Cybersecurity company Elastic Security Labs has discovered Eddiestealer, a new rust-based “Infostealer” malware specially designed to access personal data such as passwords, browser information, and computer passwords.
To seduce the victim, hackers fake “I’m not a robot” capture pop-up on malicious websites.
The Bogus page tells you to paste the PowerShell command. The PowerShell command secretly runs a malicious PowerShell script that downloads the second script, and eventually saves the Eddiestealer Rust Binary.
The above malware decrypts hidden cores, secretly loads Windows functions, creates a server for hackers, and presents a list of tasks.
Malware Scanning Computers can scan computers for files related to Crypto (wallet configuration files, JSON keystrokes, etc.).
It may extract private keys, seed phrases, wallet passwords, and more. Such a method allows an attacker to easily drain his wallet.
Chromium-based browsers encrypt sensitive user data such as passwords and session tokens, but malware can bypass this encryption with the help of the Chromekatz tool. This tool can access the browser’s memory and extract sensitive data.
After stealing data from an unfortunate victim, the malware ends up removing it to cover the track.
Discover more from Earlybirds Invest
Subscribe to get the latest posts sent to your email.