Follow us on telegram

News

Magazine

Currencies

AML

For users

​Cryptocurrency-stealing virus detected in KMSpico activator for pirated Windows

The cybersecurity company Red Canary has provided guidance on identifying Cryptbot

​Cryptocurrency-stealing virus detected in KMSpico activator for pirated Windows

10.12.2021 - 12:10

741

1 min

What’s new? A virus has been detected in KMSPico's Microsoft Windows and Office activation software, which collects the users' personal data. The attackers use the Cryptbot virus to steal cryptocurrency among other things, according to the cybersecurity company Red Canary.

The Red Canary article

How does the virus work? Cryptbot has been around for a long time, now the hackers have begun disguising it as the KMSPico activator installer. By clicking on the download link, the user downloads the virus and at the same time, the program installs the activator itself. The attackers disguise Cryptbot with the CypherIT AutoIT encryption software. The virus steals the personal data from the users' web browsers, antivirus software, and crypto wallets.

How to detect the malware? Red Canary recommends searching for binaries containing AutoIT metadata but without AutoIT in the file names, namely, findstr commands similar to “findstr /V /R "^ ... $.”

PowerShell or cmd.exe commands containing “rd /s /q, timeout, and del /f /q together” are used to find Cryptbot.

Author:

Editorial GetBlock Magazine Editorial GetBlock Magazine

Subscribe to Getblock Magazine and stay up to date with the latest news from the world of cryptocurrencies and the digital economy

Telegram Newsletter Twitter

Market
Company associated with crypto exchange HashKey will launch Asia’s first XRP fund

The product will allow professional investors to track the price of the altcoin without having to hold it directly

Apr 18, 2025

Market
DEX Raydium on the Solana network has launched an analog of PumpFun to create meme tokens

Previously, the PumpFun team launched their decentralized exchange to preserve liquidity in their ecosystem

Apr 17, 2025

Technologies
Project 11 offers 1 BTC for cracking a bitcoin key using a quantum computer

The company predicts that devices powerful enough to crack a 256-bit key could be available in the next 10 years

Apr 17, 2025

Mining
Tether will deploy its entire hashrate in Bitcoin Core developer’s OCEAN mining pool

The collaboration aims to increase decentralization of the blockchain

Apr 15, 2025

Market
Kraken crypto exchange to launch fee-free securities trading in the United States

The feature will later be available to customers in Europe and Australia

Apr 15, 2025

Crypto regulations
Trump signs resolution to repeal the DeFi protocol tax rule

The rule was passed toward the end of Joe Biden’s presidential term

Apr 11, 2025

Cryptocurrency rates

  • Bitcoin

    Bitcoin

    $84 421

    BTC

    -0.76%

  • Ethereum

    Ethereum

    $1 586.63

    ETH

    -1.27%

  • Ripple

    Ripple

    $2.07

    XRP

    -0.97%

  • BNB Smart Chain

    BNB Smart Chain

    $579.4

    BSC

    +1.23%

  • Dogecoin

    Dogecoin

    $0.156795

    DOGE

    -0.94%

  • Cardano

    Cardano

    $0.621903

    ADA

    -1%

  • Stellar XLM

    Stellar XLM

    $0.241724

    XLM

    +0.01%

  • Bitcoin Cash

    Bitcoin Cash

    $342.49

    BCH

    +2.75%

  • Litecoin

    Litecoin

    $76.52

    LTC

    +0.63%

  • Polkadot

    Polkadot

    $3.69

    DOT

    +1.09%

News

Apr 18, 2025

Slovenia plans to introduce a 25% tax on crypto profits in 2026

Apr 18, 2025

Sygnum analysts predict altcoin growth in Q2

Apr 18, 2025

Company associated with crypto exchange HashKey will launch Asia’s first XRP fund

Apr 18, 2025

eXch exchange will close after allegations of laundering stolen assets from Bybit

Apr 17, 2025

US Department of Justice will revise the process for assessing compensation for victims of crypto fraud

Apr 17, 2025

CoinGecko: In Q1, spot trading volume on leading CEXs fell by 16%

Apr 17, 2025

DEX Raydium on the Solana network has launched an analog of PumpFun to create meme tokens

New in the knowledge base

Basics

Ripple and RLUSD: A new look at stablecoins

Feb 5, 2025

Basics

Monero: Behind the scenes of anonymity. How does the new generation cryptocurrency work?

Dec 18, 2024

Basics

PancakeSwap: How it works, features and ways to make money on the popular DEX exchange

Dec 12, 2024

Basics

Sei: the fastest Layer 1 blockchain ever

Nov 26, 2024

Basics

What is DePIN in cryptocurrencies?

Nov 6, 2024

GetBlock.net — your guide in the world of crypto

For all questions, please contact [email protected]