Skip to main content
JS
Jacob Santos

Jacob Santos

Threat Hunter, Researcher and Builder

Sr. Threat Researcher | Trend AI
17
Articles
14
Threads
10+
Tools
10+
Talks
Self-Propagating Malware Spreading Via WhatsApp, Targets Brazilian Users
Trend AI Research Blog Oct 2025

Self-Propagating Malware Spreading Via WhatsApp, Targets Brazilian Users

RATSocial Engineering

An active campaign was identified spreading malware through WhatsApp via ZIP file attachments. When executed, the malware establishes persistence and hijacks the compromised WhatsApp account to propagate further by automatically sending malicious messages to the victim's contacts. The self-propagating nature enables rapid spread through trust networks. The research details the infection chain, persistence mechanisms, WhatsApp API abuse for propagation, and C2 communication protocols targeting Brazilian users.