Using the Wrong AI Video Generator Could Infect Your PC With Malware
1 min read
Summary
Security experts at Morphisec have discovered that several fake AI video generators, named Dream Machine, are being used to distribute malicious malware on Facebook groups.
Once an image has been uploaded, the generator offers an MP4 archive for download, in reality, it is an executable file that opens CapCut when run.
This then runs a batch script, which uses a legitimate Windows tool to extract an infostealer disguised as a PDF file.
The infostealer steals browser data from Chrome, Edge, Brave, Opera and other Chromium-based browsers, as well as crypto wallet extensions.
The stolen data is sent to a Telegram bot that acts as a C2 server, giving hackers real-time access to the data they have stolen, and in some cases, the Noodlophile stealer has also been found alongside XWorm, a RAT that gives the hacker admin privileges.
It is advised to avoid using unknown AI tools and to keep antivirus software and operating systems updated, as well as not to run files anonymously downloaded from the internet.
