• Password Managers
• Credentials From Password Stores
• File And Directory Discovery
• User Execution
• Obfuscated Files Or Information
• Virtualization/Sandbox Evasion
• Eddiestealer
• Data From Local System
• Drive-By Compromise
• Windows Credential Manager
• System Information Discovery
• Credentials From Web Browsers
• Exfiltration Over C2 Channel
• Screen Capture
• Input Capture
• Command And Scripting Interpreter
• Phishing

EDDIESTEALER: New Rust-Based Infostealer Spreads via Fake CAPTCHA Campaigns

"EDDIESTEALER," a sophisticated Rust-based infostealer distributed through fake CAPTCHA verification pages designed to trick users into executing a malicious PowerShell script. Once deployed, the malware targets and exfiltrates sensitive data such as credentials, browser information, and cryptocurrency wallet contents. Communicating with a command and control server, "EDDIESTEALER" uses advanced evasion techniques including string and API obfuscation. It specifically focuses on compromising crypto wallets, browsers, password managers, FTP clients, and messaging apps. Its use of the Rust programming language highlights a growing trend among cybercriminals favoring stealth and resistance to traditional detection methods.