PhantomVAI Loader Delivers a Range of Infostealers

PhantomVAI Loader, previously known as Katz Stealer Loader, is a multi-stage infection chain used in phishing campaigns to deliver information-stealing malware. The loader, initially used to deliver Katz Stealer, now delivers additional infostealers like AsyncRAT, XWorm, FormBook, and DCRat. The infection chain involves phishing emails with malicious attachments, obfuscated scripts, and steganography techniques to evade detection.