Facebook company
Compromise Facebook Account
• Credential stealer in the form of Raw Credentials and Cookies
• Linked Payment Info on Facebook Account
• Retrieve Lifetime spend on Ads
• Retrieve Number of Friends and profile information
• Retrieve Information about Owned Pages and Business Managers
Disable all controls to inform user of unauthorized activity
• Disable Account and Page Notifications via push, SMS, and email
• Block FB Business and FB Login Alerts pages from messaging users
• Exploit bug to block pages as users
Persistence On Compromised Device
• Contains Service/Daemon component and DLL injected into browsers w/ watcher components
10
Features
SilentFade