Hackers spread viruses and trojans under the guise of a free distribution of BTC and ETH28.05.2019
The attackers have developed a new scheme aimed at stealing cryptocurrency active assets and introducing ransom-ware viruses on the computers of the victims.
According to the Bleeping Computer report, hackers use several websites to promote their programs free distribution of BTC and ETH. According to sources familiar with the situation, hackers are promoting the Bitcoin Collector program, promising users free BTC in the amount of $ 5 to $ 30 when they start the program.
In fact, the main purpose of malware, which disguises itself as a free distribution of cryptocurrencies, is to install on the computer victim of ransom-ware viruses or phishing trojans.
Reportedly, Frost malware researcher first discovered this scheme. In particular, this scheme is promoted through sites that promise to reward ETH and BTC users when they recommend friends to visit the platform. The fraudsters claim that if 1,000 people are referred by the referral link of the participant in the scheme, he will receive 3 ETH.
The site also states that every day users can earn BTC for $ 15 to $ 45 automatically without doing anything. On the website you can download the Bitcoin Collector program, which, when downloading and installing, allegedly generates a free Bitcoin for the victim.
The VirusTotal link is embedded in the Bitcoin Collector (Zip file) to deceive the victim and make her believe that the program is safe and does not contain malicious codes. After the file has been downloaded and launched by the victim, many files are created, including the executable file BotCollector.exe. When you open BotCollector.exe, the program launches Freebitco.in-Bot, a trojan that disguises itself as a Bitcoin generator.
"Depending on the running campaign, this leads either to downloading an extortion virus, or to a trojan that steals passwords," the researchers said.
As Bitcoin and Altcoins continue to grow in value, fraudsters also improve their skills. For example, last week it was reported that two new applications for phishing cryptocurrency were found on Google Play.