[MART] - Daily Diary #560 - Luca Stealer Shared on Hacking Forum

[CTAS-MAT]

Hello,

I hope everyone is doing well!

Below is the entry for today.

07/26/2022 - Diary entry #560:

Recently, on July 3rd, the source code of Luca Stealer, an information-stealing malware developed in the cross-platform Rust language, had its source code shared on a hacking forum for use in cyber attacks.

The main goal of Luca Stealer is to steal sensitive data from Chromium-based web browsers, where it steals stored credit cards, login credentials, and cookies. It also targets cryptocurrency wallet browser plugins, Steam accounts, Discord tokens, Ubisoft Play, Telegram, and other messaging apps. Finally, the stolen data is packaged inside a ZIP file accompanied by a summary of what is included and exfiltrated via Discord webhooks and the logs delivered via Telegram.

While the malware is written in Rust – a trend adopted by many threat actors nowadays (covered by many of our Daily Diaries) – it currently targets only Windows systems. However, now that the code is publicly available (our team got access and was able to verify it), other threat actors can port it – after some work – to Linux or macOS systems.

Kind Regards,

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.immunityinc.com/pipermail/mart/attachments/20220726/5f9e39db/attachment.htm>