Keylogger

CDEF-FakeGPT

April 14, 2026

Malware Analysis Extension Infostealer Keylogger AES Anti-VM JavaScript

A malicious Chrome extension masquerading as ChatGPT uses anti analysis checks, hooks Facebook login forms, and acts as a keylogger, exfiltrating AES encrypted data via pixel tracking.

CDEF-HawkEye

March 25, 2026

Network Analysis PCAP Wireshark SMTP Keylogger Phishing

A victim host downloaded a HawkEye Keylogger dropper via HTTP, which established persistence, periodically checked the external IP via bot.whatismyipaddress.com, and exfiltrated harvested credentials every 10 minutes over SMTP.

↑