New Malware Campaign Spreads Trojans Through Clone Crypto Trading Website

Published at: June 5, 2019

Twitter user and malware researcher Fumik0_ has discovered a new website that spreads cryptocurrency malware, according to a report by Bleeping Computer on June 5.

According to the report, the host for transmitting these viruses is a website that imitates the website for Cryptohopper, a website where users can program tools to perform automatic cryptocurrency trading.

When the scam site is visited, it reportedly automatically downloads a setup.exe installer, which will infect the computer once it runs. The setup panel will also display the logo of Cryptohopper in another attempt to trick the user.

Running the installer is said to install the Vidar information-stealing Trojan, which further installs two Qulab trojans for mining and clipboard hijacking. The clipper and miners are then deployed once every minute in order to continuously collect data.

The Vidar information-stealing trojan itself will attempt to scrape user data such as browser cookies, browser history, browser payment information, saved login credentials, and cryptocurrency wallets. The information is periodically compiled and sent to a remote server, after which the compilation is deleted.

The Qulab clipboard hijacker will attempt to substitute its own addresses in the clipboard when it recognizes that a user has copied a string that looks like a wallet address. This allows cryptocurrency transactions initiated by the user to get redirected to the attacker’s address instead.

This hijacker has address substitutions available for ether (ETH), bitcoin (BTC), bitcoin cash (BCH), dogecoin (DOGE), dash (DASH), litecoin (LTC), zcash (ZEC), bitcoin gold (BTG), xrp, and qtum.

One wallet reportedly associated with the clipper has received 33 BTC, or $258,335 at press time, via the substitution address ‘1FFRitFm5rP5oY5aeTeDikpQiWRz278L45,’ although this may not all have come from the Cryptohopper scam.

As previously reported by Cointelegraph, a YouTube-based crypto scam campaign was discovered in May, luring in victims with the promise of a free BTC generator. After users ran the alleged BTC generator, which was automatically downloaded by visiting the associated website, they would be infected with a Qulab trojan. Then, the Qulab trojan would attempt to steal user information and run a clipboard hijacker for crypto addresses.

Tags
Bitcoin
Ethereum
Dogecoin
Mining
Bitcoin Cash
Ripple
Twitter
Dash
Fraud
Zcash
Litecoin
Malware
Bitcoin Gold
Related Posts
Bloomberg Terminal Lists Crypto Market Index From World’s Third Largest Exchange Huobi
Bloomberg Terminal, a paid financial data monitoring service, will now list crypto exchange Huobi's Cryptocurrency Index, according to a press release shared with Cointelegraph today, June 21. Bloomberg Terminal will also list prices for nine crypto trading pairs, denominated in Tether (USDT), including Bitcoin (BTC), Litecoin (LTC), Bitcoin Cash (BCH), Ethereum Classic (ETC), Ripple (XRP), Dash, EOS, and ZCash. The Huobi 10 Index, designed by the Huobi Group, is calculated using asset classification and a weighted average method to track the performance of the top 10 traded digital assets on Huobi’s exchange. The press release notes that Bloomberg Terminal’s addition …
Adoption / June 21, 2018
A Different Look at Crypto Market and Top Assets, How Dominated Is It?
With Bitcoin regaining market dominance of over two-thirds of the entire combined cryptocurrency capitalization, discussions regarding market share of prominent altcoins have largely left the dominant cryptocurrency discourse. Here is a different outlook on the market and on how the top cryptocurrencies stack up with the rest. Market dominance flows from alts to BTC since 2018 Market dominance between the top cryptocurrencies by market capitalization has changed over the last year. As of Aug. 19, 2018, as seen in the chart below, the three largest coins comprised 71.95% of the combined cryptocurrency market — an 8% difference to the figures …
Bitcoin / Aug. 17, 2019
Bitcoin Hovers Near 6,600, While Most Top Coins See Little Price Volatility
Friday, Oct. 5: cryptocurrencies are seeing little volatility over the past 24 hours to press time, with the majority of losses and gains of top coins capped within a 1 percent range on the day, as data from Coin360 shows. Market visualization by Coin360 Ripple (XRP) is the only outlier in the top ten coins, down a little over 3 percent on the day to trade at $0.52. The asset – which in September briefly outflanked Ethereum to seal the second spot ranking on CoinMarketCap listings – has had a shaky start to the month, and is currently trading almost …
Bitcoin / Oct. 5, 2018
Bitcoin, Ethereum, Ripple, Bitcoin Cash, EOS, Stellar, Litecoin, Cardano, Monero, Dash: Price Analysis, September 26
The views and opinions expressed here are solely those of the author and do not necessarily reflect the views of Cointelegraph.com. Every investment and trading move involves risk, you should conduct your own research when making a decision. The market data is provided by the HitBTC exchange. Though cryptocurrencies are stuck in a bear market, it hasn’t managed to scare away investors. A report by the Satis Group predicts digital currency trading volume to grow by over 50 percent in 2019. They also anticipate a compound annual growth rate (CAGR) of about 9 percent all the way until 2028. Several …
Bitcoin / Sept. 26, 2018
Altcoin Market Capitalization Shrinks Despite Volume Boost Since 2017
At present, the combined capitalization of the 2,022 crypto assets with a known market cap was roughly $222 billion. On Nov. 19, 2017, just weeks before the current all-time highs would be set for the price and capitalization of Bitcoin and the crypto market overall, the 985 tokens with a known market cap represented a capitalization of around $244 billion — a similar zone to where the market is at currently. However, with the capitalization of Bitcoin (BTC) having grown 15% from $134.1 billion to $154.6 billion during the 24 months following November 2017, more than twice as many altcoins …
Ethereum / Nov. 20, 2019