Fake Windows 11 Installers Spread Malware

By Ava McKinneyOnline Safety

Scammers Distribute Fake Windows 11 Installers

Cybercriminals are taking advantage of the excitement around the release of Windows 11 by distributing fake operating system installers packed with malware, adware, and other threats, according to Kaspersky Lab.

Even though downloading and installing Windows 11 from Microsoft’s official website is straightforward, researchers note that many users still try to get the new OS from third-party sources. Scammers are eager to exploit this by offering their own “services.”

Under the guise of Windows 11, attackers most often distribute malware loaders designed to deliver additional malicious programs to victims’ computers. The new Microsoft OS is also being used to directly spread other payloads, ranging from adware (which is usually considered harmless) to much more dangerous trojans, password-stealing malware, and more.

For example, scammers are distributing an executable file called 86307_windows 11 build 21996.1 x64 + activator.exe, which is a hefty 1.75 GB in size. This is meant to convince users that such a large file could really contain an operating system. In reality, most of the file’s size comes from a .dll file filled with useless data that isn’t used during installation.

When this executable is opened, it launches an installer that looks like a standard Windows setup wizard. Its main goal is to download and run a second, more interesting file. This file is also an installer and even includes a license agreement stating that, along with the “download manager for 86307_windows 11 build 21996.1 x64 + activator,” a number of “sponsored programs” will be installed on the computer.

How to Safely Install Windows 11

Researchers remind users that, for now, Windows 11 is only available to participants in the Windows Insider Program. To install it, you first need to register for the program. You’ll also need a device that already has Windows 10 installed. On that device, go to Settings, click Update & Security, then select Windows Insider Program and activate the Dev Channel to receive the Windows 11 update.

Leave a Reply