Cryptojacking Malware KingMiner Is Constantly Improving To Evade Detection
Cryptojacking is a huge issue in the crypto industry. With sophisticated malware, users are able to con victims into giving them money indirectly by using their computers to mine cryptos. Now, a highly dangerous malware known as KingMiner is on the spotlight.
KingMiner is a cryptojacking malware that mines Monero. It uses to constantly upgrade in order to avoid detection from even the most sophisticated antivirus software and it is actually pretty successful so far.
According to Check Point Software Technologies, an Israeli cybersecurity company, KingMaker is one of the most dangerous cryptojacking tools used by hackers and its constant improvements will make it even harder for security companies to detect them.
The report affirms that KingMiner is specially focused on servers developed by Microsoft using the International Information Services (IIS) and SLQ Server technology. It uses its technology to decipher the passwords of the victims and then compromises them.
As soon as the malware is successful in getting access, it uses a Windows Scriptlet file with the .sct extension to execute its program. The file is downloaded without the user knowing at all. After that, it uses the CPU architecture of the company to mine Monero. It even disables any older version of the malware if it is detected.
After the computer is affected, it will use 75% of the CPU’s power to mine Monero (but errors in code can make it use even more of the capacity). While the mechanisms used by KingMiner to evade detection are actually quite simple, the malware takes extreme measures to prevent its action from being found.
Therefore, it ends up being a very powerful tool for hackers who want to mine Monero using other people’s computers. It even uses a private mining pool to prevent any monitoring of the mining. Nobody knows even which domains are used.
Attacks Grow As Detection Rates Are Low
Even if the attacks are hard to detect, some people are noticing them (as, well, they use 75% of your CPUs power, so a more tech-savvy user can clearly see that something is wrong).
Cryptojacking has become something common, unfortunately. The cases of being attacked by cryptohacking malware are 86% up this year according to McAfee Labs and this only accounts for the people who actually discovered that their computers were infected.
Even smartphones are being targeted now, McAfee Labs points out, so the situation is getting out of control fast and the cybersecurity companies are not able to stop the hackers. Until a solution can be found, it looks like most cases will only get worse.