Fake Claude AI Site Distributes Beagle Backdoor Malware to Windows Users
A fraudulent website mimicking Anthropic's Claude AI has been identified as distributing a new backdoor malware named Beagle. The site, claude-pro[.]com, offers a fake tool called Claude-Pro Relay, which, when downloaded, installs malware through a DLL sideloading chain. This campaign, analyzed by Sophos X-Ops, uses a signed antivirus updater to execute the malicious DLL, leading to the deployment of the Beagle backdoor. The malware supports various commands, including shell execution and file transfer, and communicates with its command-and-control server using encrypted traffic. 
