Trojanized Gaming Tools Spread Java-Based RAT

Threat actors are distributing trojanized gaming utilities to deploy a Java-based remote access trojan (RAT) via browsers and chat platforms. The attack involves a malicious downloader that stages a portable Java runtime and executes a malicious Java archive (JAR) file named jd-gui.jar. Microsoft Threat Intelligence reported the downloader utilizes PowerShell as part of the infection chain. The campaign targets unsuspecting users by luring them into running compromised gaming tools. No specific dates, CVE IDs, or victim counts were disclosed in the reported findings.