Security News > 2022 > August > Fake 'Cthulhu World' P2E project used to push info-stealing malware
Hackers have created a fake 'Cthulhu World' play-to-earn community, including websites, Discord groups, social accounts, and a Medium developer site, to distribute the Raccoon Stealer, AsyncRAT, and RedLine password-stealing malware infections on unsuspecting victims.
Such is the case with a new malware distribution campaign discovered by cybersecurity researcher iamdeadlyz, where threat actors created a whole project to promote a fake play-to-earn game called Cthulhu World.
This site appears to be a clone of the legitimate Alchemic World project, which has been warning users to stay away from the fake project.
The Cthulhu World website also has a big difference; when a user clicks on the arrow in the upper right-hand corner of the site, the visitor will bring them to a webpage asking for a code to download the "Alpha" test of the project.
The three malware identified by AnyRun installs are AsyncRAT, RedLine Stealer, and Raccoon Stealer.
Ultimately the wisest course of action is to reinstall your computer from scratch, as these malware infections provide full access to an infected computer, and other undetected malware may still be installed.