LASER_oneXM

Level 34
Verified
A scam and malware campaign is underway on YouTube that uses videos to promote a "bitcoin generator" tool that promises to generate free bitcoins for its users. In reality, this scam is pushing the Qulab information-stealing and clipboard hijacking Trojan.

This campaign was discovered by security researcher Frost who told BleepingComputer that they have been tracking it for the past 15 days. Each time Frost reports the user and their videos, YouTube takes them down, but the bad actors simply create a new user and upload more.
The way this campaign works is the bad actor will upload a series of videos that promote a so-called free "bitcoin generator" tool.