Fake Battlefield 6 Pirated Versions and Game Trainers Used to Deploy Stealers and C2 Agents

Bitdefender Labs discovered multiple malicious Battlefield 6-themed distributions (fake trainers and pirated releases) that deliver an infostealer exfiltrating browser and crypto-wallet data, an evasive stealer with regional/sandbox evasion and developer-targeting behavior, and a persistent C2 agent deployed via a DLL and regsvr32; IOCs include IP 198.251.84.9 and C2 beaconing to ei-in-f101.1e100.net. Users are advised to download games only from official sources and enable real-time behavioral protection.