[Read]:New ZingoStealer infostealer targets crypto and crypto related wallets

[btc_angela]

Another new info stealer is on the wild, known as ZingoStealer. And this is being released as free to members of the Haskers Gang community.

But the mode of distribution is the same: (1) code generators and cracks (2) game cheat. They even had a Youtube as disguise for a game "Counter-Strike: Global Offensive" (CSGO).



Target browsers:

Google Chrome
Mozilla Firefox
Opera
Opera GX

And what makes this dangerous is that the malware searches for extensions of crypto wallets such as:

TronLink
Nifty Wallet
MetaMask
MathWallet
Coinbase Wallet
Binance Wallet
Brave Wallet
Guarda
EQUAL Wallet
BitApp Wallet
iWallet
Wombat - Gaming Wallet

And it also searches %APPDATA%\Local and %APPDATA%\Roaming for cryptocurrency wallet data associated with the following cryptocurrencies.

Zcash
Armory
Bytecoin
Jaxx Liberty
Exodus
Ethereum
Electrum
Atomic
Guarda
Coinomi

It also queries the registry (HKCU\SOFTWARE\<VALUE>) to identify settings associated with additional cryptocurrency wallets, including:

Bitcoin
Dash
Litecoin

So overall, this malware targets cryptocurrency wallets so it's a very dangerous information stealer that is going in the wild right now.

Again as I have said before, it's better to have a different machine for your crypto related activities so that the chances of you getting this kind of malware might be lessen.

For a detailed technical explanation you can read it here: https://blog.talosintelligence.com/2022/04/haskers-gang-zingostealer.html

[1714765952]

1714765952

[1714765952]

1714765952

[dkbit98]

This malware again targets only wiNd0ws users because it is in format of loader.exe file, so anyone running Linux or Max should be just fine and protected from this.
However, Zingo is mostly affecting gamers and users who are using Adobe applications, and most of them are sadly using wiNd0ws operating system.

I would suggest anyone who is dealing with Biitcoin to buy good old cheap laptop (Thinkpad would be a good choice) and install Linux operating system.
Use this computer only for crypto and other important stuff, that will be separate from gaming and regular everyday browsing.
This way you are drastically reducing the risk of infecting your system with this and any other malware.

[Lafu]

Thats why you should be not trust any kind of crack or keygen program that you can download , cracks and stuff should be not used at all .
Its a knowen thing that the most cracks , keygen or third party cheat programs can and have that kind or any of malware in it.
Found another article here about it : https://www.bleepingcomputer.com/news/security/new-zingostealer-infostealer-drops-more-malware-cryptominers/

[coupable]

I would suggest anyone who is dealing with Biitcoin to buy good old cheap laptop (Thinkpad would be a good choice) and install Linux operating system.
Use this computer only for crypto and other important stuff, that will be separate from gaming and regular everyday browsing.
This way you are drastically reducing the risk of infecting your system with this and any other malware.

You know that not many people can deal with Linux. As far as this system carries features for protection and privacy, it is not available to everyone after they are accustomed using Windows.
Perhaps it should work if there exist a Linux version with personalized features without the need to use programming commands .

[BitMaxz]

It seems my kid's PC has this software called loader.exe but not for CSGO mostly my kids are looking for generators and cheats or hacks for Roblox so I think my kid's PC is already infected with that malware. Their PC has full of malware and ads which are very annoying when using their PC.


That is why not recommended to download any game hacks or generators or mostly patcher or loader to bypass playing paid games.
I have experienced wrapping software before that includes silent install and put a readme notes under the rar file and tell them to disable antivirus before you install the software or game. Someone taught me how to do it and monetize them to earn from CPA. So I know how this works and how they can infect target victims without any good antivirus and Malwarebytes protection you can be easily targeted by this. If they are going to target my PC it's impossible for them that they can hack or get any information from my PC because all of them are fake information.

[Kemarit]

This malware again targets only wiNd0ws users because it is in format of loader.exe file, so anyone running Linux or Max should be just fine and protected from this.
However, Zingo is mostly affecting gamers and users who are using Adobe applications, and most of them are sadly using wiNd0ws operating system.

I would suggest anyone who is dealing with Biitcoin to buy good old cheap laptop (Thinkpad would be a good choice) and install Linux operating system.
Use this computer only for crypto and other important stuff, that will be separate from gaming and regular everyday browsing.
This way you are drastically reducing the risk of infecting your system with this and any other malware.

I have one laptop that I used exactly as this, with Linux OS for my crypto related stuff. Good choice although still has flaws but at least I'm not going to be prone from this kind of attacks because you will never know that you might silently install some malware in your PC specially Windows type based OS.

[aysg76]

This malware again targets only wiNd0ws users because it is in format of loader.exe file, so anyone running Linux or Max should be just fine and protected from this.
However, Zingo is mostly affecting gamers and users who are using Adobe applications, and most of them are sadly using wiNd0ws operating system.

I would suggest anyone who is dealing with Biitcoin to buy good old cheap laptop (Thinkpad would be a good choice) and install Linux operating system.
Use this computer only for crypto and other important stuff, that will be separate from gaming and regular everyday browsing.
This way you are drastically reducing the risk of infecting your system with this and any other malware.

Linux is far more safer in comparison with windows in security perspective and most of the scams in crypto are done through windows malware.The reason behind this is most of the users are operating windows in their system and it's easy to target.

Most professional use Linux although the main security lies in your hand but the operating system like Linux can be configured and twicked according to your convenience and provide you more safety.

There was one thread in B&H section for this discussion few days back and members agreed to the fact that linux is comparitavely better.