• By Gurumoorthi
• stealer, python_obfuscation, braodo, telegram_bot
• 7 Likes
• 0 Comments
• 0 Shares

GitHub pages serve Braodo Version 2, A Python based Stealer

We observed a threat actor leveraging GitHub repositories to execute Braodo Stealer a Sophisticated Python based Stealer. The Author hosted all the necessary python packages to run the stealer within the GitHub repository. The infection layers included a Byte Order Marker (BOM), a type of obfuscator designed to make the victim believe it is a Chinese file.