All things infostealers. Week 51, 2024


A brief look at all things infostealers for the week 51, 2024 (16.12.2024–22.12.2024). This week observed updates for mintStealer and Xerph infostealers. And bunch of articles for you to read.

mintStealer Update

Note: The update posts are copy-pasted as is (and machine-translated if post wasn’t available in English)

The version 1.2.1 (beta 1) of mint stealer is OUT, what’s new?
● Fix chromium cookie stealer (on latest chromium)
● Enhancing anti-bot and many other things (would be a too long list)

The version 1.2.1 (beta 1) of mint stealer is OUT, what's new?
● Fix chromium cookie stealer (on latest chromium)
● Enhancing anti-bot and many other things (would be a too long list)

Screenshot from mintStealer’s Telegram channel

Xerph Update

Note: The update posts are copy-pasted as is (and machine-translated if post wasn’t available in English)

<< Xerph 1.1.5 Loader + Stealer (Update) >>

Changes:
Significantly improved/optimized the file downloader and opener
Optimized the ScreenFit setting for the CAPTCHA

Added +3 recoverable browsers:
SideKick
InsomniacBrowser
GhostBrowser
CryptoTabBrowser

Changes:
Significantly improved/optimized the file downloader and opener
Optimized the ScreenFit setting for the CAPTCHA

Added +3 recoverable browsers:
SideKick
InsomniacBrowser
GhostBrowser
CryptoTabBrowser

Articles/News

“DeceptionAds” — Fake Captcha Driving Infostealer Infections and a Glimpse to the Dark Side of Internet Advertising

  • https://labs.guard.io/deceptionads-fake-captcha-driving-infostealer-infections-and-a-glimpse-to-the-dark-side-of-0c516f4dc0b6

VIPKeyLogger Infostealer in the Wild

  • https://www.forcepoint.com/blog/x-labs/vipkeylogger-infostealer-malware

Technical Analysis of RiseLoader

  • https://www.zscaler.com/blogs/security-research/technical-analysis-riseloader

Python-Based NodeStealer Version Targets Facebook Ads Manager

  • https://www.trendmicro.com/en_us/research/24/l/python-based-nodestealer.html

Ukrainian National Sentenced to Federal Prison in “Raccoon Infostealer” Cybercrime Case

  • https://www.justice.gov/usao-wdtx/pr/ukrainian-national-sentenced-federal-prison-raccoon-infostealer-cybercrime-case