This is not the first time BATLOADER has used the AI craze to distribute malware.
Last week, Trend Micro detailed how the operators behind the BATLOADer campaign used malicious Google search ads to deliver RedLine Stealer malware.
According to the report, this vacuum has been exploited by threat actors looking to drive AI app-seekers to imposter web pages promoting fake apps.
The malware comes in two parts: an installer file rigged with an executable file (ChatGPT.exe or midjourney.exe) and a PowerShell script (Chat.Ready.ps1) that downloads and loads Redline Stealer from a remote server.
The adversary’s use of ChatGPT and Midjourney-themed lures to serve malicious ads and ultimately drop the RedLine stealer malware was also highlighted last week by Trend Micro.
๐ Feeling the vibes?
Keep the good energy going by checking out my Amazon affiliate link for some cool finds! ๐๏ธ
If not, consider contributing to my caffeine supply at Buy Me a Coffee โ๏ธ.
Your clicks = cosmic support for more awesome content! ๐๐
Leave a Reply