Technology@beehaw.orgEnglish • 11 months ago

Statc Stealer: Windows malware stealing information from web browsers and apps, including login data, cookies, web data, and preferences, stealing cryptocurrency wallets, credentials, passwords, etc.

www.zscaler.com

47

Statc Stealer: Windows malware stealing information from web browsers and apps, including login data, cookies, web data, and preferences, stealing cryptocurrency wallets, credentials, passwords, etc.

www.zscaler.com

Technology@beehaw.orgEnglish • 11 months ago

Statc Stealer | Zscaler ThreatLabz Blog

www.zscaler.com

Beware of Statc Stealer: Hidden in ads, it unleashes malicious files. Stay vigilant, protect your devices and data from this stealthy threat.

Summary

Zscaler discovered a new information stealer called Statc Stealer.
Statc Stealer is a sophisticated malware targeting Windows devices to steal sensitive information.
The malware disguises itself as authentic Google ads (and .mp4 file) to infect systems.
Stealing capabilities include data from web browsers, crypto wallets, credentials, and messaging apps including Telegram.
Statc Stealer uses C++ code, evasion techniques, and encryption to hide its actions.
The attack chain involves malvertising, dropper, downloader files, and PowerShell scripts.
Stolen data is encrypted and sent to a command-and-control (C&C) server.
Popular Windows browsers like Chrome, Edge, Brave, and others are targeted.

Chat

@cwagner@lemmy.cwagner.me
link
fedilink
6•
edit-2
8 months ago
deleted by creator
- @Raisin8659OP
  link
  English
  4•
  edit-2
  11 months ago
  You don’t need admin access to do a lot of damage on a windows system. From the user space, a malware can:
  
  Exfiltrate files
  
  Read memory of other processes
  
  Read all user credentials from the credential store, including from TPM
  
  If the malware can fool the user to authenticate using Windows Hello, even the password managers that store encrypted secrets in credential stores aren’t safe:
  
  See this same class of malware at (unfortunate link, but you can see the detailed discussions there): https://www.reddit.com/r/Bitwarden/comments/14r29p6/meduza_stealer_will_steal_on_windows_browser/
  - @cwagner@lemmy.cwagner.me
    link
    fedilink
    3•
    edit-2
    8 months ago
    deleted by creator

Technology@beehaw.org

!technology@beehaw.org

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !technology@beehaw.org

Rumors, happenings, and innovations in the technology sphere. If it’s technological news or discussion of technology, it probably belongs here.

Subcommunities on Beehaw:

This community’s icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

100 users / day
1.22K users / week
3.87K users / month
10.1K users / 6 months
37.2K subscribers
2.74K Posts
61.6K Comments
Modlog