Threat actors have been discovered distributing a new credential stealer written in AutoHotkey (AHK) scripting language. Financial institutions in the US and Canada are among the primary targets for credential exfiltration. The malware is written in an open-source custom scripting language aimed at providing easy hotkeys for macro-creation and software automation that allows users to automate repetitive tasks in any Windows application. It downloads and executes AHK scripts to accomplish different tasks, such as persistence, profiling victims and running additional AHK commands.
Source: https://thehackernews.com/2020/12/autohotkey-based-password-stealer.html