This popular stealer is back due to popular demand with new
modifications and limitations. It decrypts all stored passwords in the
internet browser. It works on Windows Vista and Windows 7 machines and
it is in beta and only works on Chrome, Firefox, and IE. It is done in
Java applet so they do need to run the applet for this to work. Luckily,
the average user does not have much knowledge of computers so a little
of social engineering should do the trick. Basically, you register your
email, pick a theme and it will give you a URL.
Send the URL to a slave, use a bit of social engineering to get them to click on the link and run the applet. Once the applet is ran, they will get a fake error message and the decrypted stored passwords and cookie files will be sent to your email. It is 100% FUD. All the decryption is done through the applet so it is not JDB and no files are downloaded to the slave's computer hence wont trigger Anti Viruses.
Send the URL to a slave, use a bit of social engineering to get them to click on the link and run the applet. Once the applet is ran, they will get a fake error message and the decrypted stored passwords and cookie files will be sent to your email. It is 100% FUD. All the decryption is done through the applet so it is not JDB and no files are downloaded to the slave's computer hence wont trigger Anti Viruses.
- Go to: http://stealer.ambesty.com/
- Read the instructions
- Enter your email, click Signup/Login.
- It will generate a URL per theme, send your slave the URL.
- If all goes well, you should receive an email in your inbox with the decrypted data.
