GachiLoader adopts AI skill lure
Essential information
- Published
- 29/04/2026 02:24
- Modified
- 29/04/2026 07:14
- Tags
- 2026-04-29 ai agent skills blockchain c2 electron dropper fileless injection gachiloader infostealer node.js sea openclaw rhadamanthys social engineering
- Related entities
- 9 observables, 19 techniques (mitre), 2 malware, 1 others
Description
Threat actors are exploiting AI agent skill formats as a novel attack vector, using convincingly packaged OpenClaw skills to distribute malicious payloads. The latest campaign employs pure social engineering, with skills containing no malicious code themselves but instead tricking users into downloading Windows binaries. The attack leverages a fake GitHub infrastructure hosting GachiLoader, which delivers Rhadamanthys infostealer through fileless injection. The operation uses two delivery mechanisms: Node.js Single Executable Applications and an Electron dropper, both converging on the same payload. GachiLoader employs sophisticated evasion techniques including anti-VM checks, sandbox detection, and privilege escalation, while using a Polygon blockchain smart contract as its C2 resolver for enhanced persistence and obfuscation.