Malware Actors Have Begun Using AutoHotkey Scripts For Attacks
One of the first reported attacks involving AutoHotkey was a credential stealer written in AutoHotkey found in March 2018. It disguised itself as an Antivirus app and spread via infected USB devices.