Analysis
October 4, 2024 1:05 PM
Researchers at HP's Wolf Security team have uncovered a new trend in cybercrime: the use of generative AI to create malware. During an investigation of a suspicious email, the team found a variant of the asynchronous remote access trojan (AsyncRAT) that included AI-generated code.
This discovery marks a shift in how malware is developed, as AI tools speed up the coding process and lower the barrier for cybercriminals. The malware's code featured detailed comments and a structure indicative of AI involvement, a stark contrast to typical cybercriminal practices where code is often obfuscated.
The email containing the malware posed as an invoice in French, targeting French-speaking users. The malware's code was hidden in a script encrypted with a password, which the researchers eventually cracked to reveal the malicious content. The malware used a Visual Basic Script to manipulate the user's PC registry and execute a JavaScript file, ultimately installing AsyncRAT on the device.
AsyncRAT, released as an open-source tool in 2019, is often exploited by cybercriminals to remotely control infected systems. This AI-enhanced variant demonstrates the growing ease with which attackers can deploy sophisticated malware, posing increased risks to cybersecurity.
The advancement of AI in malware creation highlights the ongoing challenges faced by cybersecurity experts. As AI tools continue to evolve, both white hat and black hat hackers find new opportunities and threats in the digital landscape.
Disclaimer: Backdoor provides informational content only, it is not offered or intended to be used as legal, tax, investment, financial, or other advice. Investments in digital assets involve risk, and past performance does not guarantee future results. We recommend conducting your own research before making any investment decisions.