Deep Dive into Arkanix Stealer and its Infrastructure
Arkanix Stealer is an actively developed credential‑theft malware family that is primarily advertised on Discord, where its operators have been…
Researches, News, and more
DeXpose Blog
Inside Valkyrie Stealer: Capabilities, Evasion Techniques, and Operator Profile
What Is Valkyrie Stealer? Valkyrie Stealer is a C++ infostealer designed to collect credentials, system information, browser data, messaging-app sessions,…
AnyDesk Clone Malware Drops Phemedrone Stealer Loader
On June 16, 2025, a suspicious domain impersonating AnyDesk — anydeske[.]icu — was reported on Twitter. The site served what appeared to…
FleshStealer Malware Report – Multivector Data Theft
Introduction FleshStealer is a sophisticated, modular, and obfuscated .NET-based information-stealing malware designed for comprehensive data exfiltration from Windows systems. Its…
SalatStealer Malware Analysis and Data Theft Techniques
Introduction Salat Stealer is a stealthy malware developed in the Go programming language, designed to infiltrate systems and extract sensitive…
Undetected .NET PE Injector Found on Archive Org
Introduction On February 11, 2025, Filescan.io shared a troubling discovery: a 6-month-old .NET PE injector had remained undetected on Archive.org, a platform widely used for archiving…
In-Depth Technical Analysis of Lumma Stealer
Introduction Lumma is a sophisticated information stealer, written in C/C++, that has been active in the wild since at least…
