New Cryptojacking Malware Breakdown

0 21
Avatar for M.Rosenquist
Written by
This user is who they claim to be.
We have manually verified this user via some other channel.
Proof
6 months ago

New Cryptojacking Malware Breakdown - The GhostEngine cryptocurrency mining malware disables endpoint security protections, deletes logs, modifies the kernel, and digs-in to establish persistence.

It all begins with getting the victim machine to launch one .exe file.

Cryptojacking malware consumes the compute resources of the victim by running cryptocurrency mining software which then directs any cryptocurrency rewards to accounts that only the attackers can access. 

It is basically resource theft that impacts systems performance, but because of the access it has, it can also be used as a vehicle for further attacks and to deploy more damaging instructions.  It also undermines the protections of the system, which makes it more vulnerable to other attackers!

 

A good writeup: https://arstechnica.com/security/2024/05/researchers-spot-cryptojacking-attack-that-disables-endpoint-protections/

1
$ 0.00
Sponsors of M.Rosenquist
empty
empty
empty
Avatar for M.Rosenquist
Written by
This user is who they claim to be.
We have manually verified this user via some other channel.
Proof
6 months ago

Comments