“It’s been extremely common for threat actors to attach cryptominers and other malware to popular torrent files for over a decade,” Jasmine Henry, field security director at cyber asset management and governance solutions provider JupiterOne Inc., told SiliconANGLE. The crypto mining malware then executes two new processes, called Sihost64.exe and WR64.exe. It also adds a “watchdog process” for persistence. The researchers note that at first run, the malware would kill any process that has the name of its components to make sure only one instance is running at a given moment. The malware crypto miner is capable of adding exclusions to Windows Defender. The malware, dubbed “Spiderman,” is described as a variant of malware that had previously been disguised as popular apps such as “Windows updater” and “Discord app.” People trying to download an illegal copy of “Spider-Man: No Way Home” are in for an unpleasant surprise, as copies on “torrent” sites that point to illicit copies of movies were found to include a persistent cryptocurrency miner as an unwanted bonus.ĭetailed today by researchers at Reason Cybersecurity Ltd., the illicit copies of the latest Spider-Man installment include a new version of a previously known form of malware.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |