A “Facebook password stealer” is capable of covertly pilfering sensitive information from any wannabe attacker who uses it.On 3 August, a security researcher by the name of MalwareHunterTeam tweeted about the credential-collecting tool’s hidden nature.This “Facebook Password Stealer” not only will send your credentials to an actor instead of hacking your target, but installs njRAT also.
😂 pic.twitter.com/pCRftqBkpF— MalwareHunterTeam (@malwrhunterteam) August 3, 2017The phrase “how to hack facebook account” yields plenty of results in popular search results. Google returned more than 15 million of them in less than a second of scanning the public web. Who knows how many results that either the deep web or dark web yields?
Screenshot of “how to hack a facebook account” Google search results on 14-08-17.With that said, it comes as no surprise that computer criminals would seek to capitalize on wannabe attackers’ interest in cracking a target’s Facebook account.Upon successful installation onto a bad actor’s computer, this utility loads up njRAT, a remote access tool. The malware, which also goes by the name Bladabindi, has been around since at least 2013 when researchers at Fidelis Cybersecurity Solutions detailed in a report (PDF) its indicators, domains, and Tactics, Techniques, and Procedures (TTPs) used for some of its active attack campaigns. News surrounding njRAT became scarce in 2014. But then the malware resurfaced in 2015 and helped inspire the creation of more sophisticated RATs.Bladabindi can assume remote control of a device, collect information about the infected machine, open a remote shell into the command line, record the computer’s microphone and webcam, log keystrokes, and (perhaps ironically) steal passwords, among other functions.A