Comment
Author: Admin | 2025-04-28
Of their initial resistance to cryptocurrencies, more and more governments are realizing the potential of cryptocurrencies and the underlying blockchain technology in the digital era. They are realizing that they can’t just ban their use—the new era of digital currencies has already begun. As a result, we will see an increase in crypto-malware. The Zscaler ThreatLabZ research team will continue to monitor and analyze these threats with a goal to provide protection against them. IOC: Kasidet Monero Miner MD5: 806779989C6EA355A1ABF4F6C7CB646C Monero GPU Miner: 88eddf09f8abcd8881737b5b58954099 FCN Miner MD5: 3a18ecb034a227ed0b09a877ebb7cfaa Phorpiex MD5: deea904eb9073a36f5cc649559853015, 7f1ddc3894891398f861662d39b6066b URL : www.eraspire[.]com/wp-content/t7070.exe MoneorMiner MD5: 3dfa222fed3567b6189762e951d76377 URL: 92.63.197[.]106/mm.exe C&C: 112.126.94[.]107:5050 123.56.228[.]49:5050 220.181.87[.]80:5050 EngineBox & Xpctra MD5: 5b0639aab22ed1fdb4913805662078fe 3d9f0fdccc05167d76b8af21cd5985b3 0723683a105cd506e21c9a1d08d06226 661cc13f6a0ca4b14585f772d19dc718 364825dc47eb1688ca325b84dc7d0656 URL: 185.141.165[.]210/gandalf/files/W7.txt 65.181.113[.]87/sshd/aw7.tiff 65.181.113[.]87/sshd/W7.zip 65.181.113[.]87/sshd/dll.dll 65.181.113[.]87/sshd/dll.dll.exe C&C: babalu.workscx[.]com irc.lapiscolorido[.]com ssh.lapiscolorido[.]com log.lapiscolorido[.]com irc.donetuasd[.]com ssh.donetuasd[.]com log.donetuasd[.]com coca.cheddarmcmelt[.]top fritas.cheddarmcmelt[.]top ssl.suzukiburgman[.]top 35.166.186[.]98:4782 petr4[.]in/lol/index.php petr4[.]in/avs/logs/index.php Explore more Zscaler blogsAgniane Stealer: Dark Web’s Crypto ThreatRead postThe Impact of the SEC’s New Cybersecurity PoliciesRead postSecurity Advisory: Remote Code Execution Vulnerability (CVE-2023-3519)Read postThe TOITOIN Trojan: Analyzing a New Multi-Stage Attack Targeting LATAM RegionRead postGet the latest Zscaler blog updates in your inbox
Add Comment