A brief look at all things infostealers for the week 41, 2024 (07.10.2024–13.10.2024). Includes an update on XFiles, Lumma, StealC and Vidar stealers. And a news article on Ukrainian national pleading guilty to his involvement in the Raccoon Stealer.
XFiles Update
Note: The update post is copy-pasted as is from the XSS forum
Update 3.11.0 08.10.2024
**
A small update, added log markers by default, to do this you need to go to Team Management > Log Markers (at the very bottom) > Click on the blue button
Now we are in matrix https://matrix.to/#/@luciferxfiles:matrix.org**
Update 3.12.0
A small update, the control panel of created builds has been improved, the ability to mass delete builds has appeared. It is worth noting that the logs received from deleted builds will still be sent to your panel!**
Lumma Update
Note: The update post is copy-pasted as is from the XSS forum
Update 13.10 EN
- Market search accelerated by several times
- Added possibility to filter logs by several countries with memory
- Added ability to specify a minimum threshold for passwords and cookies
- Enabled automatic payment for balance replenishment and reduced the minimum deposit amount to 1$
- Changed filter system
- Completely rewritten the code of the marketplace
- Widgets work 40 times faster
- Accelerated the work of the logs page
- Fixed a bug that caused the file grabber to not collect files with masks/paths containing Unicode characters (e.g. Chinese characters, etc.)
- Fixed a bug where Chrome profiles containing Unicode characters in the name might not be collected
- Fixed a possible bug in PowerShell loader from memory
- Cleaned Windows Defender 10/11 + Cloud + Run-Time
Screenshot from XSS forum
Vidar Update
Note: The update post is copy-pasted as is from the XSS forum
HURRAH 11.1 – A NEW BLOW FOR CHROME
Completely reworked the cookie collection of Chrome’s new encryption method. Now we have quietly split into profiles, as well as made a remote change to partial code, without rebuild.
We’ve worked hard for you, here are our changes:
1️. Improve chrome collection
2️. Chrome Cookies profile separation
3️. Full method working from memory
4️. Clean up build and replace pads.
5️. Easy to crypt
6️. Reworked data collection algorithms
I realize it’s been a long time to update, but we apologize! We try to make the product really high quality, so we are extending the old prices for a whole week!
Screenshot from XSS forum
StealC Update
Note: The update post is copy-pasted as is from the XSS forum
We have decided to raise prices for our product
We want to protect ourselves a little from constant “defectors” from software to software, as well as to continue to provide quality customer support
New prices will be effective from October 10:
- $300 / month
- $700 / three months
- $1000 / 6 months
(Old customers will be renewed for some time at the old prices).
In addition to this, we are announcing update 2.0:
- completely rewritten from scratch admin panel in a new design with a lot of innovations – separate access for workers, redesigned search, new bulk upload and much more!
- half-resident version of the build – the build stays running in the background until rebooting in the system, which allows you to upload files through the loader even after logging to the admin panel.
Screenshot from XSS forum
Articles/News
Ukrainian pleads guilty to operating Raccoon Stealer malware
- https://www.bleepingcomputer.com/news/security/ukrainian-pleads-guilty-to-operating-raccoon-stealer-malware/