Hyper Evo Online Loader was reported 2026-06-14 for Obfuscated code
The reporter said:
Infostealer.
It has 2 nested remote scripts that steal cookies and sends data via Discord webhook, the first link in the code is also obfuscated (base64).
The final malicious remote script loaded is: https://raw.githubusercontent.com/danneagudan08-cmd/Script-Config/refs/heads/main/Remotly_Hyper_Evo_Script.js
Dev_KraBannade (the reported user) has made:
This report has been upheld by a moderator.