Intel Name: Gootloader inside out
Date of Scan: January 21, 2025
Impact: High
Summary: The Gootloader malware family employs a unique social engineering tactic to infect computers. Its operators use hijacked Google search results to redirect users to compromised, legitimate WordPress websites. These sites display a fake online message board where a fabricated conversation takes place. In this setup, a fake visitor asks a fake site admin the exact question the victim was searching for, leading them to a link that delivers the malware.