Malware is a multistage information stealer malware is targeting Windows users and stealing their data from browsers and crypto wallets. The malware is distributed using a duplicate of the legitimate Windows 11 website design that tricks users by claiming to provide Windows 11 upgrades. Researchers say the malware is written in the Delphi programming language, and the loader is written using Inno Setup 6.1.0, which is a free installer for Windows, developed in Delphi. The developers behind the malware have built the loader using a free Delphi software. The loader spawns a new process via the CreateProcess Windows API.”]
Source: https://www.databreachtoday.com/fake-windows-upgrade-site-delivering-info-stealer-malware-a-18919