Your new daily news source

Antivirus >

Tuesday, September 28, 2021 at 12:07 AM

BloodyStealer is on the lookout for gamers.

We were struck by the fact that the majority of the applications mentioned are gaming-related, implying that gamer accounts and their contents are in high demand on the underground market. We decided to look at the specific dangers that gamers confront.
The world has been conquered by BloodyStealer.

Despite its youth, BloodyStealer has already traveled the world. According to our research, the virus has infected people in Europe, Latin America, and Asia-Pacific, which isn't unexpected considering its malware-as-a-service (MaaS) distribution strategy, which allows anybody to purchase it for a modest monthly fee (approximately $10) or a lifetime license for $40.

The virus includes a variety of capabilities to resist analysis in addition to its stealing activities (read more about them here). It delivers stolen data to the C&C server as a ZIP archive, which is secured against DDoS and other Web assaults. To get data, including gamer accounts, hackers utilize either the (very rudimentary) control panel or Telegram.
BloodyStealer isn't the only one.

BloodyStealer is one of several programs for stealing gamer accounts accessible on the dark web. Other kinds of malware are sold by cybercriminals, many of which have been around longer than BloodyStealer. In addition, advertisements on underground forums often offer to publish a harmful link on a famous website or sell software to automatically create phishing sites.

Cybercriminals may use these technologies to gather a large number of credentials, which they can subsequently attempt to sell. On the dark web, you may find a variety of offerings connected to gamer accounts.
Access logs for wholesale users

So-called logs – databases holding reams of data for logging into accounts — are among the most popular goods. Attackers may describe the kinds of data, users' locations, the time period during which the logs were gathered, and other information in their advertisements. In the image below, for example, one underground forum member provides a 65,600-record collection, of which 9,000 are connected to users from the United States and 5,000 to inhabitants of India, Turkey, and Canada. The archive as a whole costs $150.