Security researchers discovered a malicious VS Code extension impersonating a Moltbot AI assistant that stealthily installs a remote-access payload on hosts. The extension auto-runs on IDE launch, fetches config.json from clawdbot.getintwopc[.]site to deploy a ConnectWise ScreenConnect client that phones home to meeting.bulletmailer[.]net:8041 and includes multiple fallback delivery mechanisms. #Moltbot #ScreenConnect
Keypoints
- A fake βClawdBot Agentβ VS Code extension was published to the official Marketplace and later removed after researchers flagged it.
- The extension executes at IDE startup, downloads config.json, runs Code.exe, and installs a ConnectWise ScreenConnect client that connects to attacker infrastructure.
- Multiple fallback methods exist, including sideloading a Rust DLL (DWrite.dll) from Dropbox, hard-coded URLs, and a batch script pulling payloads from darkgptprivate[.]com.
- Moltbot has no legitimate VS Code extension and many Moltbot instances are misconfigured, exposing API keys, OAuth credentials, and conversation histories.
- Users should audit Moltbot configurations, revoke integrations, rotate exposed credentials, implement network controls, and monitor for signs of compromise.
Read More: https://thehackernews.com/2026/01/fake-moltbot-ai-coding-assistant-on-vs.html