AI-Generated Malware Discovered by Researchers

Analysis

October 4, 2024 1:05 PM

In Brief:
HP's Wolf Security team discovered a malware variant using AI-generated code, marking a new trend in cyberattacks where AI accelerates malware development.
The malware, a version of AsyncRAT, featured AI-generated elements, making it easier for cybercriminals to execute sophisticated attacks.

Hackers Have Started Using AI to Churn Out Malware

Researchers at HP's Wolf Security team have uncovered a new trend in cybercrime: the use of generative AI to create malware. During an investigation of a suspicious email, the team found a variant of the asynchronous remote access trojan (AsyncRAT) that included AI-generated code.

This discovery marks a shift in how malware is developed, as AI tools speed up the coding process and lower the barrier for cybercriminals. The malware's code featured detailed comments and a structure indicative of AI involvement, a stark contrast to typical cybercriminal practices where code is often obfuscated.

Code excerpt containing alleged AI-generated statements. Source: HP Wolf Security

AI's Role in Malware Development

The email containing the malware posed as an invoice in French, targeting French-speaking users. The malware's code was hidden in a script encrypted with a password, which the researchers eventually cracked to reveal the malicious content. The malware used a Visual Basic Script to manipulate the user's PC registry and execute a JavaScript file, ultimately installing AsyncRAT on the device.

Infection chain leading to AsynRAT. Source: HP Wolf Security

AsyncRAT, released as an open-source tool in 2019, is often exploited by cybercriminals to remotely control infected systems. This AI-enhanced variant demonstrates the growing ease with which attackers can deploy sophisticated malware, posing increased risks to cybersecurity.

The advancement of AI in malware creation highlights the ongoing challenges faced by cybersecurity experts. As AI tools continue to evolve, both white hat and black hat hackers find new opportunities and threats in the digital landscape.

Disclaimer: Backdoor provides informational content only, it is not offered or intended to be used as legal, tax, investment, financial, or other advice. Investments in digital assets involve risk, and past performance does not guarantee future results. We recommend conducting your own research before making any investment decisions.