Security News > 2023 > February > New Stealc malware emerges with a wide set of stealing capabilities
A new information stealer called Stealc has emerged on the dark web gaining traction due to aggressive promotion of stealing capabilities and similarities with malware of the same kind like Vidar, Raccoon, Mars, and Redline.
Stealc has been advertised on hacking forums by a user called "Plymouth," who presented the malware as a piece of malware with extensive data-stealing capabilities and an easy-to-use administration panel.
According to the advertiser, apart from the typical targeting of web browser data, extensions, and cryptocurrency wallets, Stealc also has a customizable file grabber that can be set to target whatever file types the operator wishes to steal.
The researchers discovered more than 40 C2 servers for Stealc and several dozens of samples in the wild, indicating that the new malware has attracted the interest of the cybercriminal community.
Stealc has added new features since its first release in January, including a system to randomize C2 URLs, a better logs searching and sorting system, and an exclusion for victims in Ukraine.
Stealc then collects data from the targeted browsers, extensions, and apps, and also executes its custom file grabber if active, and finally exfiltrates everything to the C2. Once this step is over, the malware removes itself and the downloaded DLL files from the compromised host to wipe the traces of the infection.