KryptoCibule: The Cryptostealing Malware

ESET antivirus researchers have announced the discovery of an unknown trojan malware family that spreads through malicious torrents and uses multiple methods to extract as many cryptocurrencies from its victims as possible while remaining undetected.

- Advertisement -

ESET named the threat KryptoCibule and, according to its telemetry, the malware appears to target mainly users in the Czech Republic and Slovakia.

Triple Threat

This malware poses a triple threat to cryptocurrencies. It uses the victim’s resources to mine currencies, attempts to infiltrate transactions by replacing wallet addresses on the clipboard, extracts files related to cryptocurrencies, and develops multiple techniques to remain undetected. KryptoCibule makes extensive use of the Tor network and BitTorrent protocol in its communication infrastructure.

How KryptoCibule malware works
How KryptoCibule works. Source: WeLiveSecurity

ESET has identified many versions of KryptoCibule, allowing them to study its evolution from December 2018 to the present day. The malware remains active, new features were added during its lifetime and is under constant development.

Victims Located in Czech Republic and Slovakia

Most of the victims are located in the Czech Republic and Slovakia, and this reflects the user base of the site where the infected torrents are located. Almost all malicious torrents were available on uloz.to, a popular file-sharing site in both countries.

In addition, KryptoCibule specifically checks for the presence of ESET, Avast and AVG security products.

More technical details about KryptoCibule can be read in the relevant blogpost on WeLiveSecurity.

Previous Articles:

- Advertisement -

Latest News

Iranian Hackers Launch AI-Driven Phishing Attacks on Israelis

An Iranian state-backed Hacking group targeted Israeli journalists, Cybersecurity professionals, and academics in a...

Nasdaq Integrates Canton Blockchain for 24/7 Collateral Management

Nasdaq has integrated blockchain technology from the Canton Network into its Calypso platform to...

Pepe Meme Coin Drops 4.7% as Investor Interest Fades Further

Pepe meme coin dropped 4.7% in value over the past 24 hours, trading at...

WhatsApp Rolls Out AI Message Summaries with Advanced Privacy

WhatsApp introduces an AI-driven feature to summarize unread messages for users. The feature, called Message...

Opyl Turns to Bitcoin Treasury as Cash Crisis Deepens

Opyl Limited, an Australian biotech company, bought around 2 Bitcoin as part of a...

Must Read

What is Moon Tropica (CAH) – Technology, Tokenomics, Game Preview

Gaming enthusiasts and crypto enthusiasts, hHave you heard about Moon Tropica? If you're longing for that nostalgic feel of classic games from your childhood...