Internet

Wannamine is a new malware that puts your computer to mine

Table of contents:

Anonim

Many users will remember the NSA exploit called EternalBlue which was leaked in April last year, it was later used to launch a global cyber attack on behalf of WannaCry. Now a new malware has emerged under the name of WannaMine that puts users' computers to mine cryptocurrencies.

WannaMine takes crypto stocking to a new level

Panda Security discovered crypto malware in October last year that was also based on the NSA's EternalBlue. Later it was discovered that what he was doing was using the victim's processor cycles to mine Monero. Now another security company called CrowdStrike has seen an increase in the number of WannaMine malware infections in recent months.

What is Ethereum? All the information of the cryptocurrency with more "Hype"

The operation of the malware makes it difficult for companies to take any action since it does not download or use any file to infect a system. The WannaMine script takes control of built-in Windows components like Windows Management Instrumentation (WMI) and PowerShell to do its job, making it very difficult to detect and stop malware.

WannaMine uses advanced techniques to move from one system to another within a network. A machine can be infected by WannaMine when the user clicks on a malicious link in an email or website. The attacker can also initiate a remote access attack on the target.

WannaMine is not the first of its kind, but its fileless operation makes it more sophisticated than other crypto-malware malware like Adyllkuzz, which downloads an app called cpuminer. Antivirus software does not have sufficient capabilities to act against such threats that do not write files to disk.

Fossbytes font

Internet

Editor's choice

Back to top button