LALALA Infostealer

LALALA Infostealer Description

Malware researchers have uncovered a brand-new infostealer pestering users online. This threat is dubbed the LALALA Infostealer, and it is not known who are the developers behind it. The goal of the LALALA Infostealer is to sneak into their target’s system silently, collect information, and then exfiltrate the gathered data to the attackers’ C&C (Command & Control) server.

Gathers, Compresses and Transfers Data to the Attackers’ C&C

It appears that the authors of the LALALA Infostealer are using spam email campaigns to propagate this threat. Usually, this includes a fake message and a macro-laced attachment. Users who fall for this trick and launch the attached file would allow the threat to compromise their system. Upon infecting a targeted PC, the LALALA Infostealer will make sure that a VBS file is executed every minute. The VBS file’s purpose is to receive commands from the LALALA Infostealer’s authors’ C&C server. This infostealer is capable of collecting information from several popular services – Mozilla Firefox, Mozilla Thunderbird, Google Chrome, Microsoft Edge, and Microsoft Outlook.

The data that the LALALA Infostealer collects is then placed in a folder that is located in the user’s %TEMP% directory. Apart from planting the LALALA Infostealer on the target’s system, the attackers also inject a genuine copy of the WinRAR application into the compromised host. This allows them to compress the gathered information and move it to a system directory. Then, the collected information is encrypted and exfiltrated to the attackers’ C&C server. The LALALA Infostealer is designed to collect saved login credentials, contact lists, cookies, any saved auto-fill data, and other important information.

At first, a large number of anti-malware applications were incapable of detecting the LALALA Infostealer, which makes it rather dangerous. Fortunately, it is likely that the developers of these tools have already updated their databases to include the LALALA Infostealer. Make sure you have a reputable anti-malware solution that will keep your data secure. Furthermore, do not forget to update all your software regularly.

Do You Suspect Your PC May Be Infected with LALALA Infostealer & Other Threats? Scan Your PC with SpyHunter

SpyHunter is a powerful malware remediation and protection tool designed to help provide PC users with in-depth system security analysis, detection and removal of a wide range of threats like LALALA Infostealer as well as a one-on-one tech support service. Download SpyHunter's FREE Malware Remover
Note: SpyHunter's scanner is only for malware detection. If SpyHunter detects malware on your PC, you will need to purchase SpyHunter's malware removal tool to remove the malware threats. Read more on SpyHunter. Free Remover allows you to run a one-off scan and receive, subject to a 48-hour waiting period, one remediation and removal. Free Remover subject to promotional details and Special Promotion Terms. To understand our policies, please also review our EULA, Privacy Policy and Threat Assessment Criteria. If you no longer wish to have SpyHunter installed on your computer, follow these steps to uninstall SpyHunter.

Leave a Reply

Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.