The Erbium infostealer posed as game cracks for propagation

September 30, 2022
Erbium Infostealer Game Cracks Malware propagation

Threat actors have been distributing the Erbium infostealer via fake cracks and cheats of well-known video games. The actors have utilised gaming products to steal targeted information and crypto wallets.

Erbium is a newly discovered Malware-as-a-Service that offers its customers’ information stealer malware. It is becoming popular for several cybercriminal groups since it has sophisticated functionality, cheap pricing, and customer support.

 

The Erbium infostealer was first spotted by researchers on a Russian Forum a couple of months ago.

 

According to analysts, the Erbium infostealer was endorsed on a Russian platform last July and could be rented by its customers for $9.00 per week. However, the popular demand for Erbium has caused its price to skyrocket to $100 per month or a thousand dollars for an annual subscription.

Erbium is like other infostealer that can snatch stored data in web browsers such as cookies, credit cards, payment transactions, autofill information, and saved passwords. The malware could also exfiltrate data from a set of cryptocurrency wallets installed on a web browser as an extension.

In addition, Erbium can steal two-factor authentication codes from Authenticator 2FA, Trezor Password Manager, Authy 2FA, and EOS Authenticator. Moreover, the malware could take screenshots from monitors, which could result in snatching Discord and Steam tokens, and Telegram Auth files and identify the host based on the hardware and operating system.

Subsequently, the malware operators could get a preview of what has been stolen while the data is exfiltrated to their command-and-control servers.

A separate researcher revealed signs of Erbium infections that appeared in several countries globally. Most recent sightings occurred in Vietnam, Malaysia, India, Italy, Spain, Columbia, and the United States.

Experts believe the Erbium developers could also upgrade their tactics by expanding their lures. Hence, vectors such as game cracks and cheats can be added by threat actors to different lures such as emails, software cracks, and more.

Users should always be wary of downloading pirated software from untrusted or third-party sources to keep threats like this at bay. Researchers also suggest that users should invest more in adopting AV tools and applying updated security fixes.

About the author

Leave a Reply