Building the applications to embed growth, innovation and agility.

 Business Applications

Business Applications

Transform your business with Microsoft Dynamics ERP and CRM, integrated with Microsoft’s Power Platform.

 5G_Citymesh

5G & Mobile Private Networks

Expertise and development experience to bring all the advantages of 5G.

 Products and platform solutions

Products & Platforms

Software solutions that optimize business processes and drive success.

 Services
Back
Services
Website_Navigation_IT_Team_Extension_3

IT Team Extension

The best IT professionals to support your projects.

 Outsourcing Services

Outsourcing & Managed Services

Outsourcing your IT helps you to focus on your strategy.

 Website_Navigation_Consultancy

Consultancy

The right skills and attitude to support the IT projects at your office

 Website_Navigation_Projects

Projects

Integrating the right digital solutions for your IT project

 Industries
Back
Industries

Our industry-tailored services are designed to address specific challenges and opportunities across different industries.

All industries Website_Navigation_Agriculture

Agriculture

Cegeka has a deep understanding of the agri and food ecosystem and the opportunities it creates.

Website_Navigation_Healthcare

Healthcare

By creating leading digital solutions and connecting individuals, processes and systems.​

 Energy & Utilities

Energy & Utilities

The arrival of smart electricity grids will allow companies to take care of their own energy management

 Finance & Insurance

Finance & Insurance

Take major steps towards cloud computing to increase effectiveness through the use of AI and big data.

 Manufacturing

Manufacturing

Production chains are becoming intelligent networks with real-time track-and-trace systems.

 Website_Navigation_Mobility

Mobility

Offer citizens, businesses and visitors a better experience by integrating the best digital solutions for mobility.

 Insights
Back
Knowledge is our backbone

We believe in sharing our insights and expertise with you. Explore our resources and learn more about our products, services and industry trends.

 Icons_Navigation_Case Studies

Case Studies

Step into the world of our delighted customers and see how we helped them achieve their goals.

 Icons_Navigation_News Items

Corporate News

Stay in the loop with our company news, announcements, awards and events.

 Icons_Navigation_Blogs

Blogs

Read our latest articles on topics ranging from technology, innovation, business and beyond.

 Icons_Navigation_Webinars

Webinars

Be part of the action with our live or on-demand webinars, where our experts share invaluable knowledge.

 Icons_Navigation_Ebooks

E-books & Whitepapers

Download our guides and reports on various aspects of technology and business.

 Icons_Navigation_Events

Events

Find out where we are going to be next, and register for our upcoming events.

 CTG Academy

Academy

Enhance your skills with our expert-led training courses, tutorials, and certifications at our Academy.

Join our Academy About Us Back
shaping digital together

We work shoulder to shoulder with our clients to ensure technology drives impact when and where it matters most.

Start the journey with us Icons_Navigation_Why Cegeka

Why Cegeka

Discover why more than 2,500 clients around the world choose to work with us, and stay with us.

Icons_Navigation_Cegeka&Society

Cegeka & Society

We develop innovative solutions with a positive impact on the environment, people, and society.

 Icons_Navigation_Our Story

The Cegeka Story

In just over 30 years, Cegeka has grown from 30 people to a global company with 9,000 employees across 3 continents.

 Icons_Navigation_Annual Report

Annual Report

See how our work makes a difference, explore the full annual report to learn more.

More Cegeka

Our Management

Corporate News

Contact & Locations

 Back
Select language

Austria

Belgium

Belgium

Denmark

Germany

Italy

Romania

Sweden

The Netherlands

United Kingdom

United States

 Let’s get in touch Cegeka_Logo Solutions
Solutions
Hybrid Cloud

Hybrid Cloud

Explore the added value of cloud adoption for your business.

 Data solution

Data & AI

Discover our different data solutions to help you become a data-driven company.

 RegulatoryCompliance_Visuals_Navigation (1)

Regulatory Compliance

Ensure GDPR & GxP compliance with our comprehensive solutions.

 Cyber Security & Networking Solution

Cyber Security & Networking

With cyber resilience, your organisation becomes a bit more secure with each day.

 Digital Workplace Solution

Digital Workplace

Hybrid workplaces that increases productivity and reduces costs.

 Testing_Visuals_IconNavigation (1)

Quality Engineering

Ensuring seamless software, one Test at a time.

 Cegeka Applications Services

Cegeka Applications Services

Building the applications to embed growth, innovation and agility.

 Business Applications

Business Applications

Transform your business with Microsoft Dynamics ERP and CRM, integrated with Microsoft’s Power Platform.

 5G_Citymesh

5G & Mobile Private Networks

Expertise and development experience to bring all the advantages of 5G.

 Products and platform solutions

Products & Platforms

Software solutions that optimize business processes and drive success.

 Services
Services
Website_Navigation_IT_Team_Extension_3

IT Team Extension

The best IT professionals to support your projects.

 Outsourcing Services

Outsourcing & Managed Services

Outsourcing your IT helps you to focus on your strategy.

 Website_Navigation_Consultancy

Consultancy

The right skills and attitude to support the IT projects at your office

 Website_Navigation_Projects

Projects

Integrating the right digital solutions for your IT project

 Industries
Industries

Our industry-tailored services are designed to address specific challenges and opportunities across different industries.

All industries Website_Navigation_Agriculture

Agriculture

Cegeka has a deep understanding of the agri and food ecosystem and the opportunities it creates.

Website_Navigation_Healthcare

Healthcare

By creating leading digital solutions and connecting individuals, processes and systems.​

 Energy & Utilities

Energy & Utilities

The arrival of smart electricity grids will allow companies to take care of their own energy management

 Finance & Insurance

Finance & Insurance

Take major steps towards cloud computing to increase effectiveness through the use of AI and big data.

 Manufacturing

Manufacturing

Production chains are becoming intelligent networks with real-time track-and-trace systems.

 Website_Navigation_Mobility

Mobility

Offer citizens, businesses and visitors a better experience by integrating the best digital solutions for mobility.

 Insights
Knowledge is our backbone

We believe in sharing our insights and expertise with you. Explore our resources and learn more about our products, services and industry trends.

 Icons_Navigation_Case Studies

Case Studies

Step into the world of our delighted customers and see how we helped them achieve their goals.

 Icons_Navigation_News Items

Corporate News

Stay in the loop with our company news, announcements, awards and events.

 Icons_Navigation_Blogs

Blogs

Read our latest articles on topics ranging from technology, innovation, business and beyond.

 Icons_Navigation_Webinars

Webinars

Be part of the action with our live or on-demand webinars, where our experts share invaluable knowledge.

 Icons_Navigation_Ebooks

E-books & Whitepapers

Download our guides and reports on various aspects of technology and business.

 Icons_Navigation_Events

Events

Find out where we are going to be next, and register for our upcoming events.

 CTG Academy

Academy

Enhance your skills with our expert-led training courses, tutorials, and certifications at our Academy.

Join our Academy About Us
shaping digital together

We work shoulder to shoulder with our clients to ensure technology drives impact when and where it matters most.

Start the journey with us Icons_Navigation_Why Cegeka

Why Cegeka

Discover why more than 2,500 clients around the world choose to work with us, and stay with us.

Icons_Navigation_Cegeka&Society

Cegeka & Society

We develop innovative solutions with a positive impact on the environment, people, and society.

 Icons_Navigation_Our Story

The Cegeka Story

In just over 30 years, Cegeka has grown from 30 people to a global company with 9,000 employees across 3 continents.

 Icons_Navigation_Annual Report

Annual Report

See how our work makes a difference, explore the full annual report to learn more.

More Cegeka

Our Management

Corporate News

Contact & Locations

 Austria   Austria DE Belgium   Belgium NL Belgium   Belgium FR Denmark   Denmark EN Germany   Germany DE Italy   Italy IT Romania   Romania EN Sweden   Sweden EN The Netherlands   The Netherlands NL United Kingdom   United Kingdom EN United States   United States EN Careers Let’s get in touch
Home Discover our latest blogs Discover our latest blogs StealeriumPy: A Stealerium variant delivered through ClickFix
Cyber security & Networking
1 minute reading

StealeriumPy: A Stealerium variant delivered through ClickFix

The CSIRT (Computer Security Incident Response Team) of Cegeka Modern SOC recently identified a new variant of the open-source ‘Stealerium’ malware, an information stealer, which is now being delivered through a technique known as ‘ClickFix’. This variant, which Cegeka CSIRT refers to as ‘StealeriumPy’, reflects a growing trend in the threat landscape: threat actors are refining existing tools and pair them with social engineering techniques to obtain sensitive data. Such methods highly rely on human errors and bypass traditional security measures. This highlights the importance of a robust security monitoring and incident response strategy for every organization.

This blog, authored by Cristina Aldea and Christos Katopis from Cegeka CSIRT, provides both an overview and an in-depth malware analysis report on ‘StealeriumPy’.

Cristina Aldea

Cristina Aldea

June 23, 2025

Malware Overview

In the first quarter of 2025, Cegeka CSIRT observed ‘StealeriumPy’ being distributed through ClickFix. ‘ClickFix’ is a popular social engineering technique that was first observed by security researchers in August 2024. Users accessing a suspicious or compromised website are prompted with pop-up messages that resemble ‘CAPTCHA’ or ‘IT support notifications’. These pop-up messages commonly request the users to follow instructions in order to ‘fix’ a non-existent issue or ‘prove’ that they ‘are not a robot’.

 Accessing such a website and following the instructions provided in a fake ‘CAPTCHA’ message, results in the execution of ‘StealeriumPy’

 Once executed, the malware injects itself into a legitimate executable and collects:

  • System information: Public IP address, Operating system version, Antivirus, Country Code, Windows Key.
  • Wireless network profiles and credentials.
  • Browser data: Saved credentials, cookies, credit card Information, cryptocurrency wallets, history, bookmarks, extensions.
  • Documents and sensitive files that reside in User folders.
  • Configuration files, sessions, account metadata of gaming applications.
  • Configuration files and credentials from VPN Clients.
  • Session data and login credentials from messaging applications.

The collected data is then exfiltrated via HTTP to a public IP address. 

Below, a high-level overview of the infection chain can be found:

blog_visual_ A Stealerium variant delivered through ClickFix-1

Recommendations

Cegeka CSIRT encourages organizations to:

  • Use Endpoint Detection and Response (EDR) tools to continuously monitor endpoints’ activity, detect and respond to threats.
  • Conduct frequent user awareness training and raise awareness on new attacks and techniques employed by threat actors.
  • Encourage users to report any suspicious activity.
  • Encourage Browser hygiene by avoiding saving sensitive information (credentials, credit card data or personal information) within the browser.
  • Consider disabling the ‘Win + R’ shortcut (used for Windows Run Dialog) shortcut (‘Win + R’), as ‘ClickFix’ technique seem to utilize this shortcut to coerce users into running malicious commands.
  • Establish an internal Security Operation Center / Cybersecurity Incident Response team or partner with a Managed Security Services Provider to ensure continuous threat detection and prompt incident response.

Malware Analysis Report

Please find the full Cegeka CSIRT malware analysis report along with a YARA rule for the detection/identification of StealeriumPy here:

StealeriumPy_brochure_HubSpot CTA 1920x540px

Cegeka Modern SOC

Our Cegeka Modern SOC, staffed with experienced security professionals, is able to detect these types of attacks and adequately respond to them in a timely manner, minimizing or even fully preventing impact on your organization.
Cristina Aldea

Cristina Aldea

More of Cristina Aldea articles

Contact us

Fill in the form.