Daily Dark Web
  • Home
  • Data Breaches
  • Inside the Adversary
    • Dark Web Informants
  • DDW Top Lists
  • Ransomware News
  • DarkWeb News
    • Vulnerability
    • Cyber Attacks
  • Unauthorized Accesses
  • About Us
No Result
View All Result
  • Home
  • Data Breaches
  • Inside the Adversary
    • Dark Web Informants
  • DDW Top Lists
  • Ransomware News
  • DarkWeb News
    • Vulnerability
    • Cyber Attacks
  • Unauthorized Accesses
  • About Us
No Result
View All Result
Daily Dark Web
No Result
View All Result
Home DarkWeb News & Services

Divulge Stealer Unveiled: Advanced Info-Stealer Targets 25 Cryptocurrency Wallets

September 7, 2024
Reading Time: 2 mins read
Divulge Stealer Unveiled: Advanced Info-Stealer Targets 25 Cryptocurrency Wallets

A malware known as Divulge Stealer has been introduced, claiming to significantly enhance the capabilities of its predecessor, Umbral-Stealer. This updated version, developed to target 25 major cryptocurrency wallets, boasts a comprehensive redesign and advanced features aimed at precise data extraction.

Divulge Stealer includes a range of new functionalities:

  1. Comprehensive Redesign: Built from the ground up, this iteration introduces advanced techniques for targeting cryptocurrency wallets with improved accuracy.
  2. Expanded Wallet Support: The stealer now covers 25 major cryptocurrency wallets, including Bitcoin, Ethereum, and Monero, broadening its reach and effectiveness.
  3. Recursive Data Extraction: Employing a sophisticated recursive technique, it thoroughly scans and retrieves wallet files, ensuring no traces are left behind.
  4. Signature Appending Feature: A new option allows users to append a custom .exe digital signature, enhancing stealth and making detection more challenging.
  5. Optimized Design: Unnecessary features have been removed to reduce the overall file size.

Key features of Divulge Stealer include:

  • Anti-Virtual Machine Detection: Detects and exits if running in a virtual machine to avoid analysis.
  • Admin Privileges Management: Requests elevated privileges for certain operations and ensures persistence across reboots.
  • Self-Protection Mechanisms: Hides its executable, disables Windows Defender, and includes other techniques to avoid detection.
  • Data Collection: Extracts browser passwords, cookies, Discord tokens, cryptocurrency wallet data, screenshots, and saved credit cards.
  • Real-Time Connection Monitoring: Monitors for an active internet connection before executing network tasks.
  • Exfiltration: Compresses and sends stolen data to a specified webhook, with statistical reporting.
  • Stealth Operations: Operates silently and can remove itself from the system after execution.
  • Blocking Security Sites: Blocks access to antivirus and security websites to prevent analysis and removal of the malware.

Divulge Stealer offers a range of features designed to capture and exfiltrate sensitive data while minimizing detection.

Tags: cryptocrypto-walletdarkwebmalwarePy_Devstealer
ShareTweet

Related Posts

BreachForums Announces VECT Partnership and Security Updates
DarkWeb News & Services

BreachForums Announces VECT Partnership and Security Updates

April 16, 2026
ShinyHunters Telegram Update Claims Second Leader Arrested
DarkWeb News & Services

ShinyHunters Telegram Update Claims Second Leader Arrested

February 5, 2026
INC Ransomware Breaches Wall Street English – 3.5TB Data Leaked
DarkWeb News & Services

INC Ransomware Breaches Wall Street English – 3.5TB Data Leaked

December 25, 2025
SLSH Announces Return and Teases New Website for November 24
DarkWeb News & Services

SLSH Announces Return and Teases New Website for November 24

November 21, 2025
Operation Endgame Takedown Hits Rhadamanthys and VenomRAT
DarkWeb News & Services

Operation Endgame Takedown Hits Rhadamanthys and VenomRAT

November 13, 2025
Exclusive: Everest Ransomware Group Interview on Collins Aerospace Breach
DarkWeb News & Services

Exclusive: Everest Ransomware Group Interview on Collins Aerospace Breach

November 6, 2025
Next Post
Threat Actor Claims to Sell Unauthorized VPN Access to Taiwanese Bank and U.S. Company

Threat Actor Claims to Sell Unauthorized VPN Access to Taiwanese Bank and U.S. Company

Threat Actor Claims to Sell Web Shell Access to a Major Rental and Retail Company

Threat Actor Claims to Sell Web Shell Access to a Major Rental and Retail Company

Recommended Stories

Indian Food Delivery Platform Allegedly Suffers Data Breach, Threat Actor Claims

Indian Food Delivery Platform Allegedly Suffers Data Breach, Threat Actor Claims

March 3, 2025
SHOFCO Data Breach: 129,000 Member Records Put up for Sale

SHOFCO Data Breach: 129,000 Member Records Put up for Sale

January 5, 2026
Italian Hotel Casa Dorita Allegedly Suffers Data Breach – Guest IDs Surface on Dark Web

Italian Hotel Casa Dorita Allegedly Suffers Data Breach – Guest IDs Surface on Dark Web

August 6, 2025

Popular Stories

  • SudamericaData Breach Exposes Over 1TB of Argentine Records

    SudamericaData Breach Exposes Over 1TB of Argentine Records

    0 shares
    Share 0 Tweet 0

  • Threat Actor Claims Sale of Dell Database Containing 49 Million Customer Records

    0 shares
    Share 0 Tweet 0

  • SUUMO, CHINTAI, At Home, HOME’S Suffer Data Breach

    0 shares
    Share 0 Tweet 0

  • Financial Tech Giant SilverLake Axis Allegedly Breached – 423GB of Data for Sale

    0 shares
    Share 0 Tweet 0

  • Telekom Serbia Investigates Leak of 160,000 Customer Records

    0 shares
    Share 0 Tweet 0
Daily Dark Web

Disclaimer: Daily Dark Web (DDW) is an independent media platform providing information, analysis, and reporting on cybersecurity, cyber incidents, and related digital developments. All content published on this website is for informational and journalistic purposes only. DDW does not support, endorse, or promote any illegal activities, threat actors, or organizations referenced in its content. Any statements, claims, or opinions expressed by third parties, including interview subjects, are their own and do not reflect the views of DDW. Such content may include unverified information and should be interpreted critically. DDW does not participate in, facilitate, or coordinate any activities discussed or referenced on this platform. Under no circumstances should any content be interpreted as encouragement, instruction, or endorsement of unlawful actions. All interactions and publications are conducted in the public interest to enhance awareness and understanding of the evolving cyber landscape.

No Result
View All Result
  • About Us
  • Home
  • Newsletter
  • Privacy Policy

Disclaimer: Daily Dark Web (DDW) is an independent media platform providing information, analysis, and reporting on cybersecurity, cyber incidents, and related digital developments. All content published on this website is for informational and journalistic purposes only. DDW does not support, endorse, or promote any illegal activities, threat actors, or organizations referenced in its content. Any statements, claims, or opinions expressed by third parties, including interview subjects, are their own and do not reflect the views of DDW. Such content may include unverified information and should be interpreted critically. DDW does not participate in, facilitate, or coordinate any activities discussed or referenced on this platform. Under no circumstances should any content be interpreted as encouragement, instruction, or endorsement of unlawful actions. All interactions and publications are conducted in the public interest to enhance awareness and understanding of the evolving cyber landscape.

Are you sure want to unlock this post?
Unlock left : 0
Are you sure want to cancel subscription?