HKTL_COINMINER

 Analysis by: Cris Nowell Pantanilla

 PLATFORM:

Windows

 OVERALL RISK RATING:
 REPORTED INFECTION:

  • Threat Type: Hacking Tool

  • Destructiveness: No

  • Encrypted: No

  • In the wild: Yes

  OVERVIEW


This Hacking Tool arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It arrives as a component bundled with malware/grayware packages.

  TECHNICAL DETAILS

File Size:

Varies

File Type:

EXE

Memory Resident:

Yes

Initial Samples Received Date:

14 Dec 2011

Arrival Details

This Hacking Tool arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.

It arrives as a component bundled with malware/grayware packages.

NOTES:

This hacking tool is a Bitcoin miner used to generate bitcoins.

It may be bundled with a malware to send to other machines and use the affected machine to mine for Bitcoins.

The affected machine uses high CPU power, which may cause an affected system to have high CPU usage. It also requires more electricity. This may result in higher electricity bills.