Poulight Stealer

The PoulightStealer is a malware that is being sold on the Dark Web to anyone who is willing to pay the price. This threat is a very cheap hacking tool that anyone can afford, which is what makes it particularly dangerous – any number of cyber crooks can obtain and distribute the PoulightStealer malware. The authors of the PoulightStealer threat are selling it for 500 Rubles, which is about $6,30. 

The main purpose of the PoulightStealer is to help cybercriminals gain access to users' accounts on various platforms – Telegram, Skype, FileZilla, etc. The PoulightStealer can also infiltrate Steam accounts by collecting and then using the 'loginusers.vdf' and 'config.vdf' files. In the case of FileZilla, the PoulightStealer will utilize the 'sitemanager.xml' and 'recentservers.xml' files to compromise the target's account. It is likely that attackers take interest in hijacking FileZilla user accounts to utilize them for the distribution of various threats. Compromised Steam accounts can be used for obtaining personal information regarding the user, carrying out tactic operations, collecting expensive items from the user's inventory, etc. Taking over Telegram or Skype accounts helps the attackers collect a lot of information about the user by spying on their conversations and dealings. Hijacked personal accounts can be very useful in propagating malware to more users or launching various schemes.

The PoulightStealer malware is able to collect data regarding the compromised device such as the version of the operating system, running processes, information about the hardware of the PC and the software installed, etc. The PoulightStealer is also capable of detecting any anti-malware solutions that may be present on the infiltrated computer that may prevent it from carrying out its campaign successfully.

The PoulightStealer threat may be a very cheap hacking tool, but it is perfectly capable of causing a lot of trouble – from identity theft to big monetary losses. Make sure you install a legitimate anti-malware application that will protect your PC and your data.