MetaStealer Cracked
On 7 March 2022, KELA observed a threat actor named _META_ announcing the launch of META - a new information-stealing malware, available for for USD 125 per month or USD 1,000 for unlimited use. The actor it has the same functionality, code and panel as The redline but with several improvements. Here's a version for you to study
![[Image: MetaStealer.webp]](https://blackhatindian.com/image/MetaStealer.webp)
Stealer functionality: Collects from browsers: Login and passwords Cookies Autocomplete fields Credit cards Supported browsers: All browsers based on Chromium (even latest version of Chrome) All Gecko-based browsers (Mozilla, etc.) Data collection from FTP clients, IM clients File-grabber customizable by Path, Extension, Search-in-subfolders (can be configured for the necessary cold wallets, Steam, etc.) Settings by country. Setting up a blacklist of countries where the build will not work Settings for anti-duplicate logs in the panel Collects information about the victim’s system: IP, country, city, current username, HWID, keyboard layout, screenshot, screen resolution, operating system, UAC Settings, is the current build running with administrator privileges, User-Agent, information about PC hardware (video cards, processors), installed antiviruses Performing tasks: Download – download a file from link to the specified path RunPE – injection of a 32-bit file downloaded from link into another file DownloadAndEx – download a file from link to the specified path with subsequent launch OpenLink – open a link in the default browser
Download mirrored link
On 7 March 2022, KELA observed a threat actor named _META_ announcing the launch of META - a new information-stealing malware, available for for USD 125 per month or USD 1,000 for unlimited use. The actor it has the same functionality, code and panel as The redline but with several improvements. Here's a version for you to study
Stealer functionality: Collects from browsers: Login and passwords Cookies Autocomplete fields Credit cards Supported browsers: All browsers based on Chromium (even latest version of Chrome) All Gecko-based browsers (Mozilla, etc.) Data collection from FTP clients, IM clients File-grabber customizable by Path, Extension, Search-in-subfolders (can be configured for the necessary cold wallets, Steam, etc.) Settings by country. Setting up a blacklist of countries where the build will not work Settings for anti-duplicate logs in the panel Collects information about the victim’s system: IP, country, city, current username, HWID, keyboard layout, screenshot, screen resolution, operating system, UAC Settings, is the current build running with administrator privileges, User-Agent, information about PC hardware (video cards, processors), installed antiviruses Performing tasks: Download – download a file from link to the specified path RunPE – injection of a 32-bit file downloaded from link into another file DownloadAndEx – download a file from link to the specified path with subsequent launch OpenLink – open a link in the default browser
Download mirrored link