FREE & opensrc Rust Stealer

[DoKitO]

Any update ?

msg of other dev got deleted, currently thinking if i push huge update or just this fix and make a even better update soon

 

[DoKitO]

Little update for now with some bug fixes

a lot more shit coming soon

 

[GridsNetwork]

I will provide more updates of behalf of DoKitO and the opensource support for the stealer, will release tomorrow.

 

[droidware]

Oh this so beatiful, thanks for sharing.

 

[Forwanin]

Is there any available steps to make this FUD before compiling it ?

Есть ли какие-либо доступные шаги для создания этого FUD перед его компиляцией?

 

[TROUBLE]

Is there any available steps to make this FUD before compiling it ?

Есть ли какие-либо доступные шаги для создания этого FUD перед его компиляцией?

Rename variables and functions. Rust-analyzer in vscode will help with not having to change every instance of it manually.

 

[DoKitO]

Rename variables and functions. Rust-analyzer in vscode will help with not having to change every instance of it manually.

Variables & functions dont get exported

 

[Forwanin]

Variables & functions dont get exported

therefore it's FUD as it is ?

 

[TROUBLE]

Variables & functions dont get exported

not directly of course. But each version of your stealer, i managed to make FUD by renaming them. Everything except the whole chromium part + renaming the folders, methods in the code, etc.
And by adding the winres crate with diff icons, manifests. Some of my experiments even lead to a working stealer that doesnt trigger smartscreen, but i dont know exactly what (im very very new to rust and may not use the correct naming in some occasion's.)

 

[DoKitO]

not directly of course. But each version of your stealer, i managed to make FUD by renaming them. Everything except the whole chromium part + renaming the folders, methods in the code, etc.
And by adding the winres crate with diff icons, manifests. Some of my experiments even lead to a working stealer that doesnt trigger smartscreen, but i dont know exactly what (im very very new to rust and may not use the correct naming in some occasion's.)

in the next update, detections will be reduced drastically(by coincident, should still be used w a crypt) and completely recoded chrome as well lol

 

[shook_1]

in the next update, detections will be reduced drastically(by coincident, should still be used w a crypt) and completely recoded chrome as well lol

I just dm'ed you asking about this before I checked here...great work on the little updates, let me know if you need anything before you release the next version! best of luck with exams

 

[Forwanin]

can you check your dm pls

I just dm'ed you asking about this before I checked here...great work on the little updates, let me know if you need anything before you release the next version! best of luck with exams

thanks

 

[justanoob]

in the next update, detections will be reduced drastically(by coincident, should still be used w a crypt) and completely recoded chrome as well lol

Can u add something like domain/cookies detect patterns?

 

[DoKitO]

Can u add something like domain/cookies detect patterns?

do you mean like tags?

 

[justanoob]

do you mean like tags?

Yes, that's it!
To give you an example, in redline, you can configure favorite url, with them in log creates a file DomainDetect.txt, where you can see what favorites url's is inside and in what quantity

Спойлер: Example

Passwords:
[Bank] citi.com (2), [Mail] accounts.google (3), [Mail] login.live (4), [Mail] login.aol (2), [Mail] login.yahoo (8), [Shop] apple.com (4), [Shop] samsung.com (15), [Social] facebook.com (4), [Social] instagram.com (1), [Social] twitter.com (2)

Cookies:
[Bank] citi.com (9), [Bank] stripe.com (1), [Bank] xoom.com (1), [Amazon] amazon.com (9), [Mail] accounts.google (17), [Shop] apple.com (7), [Shop] target.com (29), [Shop] aliexpress.com (27), [Shop] wayfair.com

And possible to add it to Telegram notifications

Спойлер: Example

Passwords: [Bank|Mail|Shop|Social]
Cookies: [Bank|Amazon|Mail|Shop]

It's very visual, and saves tons of time when working with big amounts of logs.
Can you add the ability to add favorite domains and group them into tags like Crypto/Banks etc....

Thanks!

 

[GridsNetwork]

Yes, that's it!
To give you an example, in redline, you can configure favorite url, with them in log creates a file DomainDetect.txt, where you can see what favorites url's is inside and in what quantity

Спойлер: Example

Passwords:
[Bank] citi.com (2), [Mail] accounts.google (3), [Mail] login.live (4), [Mail] login.aol (2), [Mail] login.yahoo (8), [Shop] apple.com (4), [Shop] samsung.com (15), [Social] facebook.com (4), [Social] instagram.com (1), [Social] twitter.com (2)

Cookies:
[Bank] citi.com (9), [Bank] stripe.com (1), [Bank] xoom.com (1), [Amazon] amazon.com (9), [Mail] accounts.google (17), [Shop] apple.com (7), [Shop] target.com (29), [Shop] aliexpress.com (27), [Shop] wayfair.com

And possible to add it to Telegram notifications

Спойлер: Example

Passwords: [Bank|Mail|Shop|Social]
Cookies: [Bank|Amazon|Mail|Shop]

It's very visual, and saves tons of time when working with big amounts of logs.
Can you add the ability to add favorite domains and group them into tags like Crypto/Banks etc....

Thanks!

i would love to add that in the next update..i'll drop here with some minor fixes too
already working on it.

 

[GridsNetwork]

I've changed the functions to accept a reference to the COMLibrary to reduce unnecessary cloning..on the anti_emulation part.

 

[GridsNetwork]

and always credit to DoKitO for starting these been watching the improvements of these stealer for a while now.

 

[DoKitO]

i would love to add that in the next update..i'll drop here with some minor fixes too
already working on it.

dont worry about, ill add it
Its easier with the new chrome grabber

 

[modibbo55]

i would love to add that in the next update..i'll drop here with some minor fixes too
already working on it.

I have been learning alot about Malware and

I've changed the functions to accept a reference to the COMLibrary to reduce unnecessary cloning..on the anti_emulation part.

Please am I doing something wrong? My cookies always appear in .txt formats
I'd it possible to change the cookie file format to a .js format?

and also the Debit and Credit cards on this stealer doesn't include the CVV number, did you encounter the same problems?

I am sorry for my ignorance, this is the first stealer i am working it, have alot to learn.