KryptoCibule: a triple cryptocurrency threat

ESET researchers have discovered an unknown family of trojan malware that spreads through malicious torrents and uses multiple methods to extract as many cryptocurrencies as possible from its victims, while remaining unnoticed.

ESET named the threat KryptoCibule and, according to its telemetry, the malware appears to be mainly targeting users in the Czech Republic and Slovakia.

This particular malware is a triple threat to cryptocurrencies. It uses the victim's resources to mine coins, attempts to hack into transactions by replacing wallet addresses in , extracts cryptocurrency-related files, while developing multiple techniques to go unnoticed. KryptoCibule makes extensive use of the Tor network and the BitTorrent protocol in its communication infrastructure.

ESET has identified several versions of KryptoCibule, allowing us to study its evolution from December 2018 until today. Malware remains active, new features were added during its lifetime and is constantly evolving.

Most of the victims are located in the Czech Republic and Slovakia, and this reflects the user base of the site where the infected torrents are located. Almost all malicious torrents were available on uloz.to, a popular sharing site at two . Επιπλέον, το KryptoCibule ελέγχει ειδικά για την παρουσία προϊόντων ESET, Avast and AVG. ESET is based in Slovakia, while the rest are owned by Avast, which is based in the Czech Republic.

More technical details about KryptoCibule, you can read the relevant blogpost “KryptoCibule: The multitasking multicurrency cryptostealer”At WeLiveSecurity.

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by newsbot

Although the press releases will be from very select to rarely, I said to go ... because sometimes the authors are hiding.

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).