HQ/EMEAFind out how we can help your business
The newly discovered information-stealing malware, Statc Stealer, could infiltrate Windows-based devices and harvest valuable data. Moreover, the infostealer prioritises targeting crypto wallets, allowing it to collect credentials, passcodes, and data from messaging platforms like Telegram.
Based on reports, the malware developer coded the stealer using C++. It breaches the systems of its victims by prompting them to click a seemingly harmless ad. Additionally, Statc could disguise itself as an MP4 video within search engines, such as Google Chrome.
The Statc Stealer utilise a PDF installer to initiate its attacks.
According to investigations, the Statc Stealer operators drop and execute a fake PDF installer during the initial stage of its operations.
The actors discreetly launch a downloader binary that fetches the infostealer from a remote server via PowerShell script. The infostealer also includes complex mechanisms to prevent sandbox detection and threat analysis attempts.
Furthermore, the stealer establishes connections with a C2 server, which allows it to utilise HTTPS to transmit the harvested data from a target. The threat actors also include several anti-analysis tactics that involve cross-referencing file names to spot any misconfigurations to stop the malware’s execution process.
Researchers explained that the infostealer deceives people by disguising it as a Google advertisement. However, the attack process will infect the victims’ devices with destructive code once they click on the malicious ad. Subsequently, the infostealer will harvest critical data, such as web browsers, credit card numbers, and crypto wallet details.
In addition, the malicious software could target various search engines, such as Chrome, Edge, Firefox, Opera, Brave, and Yandex. If someone’s computer gets accessed without permission, they might become victims of identity theft and crypto scams.
Businesses could also suffer from a Statc Stealer infection since it could lead to legal liabilities, reputational damage, and financial loss.
The sudden appearance of the Statc Stealer indicates that organisations should upgrade their security defences to protect their data and finances. This new sophisticated malware leverages complex techniques like deceptive ads and targeted information heists.
Experts suggest that users and firms should implement layered security defences to counteract the risk posed by the Statc Stealer malware.
