The malware loader, now called GodLoader, has been spotted using Godot, a free open source game engine, as its time to execute malicious code and has downloaded the known malware onto at least 17,000 machines.
Unwitting users of the engine – which helps create 2D and 3D games and runs on all platforms including Windows, macOS, Linux, Android, iOS, and web browsers – are tricked into downloading a downloader masquerading as legitimate paid software cracks.
“Check Point Research discovered a new method that uses the Godot Engine, a popular open source game engine, to use crafted GDScript, code that causes malicious commands and delivers malware,” the researchers said in a blog post. “This process remains undetected by almost all antivirus engines on VirusTotal.”
Source link