A fake website impersonating Avast antivirus is tricking users into infecting their computers with Venom Stealer malware. The site runs a fake virus scan, claims to find threats, and prompts users to download a malicious file disguised as a system cleaner. The malware, identified as part of the Venom Stealer family, steals browser credentials, session cookies, cryptocurrency wallets, and other sensitive data. It uses evasion techniques like direct system calls and debugger checks to avoid detection. The stolen information is exfiltrated to a command-and-control server disguised as an analytics service. This campaign demonstrates a classic scare-and-fix scam, exploiting users' trust in reputable security brands to deliver malware.