Scripter Apr 29, 2023
EvilExtractor: Windows-Malware stiehlt mehr als nur Passwörter https://tarnkappe.info/artikel/it-sicherheit/malware/evilextractor-windows-malware-stiehlt-mehr-als-nur-passwoerter-273352.html #Cybercrime #Malware #EvilExtractor
EvilExtractor: Windows-Malware stiehlt mehr als nur Passwörter

Auf Wunsch verschlüsselt die EvilExtractor-Malware auch Dein Windows-System und überträgt Browser-Daten und lokale Dateien an den Angreifer.

Tarnkappe.info
Show thread𝙽𝙴𝚃𝚁𝙴𝚂𝙴𝙲Apr 26, 2023
Use this regex to match the #EvilExtractor FTP exfil traffic:
MKD \([a-zA-Z ]+\)[a-zA-Z0-9-]+\/1-Password-Cookies
𝙽𝙴𝚃𝚁𝙴𝚂𝙴𝙲Apr 26, 2023
Network forensics of an #EvilExtractor execution.
🔥 193.42.33.232:80 (payload delivery)
🔥 89.116.53.55:21 (FTP exfil)
https://netresec.com/?b=2342891
EvilExtractor Network Forensics

I analyzed a PCAP file from a sandbox execution of the Evil Extractor stealer malware earlier today. This stealer collects credentials and files of interest from the victim's computer and exfiltrates them to an FTP server. It is designed to autonomously collect and exfiltrate data rather than receiv[...]

Netresec
Bob CarverApr 24, 2023
Its primary purpose seems to be to steal browser data and information from compromised endpoints and then upload it to the attacker's FTP server."
https://amp.thehackernews.com/thn/2023/04/new-all-in-one-evilextractor-stealer.html #CyberSecurity #CyberSecurity #EvilExtractor #Windows #FTP #BrowserStealer #DataExtractor
New All-in-One "EvilExtractor" Stealer for Windows Systems Surfaces on the Dark Web

A new all-in-one stealer malware called EvilExtractor is being marketed for sale to steal data and files from Windows systems.

securityaffairsApr 24, 2023
#EvilExtractor, a new All-in-One info #stealer appeared on the #DarkWeb
https://securityaffairs.com/145200/cyber-crime/evilextractor-info-stealer.html
#securityaffairs #hacking #malware
EvilExtractor, a new All-in-One info stealer appeared on the Dark Web

EvilExtractor is a new “all-in-one” info stealer for Windows that is being advertised for sale on dark web cybercrime forums. Fortinet FortiGuard Labs researchers discovered a new “all-in-one” info stealer for Windows, dubbed EvilExtractor (sometimes spelled Evil Extractor) that is available for sale on dark web cybercrime forums. EvilExtractor is a modular info-stealer, it exfiltrates […]

Security Affairs
Nightfighter 🛡️Apr 22, 2023
#EvilExtractor #Malware Aktivitäten steigen! https://www.fortinet.com/blog/threat-research/evil-extractor-all-in-one-stealer
EvilExtractor – All-in-One Stealer | FortiGuard Labs

FortiGuard Labs examines the initial attack method used to deliver EvilExtractor and its malicious activities as an infostealer.…

Fortinet Blog
Tarnkappe.infoApr 22, 2023
📬 EvilExtractor: Windows-Malware stiehlt mehr als nur Passwörter
#Malware #Dropbox #EvilExtractor #Keylogger #Kodex #pdf #Phishing #PowerShell #Python #Ransomware #WindowsMalware https://tarnkappe.info/artikel/it-sicherheit/malware/evilextractor-windows-malware-stiehlt-mehr-als-nur-passwoerter-273352.html
EvilExtractor: Windows-Malware stiehlt mehr als nur Passwörter

Auf Wunsch verschlüsselt die EvilExtractor-Malware auch Dein Windows-System und überträgt Browser-Daten und lokale Dateien an den Angreifer.

Tarnkappe.info