All things infostealers. Week 47, 2024


A brief look at all things infostealers for the week 47, 2024 (18.11.2024–24.11.2024). Was a bit too busy with new work and family stuff, forgot to update. There wasn’t too many developments in infostealers during the week 47.

Xerph Update


Note: The update posts are copy-pasted as is (and machine-translated if post wasn’t available in English)

**<< Xerph 1.1.4 Loader + Stealer (Update) >>

Changes:
CAPTCHA codes will be shown as an image now
Added +3 more recoverable wallets:

  • BBQCoin
  • Primecoin
  • BitcoinCore (Bitcoin)

**<< Xerph 1.1.4 Loader + Stealer (Update) >>  
  
**Changes**:  
CAPTCHA codes will be shown as an image now  
Added +3 more recoverable wallets:
- BBQCoin
- Primecoin
- BitcoinCore (Bitcoin)

Screenshot from XSS forum

Banshee Stealer Update


Note: The update posts are copy-pasted as is (and machine-translated if post wasn’t available in English)

Sales are closed for the near future.
Anyone who has posted about buying, I recommend subscribing to the thread.

Banshee stealer announcement on the XSS forum:

Sales are closed for the near future.
Anyone who has posted about buying, I recommend subscribing to the thread.

Screenshot from XSS forum

Articles/News

Tracing the Path of VietCredCare and DuckTail: Vietnamese dark market of infostealers’ data

  • https://www.group-ib.com/blog/tracing-the-path-of-vietcredcare-and-ducktail/

JarkaStealer in PyPI repository

  • https://www.kaspersky.com/blog/jarkastealer-in-pypi-packages/52640/

Python NodeStealer Targets Facebook Ads Manager with New Techniques

  • https://www.netskope.com/blog/python-nodestealer-targets-facebook-ads-manager-with-new-techniques