This technical report documents the SmartApeSG malicious activity observed on April 6, 2026. The attack sequence involves script injections into compromised websites, which redirect visitors to a deceptive CAPTCHA landing page. This page employs 'ClickFix' social engineering tactics to lure users into executing malicious payloads on their systems.
Technical artifacts including network traffic captures (PCAPs), HTTPS logs, and malware samples are provided for analysis. Evidence from the infection indicates that the malware successfully establishes persistence on Windows hosts after the initial delivery phase.
Top comments (0)