An unattributed campaign is distributing Rust-compiled clipboard-hijacking malware across Windows and macOS through six distribution channels that exploit manufactured trust signals — inflated VirusTotal votes, artificial GitHub star counts, boosted SourceForge metrics, YouTube subscribers, WordPress phishing pages, and EIN Presswire press release syndication. The malware silently replaces cryptocurrency wallet addresses at paste time; the same delivery infrastructure could be repurposed to deploy infostealers or ransomware against enterprise targets with minimal modification.