Microsoft Defender Antivirus detects and removes this threat.

This trojan is a modular search engine optimization (SEO) poisoning malware, which is used for social media promotion and click fraud. It uses the electron framework to imitate user browsing behavior to evade protection and connect to the attacker’s command-and-control (C2) server. Upon gaining access to the device, attackers load a dynamic JavaScript dropper, maintain persistence, and move laterally into the targeted network.

ElectronBot is mainly distributed via the Microsoft store platform and drops from dozens of infected applications, mostly games, which are constantly uploaded by the attackers.

Microsoft Defender Antivirus detects and removes this threat.

This trojan is a modular search engine optimization (SEO) poisoning malware, which is used for social media promotion and click fraud. It uses the electron framework to imitate user browsing behavior to evade protection and connect to the attacker’s command-and-control (C2) server. Upon gaining access to the device, attackers load a dynamic JavaScript dropper, maintain persistence, and move laterally into the targeted network.

ElectronBot is mainly distributed via the Microsoft store platform and drops from dozens of infected applications, mostly games, which are constantly uploaded by the attackers.