A New Malware Called Album Stealer is Targeting Facebook Users

Threat Level

Attack Report

For a detailed threat advisory, download the pdf file here

Summary

Album Stealer is a malware that disguises itself as a photo album and drops decoy adult images while performing malicious activity in the background. It uses a side-loading technique to execute malicious DLLs, avoiding detection in multiple stages. The malware steals cookies and stored credentials from different web browsers on a victim’s machine and also steals information from Facebook Ads Manager, Facebook Business accounts, and Facebook API graph pages.