BatShadow Group Uses 'Vampire Bot' Malware to Target Job Seekers
Summary
Hide ▲
Show ▼
The Vietnamese threat actor BatShadow is using a new Go-based malware called Vampire Bot to target job seekers and digital marketing professionals. The attack involves social engineering tactics where the group poses as recruiters and distributes malicious files disguised as job descriptions and corporate documents. The malware is capable of profiling infected hosts, stealing information, capturing screenshots, and maintaining communication with a command-and-control server. The infection chain begins with ZIP archives containing decoy PDFs and malicious shortcut or executable files. The malware is delivered through a multi-stage process involving PowerShell scripts, fake error messages, and remote desktop software to establish persistent access. The actors have been active for at least a year and have previously used similar tactics to deploy other malware families.
Timeline
-
07.10.2025 20:04 1 articles · 5h ago
BatShadow Group Uses 'Vampire Bot' Malware to Target Job Seekers
The Vietnamese threat actor BatShadow is using a new Go-based malware called Vampire Bot to target job seekers and digital marketing professionals. The attack involves social engineering tactics where the group poses as recruiters and distributes malicious files disguised as job descriptions and corporate documents. The malware is capable of profiling infected hosts, stealing information, capturing screenshots, and maintaining communication with a command-and-control server. The infection chain begins with ZIP archives containing decoy PDFs and malicious shortcut or executable files. The malware is delivered through a multi-stage process involving PowerShell scripts, fake error messages, and remote desktop software to establish persistent access. The actors have been active for at least a year and have previously used similar tactics to deploy other malware families.
Show sources
- BatShadow Group Uses New Go-Based 'Vampire Bot' Malware to Hunt Job Seekers — thehackernews.com — 07.10.2025 20:04
Information Snippets
-
BatShadow, a Vietnamese threat actor, is targeting job seekers and digital marketing professionals with a new malware called Vampire Bot.
First reported: 07.10.2025 20:041 source, 1 articleShow sources
- BatShadow Group Uses New Go-Based 'Vampire Bot' Malware to Hunt Job Seekers — thehackernews.com — 07.10.2025 20:04
-
The malware is delivered through social engineering tactics involving malicious files disguised as job descriptions and corporate documents.
First reported: 07.10.2025 20:041 source, 1 articleShow sources
- BatShadow Group Uses New Go-Based 'Vampire Bot' Malware to Hunt Job Seekers — thehackernews.com — 07.10.2025 20:04
-
The infection chain uses ZIP archives containing decoy PDFs and malicious shortcut or executable files.
First reported: 07.10.2025 20:041 source, 1 articleShow sources
- BatShadow Group Uses New Go-Based 'Vampire Bot' Malware to Hunt Job Seekers — thehackernews.com — 07.10.2025 20:04
-
The malware is capable of profiling infected hosts, stealing information, capturing screenshots, and maintaining communication with a command-and-control server.
First reported: 07.10.2025 20:041 source, 1 articleShow sources
- BatShadow Group Uses New Go-Based 'Vampire Bot' Malware to Hunt Job Seekers — thehackernews.com — 07.10.2025 20:04
-
The attack involves PowerShell scripts, fake error messages, and remote desktop software to establish persistent access.
First reported: 07.10.2025 20:041 source, 1 articleShow sources
- BatShadow Group Uses New Go-Based 'Vampire Bot' Malware to Hunt Job Seekers — thehackernews.com — 07.10.2025 20:04
-
The group has been active for at least a year and has previously used similar tactics to deploy other malware families.
First reported: 07.10.2025 20:041 source, 1 articleShow sources
- BatShadow Group Uses New Go-Based 'Vampire Bot' Malware to Hunt Job Seekers — thehackernews.com — 07.10.2025 20:04