https://github.com/sallie-may/acab-stealer

Here a leak of the Acab Stealer
https://github.com/sallie-may/acab-stealer

browser crypto dualhook leak malware python russian stealer

Last synced: about 7 hours ago
JSON representation

Here a leak of the Acab Stealer

• Host: GitHub
• URL: https://github.com/sallie-may/acab-stealer
• Owner: Sallie-May
• Created: 2024-08-08T11:11:16.000Z (3 months ago)
• Default Branch: main
• Last Pushed: 2024-08-08T11:26:17.000Z (3 months ago)
• Last Synced: 2024-08-08T13:21:58.967Z (3 months ago)
• Topics: browser, crypto, dualhook, leak, malware, python, russian, stealer
• Language: Python
• Homepage:
• Size: 11.1 MB
• Stars: 0
• Watchers: 1
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

        
# Acab Stealer 

This repository exposes and analyzes a stealer malware that has been hidden in various GitHub projects, often disguised as dualhook in tools, other stealers, and software. The goal is to reveal how this malicious code spreads and to help others identify and avoid it.

Contents:

##  Malware Code Leak: The source code of the stealer.

Files from first payload to the final one:

- `firstpayload.py`

- `dropper.py`

- `gruppe.py`

## Analysis: How it works and how it was hidden.

He's way to hide it is pretty simple. It use `;` to hide inside of python program

- Example :

``` python

import os                                                                                      :exec("payload")

```

# Detection Tips: Ways to spot similar threats in other projects.

- `Always look for any exec/eval call inside of any python file`

Disclaimer:

This project is for educational purposes only. Misuse of this information is prohibited.

RUN IT IN A VM IM NOT RESPONSIBLE FOR YOUR ACTIONS