Follow us on telegram

News

Magazine

Currencies

AML

For users

​Cryptocurrency-stealing virus detected in KMSpico activator for pirated Windows

The cybersecurity company Red Canary has provided guidance on identifying Cryptbot

​Cryptocurrency-stealing virus detected in KMSpico activator for pirated Windows

10.12.2021 - 12:10

684

1 min

What’s new? A virus has been detected in KMSPico's Microsoft Windows and Office activation software, which collects the users' personal data. The attackers use the Cryptbot virus to steal cryptocurrency among other things, according to the cybersecurity company Red Canary.

The Red Canary article

How does the virus work? Cryptbot has been around for a long time, now the hackers have begun disguising it as the KMSPico activator installer. By clicking on the download link, the user downloads the virus and at the same time, the program installs the activator itself. The attackers disguise Cryptbot with the CypherIT AutoIT encryption software. The virus steals the personal data from the users' web browsers, antivirus software, and crypto wallets.

How to detect the malware? Red Canary recommends searching for binaries containing AutoIT metadata but without AutoIT in the file names, namely, findstr commands similar to “findstr /V /R "^ ... $.”

PowerShell or cmd.exe commands containing “rd /s /q, timeout, and del /f /q together” are used to find Cryptbot.

Author:

Editorial GetBlock Magazine Editorial GetBlock Magazine

Subscribe to Getblock Magazine and stay up to date with the latest news from the world of cryptocurrencies and the digital economy

Telegram Newsletter Twitter

Market
Suriname’s presidential candidate Maya Parbhoe promises to replace the national currency with bitcoin in case of victory

According to the politician, this will combat widespread corruption by ensuring transparency and accountability of budgetary funds

Nov 26, 2024

Market
TRON founder becomes Donald Trump’s biggest DeFi protocol investor

Justin Sun invested $30 million in the project

Nov 26, 2024

Technologies
MetaMask introduces a fee-free swaps feature in ETH

Network fees will be integrated into the cost of swaps

Nov 22, 2024

Market
MicroStrategy to raise another $1,75 billion to buy bitcoins

The company’s unrealized profits from investing in its first cryptocurrency approached $14 billion

Nov 19, 2024

Incidents
Polymarket CEO calls the search in his apartment revenge for Trump’s victory

The search, the reason for which was not announced, took place a week after the election, the results of which Polymarket users predicted quite accurately

Nov 14, 2024

Market
Bitcoin’s correlation with gold has fallen to its lowest since December 2023

Analysts point to the growing popularity of the first cryptocurrency as a safe haven asset

Nov 13, 2024

Cryptocurrency rates

  • Bitcoin

    Bitcoin

    $92 460

    BTC

    -2.32%

  • Ethereum

    Ethereum

    $3 327.18

    ETH

    -3.49%

  • BNB Smart Chain

    BNB Smart Chain

    $579.4

    BSC

    +1.23%

  • Ripple

    Ripple

    $1.38

    XRP

    -4.77%

  • Dogecoin

    Dogecoin

    $0.387578

    DOGE

    -4.59%

  • Cardano

    Cardano

    $0.941924

    ADA

    -3.48%

  • Stellar XLM

    Stellar XLM

    $0.430969

    XLM

    -14.69%

  • Polkadot

    Polkadot

    $8.03

    DOT

    -4.54%

  • Bitcoin Cash

    Bitcoin Cash

    $490.65

    BCH

    -2.28%

  • Litecoin

    Litecoin

    $92.72

    LTC

    -2.09%

News

Nov 26, 2024

SEC accuses Fair Invest of illegally investing client funds in cryptocurrency

Nov 26, 2024

Suriname’s presidential candidate Maya Parbhoe promises to replace the national currency with bitcoin in case of victory

Nov 26, 2024

deVere Group CEO urges the UK to create a bitcoin reserve

Nov 26, 2024

TRON founder becomes Donald Trump’s biggest DeFi protocol investor

Nov 25, 2024

Mechanism Capital founder predicts the growth of tokens’ capitalization of DeSci projects similar to DeFi protocols

Nov 25, 2024

Korean regulator head has rejected the idea of creating a BTC reserve in the near future

Nov 25, 2024

SEC’s court victory against Terra allowed the regulator to levy a record annual amount of fines

New in the knowledge base

Basics

What is DePIN in cryptocurrencies?

Nov 6, 2024

Basics

What is Celestia? The first modular blockchain in the crypto industry

Oct 17, 2024

Basics

EigenLayer: what is it and how does decentralized restaking work?

Aug 16, 2024

Basics

What is Internet Computer (ICP)

Apr 26, 2024

Basics

What is Cosmos (ATOM)

Dec 16, 2023

GetBlock.net — your guide in the world of crypto

For all questions, please contact [email protected]