New Malware Campaign Deploys DeepLoad with ClickFix Tactic

📌 A new malware campaign has deployed an undocumented loader called DeepLoad, which utilizes the ClickFix social engineering tactic for distribution. Researchers at ReliaQuest identified that DeepLoad likely employs AI-assisted obfuscation and process injection to evade static scanning detection methods. The malware initiates credential theft immediately, targeting browser-stored passwords and session data even if the primary loader is blocked. Persistence is achieved through Windows Management Instrumentation (WMI), though no specific CVE IDs or exact dates were provided. The attack focuses on stealing sensitive authentication details from compromised systems.