-: FOLLOW US :- @theinsaneapp
A new information-stealing malware called "Stealc" is being advertised on dark web forums and has been discovered by cybersecurity researchers from SEKOIA.
-: FOLLOW US :- @theinsaneapp
The malware is fully-featured and ready-to-use, based on more popular infostealers such as Vidar, Racoon, Mars, and Redline Stealer.
-: FOLLOW US :- @theinsaneapp
Stealc gets new tweaks and upgrades at least once a week, including a command and control (C&C) center URL randomizer and an improved logs searching and sorting system.
-: FOLLOW US :- @theinsaneapp
The malware targets 22 browsers, 75 plugins, and 25 desktop wallets, and can exfiltrate stolen data automatically.
-: FOLLOW US :- @theinsaneapp
It performs anti-analysis checks to avoid virtual environments or sandboxing and loads Windows API functions to communicate with the C&C center.
-: FOLLOW US :- @theinsaneapp
Stealc collects data from targeted browsers, extensions, and apps, and exfiltrates all files to the C&C server.
-: FOLLOW US :- @theinsaneapp
The malware is being deployed to various PCs through fake YouTube tutorials that lead to a download website that will deploy Stealc.
-: FOLLOW US :- @theinsaneapp
SEKOIA has discovered over 40 C&C servers related to Stealc, suggesting that it has become popular among cybercriminals distributing stealer malware.
-: FOLLOW US :- @theinsaneapp
To protect your PC from malware, always keep your security software updated and avoid downloading or installing software from sketchy websites.
-: FOLLOW US :- @theinsaneapp
Do not open attachments or links from unsolicited emails, as they may contain malware.