search

FallenAstaroth / stink

🚀 Stealer on built-in libraries only, which doesn't create any temp files on data collecting, with 4 sending methods and lots of functionality.
Apache License 2.0
222 stars 56 forks source link

Question #36

Closed n4stl3 closed 1 year ago

n4stl3 commented 1 year ago

Will be in future antivir bypass?

FallenAstaroth commented 1 year ago

I have no experience in crypting files, but the topic is interesting, when I have time to read, maybe something will work.

About Windows Defender, it works once in a while and when recompiling (sometimes 2-3 times) it stops fighting with the file.

Also found an old build (about 3 months old) and uploaded it to VirusTotal, pretty good for a clean file without crypting: image

FallenAstaroth commented 1 year ago

Funny thing is that after checking the file on VirusTotal I got 6 archives, all of them on Windows, which means that Defender missed them (I don't think it is disabled on the machines that check files)

n4stl3 commented 1 year ago

Okay thx for respond