Predator The Thief is a non-resident, native stealer written in C ++.

Executable file weight: ~ 420 (~ 200kb under UPX). Stiller works only in memory (the log is not dropped to disk), all data is encrypted, one backup domain. Stiller does not work with CIS bots.

Stiller functionality:

Recursively collect passwords, cookies, history, credit cards, auto-complete forms from Chromium-Based browsers:

Google Chrome, Chromium, Opera, Amigo, Torch, Orbitum, Kometa, Comodo Dragon, Nichrome, Maxthon5, Sputnik, Epic Privacy Browser, Vivaldi, CocCoc and others based on Chromium.

Recursive collection of passwords, cookies, history, auto-complete forms from Gecko-Based browsers:

Mozilla Firefox, Waterfox, Cyberfox, Pale Moon, BlackHawk, IceCat, K-Meleon and others based on Gecko.

Collecting passwords, cookies from Edge

Collection of Windows Cookies *

Getting a screenshot of the desktop *

Receiving an image from a webcam *

Collecting data for authorization FileZilla, WinFTP, WinSCP

Session collection Discord *, Steam *, Telegram *, osu !, Authy

Collecting Skype dialogs *

Collecting data for authorization NordVPN

Collecting data for Pidgin authorization

Collecting data for Outlook authorization (collection from all profiles and most versions)

Collecting Battle Net Account Information

Recursive collection of wallet.dat + 7 Built-in cold wallets: Electrum, MultiBit, Ethereum, Jaxx, ByteCoin, Atomic, Exodus

Collecting information about the PC: Username, PC name, OS version, OS bit depth, text from the clipboard, the directory from which the build is launched, GPU, CPU, RAM, screen extension, list of PC users, installed software and its versions, city, country, time zone, postal code, coordinates

Anti-VM * - the stealer will not knock from virtual machines

Self-removal *

Builds are issued in two formats: .exe, .dll

Both versions work from under Low IL

* - Functions that can be turned on /off in the stealer panel:

Functionality:

Online viewing of logs

Log statistics

Filters and sorting of logs

Backup of logs - you can download all logs at once, or only selected ones by one archive

Panel customization

Anti-dos gate settings

A telegram bot built into the panel that will send notifications about new logs (disabled by default)

Online setup of grabber and config

Domain Detect (analogue of presets in other software, Real-time update)

Converting cookies from NetScape to Json

User system - create users, send them logs

Public statistics for the uploader

Percentage statistics by country

Ability to upload duplicates

2FA authorization via telegram bot

Passwords List for each log

Search for passwords of 2 types (the ability to download a file or copy to a buffer)

Modules:

Loader: Free. There are 4 types of launches, settings for: bit depth, countries, crypto wallets, and passwords. Available exit from Low to High IL (runas)

I do not sell a lease, but a full-fledged one (your build for any domain that you yourself will make + control panel)

After purchase, you get everything you need + (setting up for your host is free, at my discretion, if I'm not busy)

Initial price: $ 200

To pay accept: BTC, Webmoney

Rule ID: 4 Use GTI file reputation to identify trusted or malicious files

Rule ID: 6135 Unmanaged Powershell Detected

Rule ID: 6135 Unmanaged Powershell Detected

Prevent creation of new executable files in the Windows folder