It scans popular web browsers (Google Chrome, Mozilla Firefox, Microsoft Edge, Brave, Opera) to extract saved usernames, passwords, cookies, and autofill data.
Astral-Stealer-v1.8.zip now includes the ability to encrypt configuration files using a user-defined password. This adds an extra layer of security and protection for users who want to keep their configuration settings private.
– Periodic assessments help identify and remediate security gaps. Astral-Stealer-v1.8.zip
Information Stealer Platform: Microsoft Windows Language: Typically C# (.NET) or C++ Primary Goal: Theft of credentials, cryptocurrency wallets, and system information.
: It can modify the Windows registry to ensure it starts automatically upon system reboot. It scans popular web browsers (Google Chrome, Mozilla
: Stolen data is typically bundled and sent to a remote Command and Control (C2) server via Discord webhooks or Telegram bots. Prevention and Mitigation
– EDR solutions can identify behavioral indicators of stealer activity. : Stolen data is typically bundled and sent
Do you need instructions on how to ? Share public link
While specific IOCs (like IP addresses or hashes) change frequently for each campaign, the following behaviors are characteristic:
: Extracts passwords, cookies, autofill data, and credit card information from Chrome, Firefox, and other Chromium-based browsers. Gaming Accounts : Specifically targets credentials for Steam, Roblox, and Minecraft Crypto Wallets
Go to your account settings on Discord, Google, and Steam, and select to invalidate any stolen session tokens.