Fake OpenClaw installers hosted on GitHub were surfaced by Bing AI search results, directing users to malicious repositories that deployed information stealers and GhostSocks proxy malware. Huntress researchers discovered the campaign after a user downloaded the fake installer on February 9. The malware, hidden in a 7-Zip archive named OpenClaw_x64.exe, included Vidar stealer, Rust-based loaders, and a novel 'stealth packer' with anti-VM capabilities. The attack exploited GitHub's trusted reputation and OpenClaw's popularity, with the fake repo linked to a GitHub organization named openclaw-installer for added legitimacy. Multiple copycat repositories were also identified after the original was taken down. Users are advised to run AI agents in isolated environments and avoid assigning them privileged credentials.
Sort: