Real-world example: In 2022, a fake "Sefaira Keygen" floating on Russian forums was actually the RedLine stealer malware. It stole session cookies and login data from thousands of architecture students.