• Latest
Cybercriminals Use Obfuscation Trick to Install Crypto Mining Malware

Cybercriminals Use Obfuscation Trick to Install Crypto Mining Malware

June 28, 2019
ygg sea surpasses 10,000 scholarships in just six months of launch

YGG SEA Surpasses 10,000 Scholarships in Just Six Months of Launch

May 6, 2022
mintable launches industry changing gas free minting service on ethereum

Mintable Launches Industry Changing Gas Free Minting Service on Ethereum

May 1, 2022
5 projects enabling smart contract development on bitcoin

5 Projects Enabling Smart Contract Development on Bitcoin

April 29, 2022
bitcoin atm installed in mexico's senate building

Bitcoin ATM installed in Mexico’s Senate Building

April 27, 2022
cross chain services play a crucial role in facilitating continued adoption of defi applications

Cross-Chain Services Play a Crucial Role in Facilitating Continued Adoption of DeFi Applications

April 26, 2022
justin sun launches usdd, integrating the blockchain world and the real world with the decentralized stablecoin

Justin Sun Launches USDD, Integrating the Blockchain World and the Real World with the Decentralized Stablecoin

April 25, 2022
nfts: the next musical revolution

NFTs: The Next Musical Revolution

April 24, 2022
things you should know before investing in nfts

Things You Should Know Before Investing in NFTs

April 24, 2022
what are wrapped tokens?

What Are Wrapped Tokens?

April 23, 2022
what is the future of ethereum (eth)?

What is the future of Ethereum (ETH)?

April 22, 2022
green gaming

Everything You Need to Know About Play-to-Earn on Algorand in 2022

April 21, 2022
$ape going bananas as rumors of upcoming land sale of bayc metaverse gather momentum

$APE Going Bananas As Rumors of Upcoming Land Sale of BAYC Metaverse Gather Momentum

April 21, 2022
  • Home
  • Coin Market Cap
  • Bitcoin
  • Ethereum
  • Ripple
  • Litecoin
  • Alt Coin
  • Business
  • Trading
  • Mining
CoinNewsDaily
  • Home
  • Coin Market Cap
  • Bitcoin
  • Ethereum
  • Ripple
  • Litecoin
  • Alt Coin
  • Business
  • Trading
  • Mining
No Result
View All Result
  • Home
  • Coin Market Cap
  • Bitcoin
  • Ethereum
  • Ripple
  • Litecoin
  • Alt Coin
  • Business
  • Trading
  • Mining
No Result
View All Result
CoinNewsDaily
No Result
View All Result
Home Litecoin

Cybercriminals Use Obfuscation Trick to Install Crypto Mining Malware

coinnewsdaily by coinnewsdaily
June 28, 2019
in Litecoin
0
Cybercriminals Use Obfuscation Trick to Install Crypto Mining Malware
190
SHARES
1.5k
VIEWS
Share on FacebookShare on Twitter

Related articles

Bitcoin Will Overtake Gold’s MarketCap in 9 years, Says Bobby Lee |

Sell or hodl? How to prepare for the end of the bull run, Part 2

April 10, 2022
How to prepare for the end of the bull run, Part 1: Timing

How to prepare for the end of the bull run, Part 1: Timing

April 3, 2022

Cybersecurity firm Trend Micro has confirmed that attackers have been exploiting a vulnerability in the Oracle WebLogic server to install monero (XMR) mining malware, while using certificate files as an obfuscation trick. The news was revealed in a Trend Micro blog post published on June 10.

As previously reported, forms of stealth crypto mining are also referred to with the industry term cryptojacking — the practice of installing malware that uses a computer’s processing power to mine for cryptocurrencies without the owner’s consent or knowledge.

According to Trend Micro’s post, a security patch for theOracle WebLogic vulnerability (“CVE-2019-2725”) — reportedly caused by a deserialization error — was released in the national vulnerability database earlier this spring.

However, Trend Micro cites reports that emerged on the SANS ISC InfoSec forum alleging that the vulnerability has already been exploited for cryptojacking purposes, and confirms that it has verified and analyzed the allegations.

The firm notes that the identified attacks deployed what it describes as “an interesting twist” — namely that “the malware hides its malicious codes in certificate files as an obfuscation tactic”:

“The idea of using certificate files to hide malware is not a new one […] By using certificate files for obfuscation purposes, a piece of malware can possibly evade detection since the downloaded file is in a certificate file format which is seen as normal -— especially when establishing HTTPS connections.”

Trend Micro’s analysis begins by noting that the malware exploits CVE-2019-2725 to execute a PowerShell command, prompting the download of a certificate file from the command-and-control server.

After continuing to trace its steps and characteristics — including the installation of the XMR miner payload — Micro Trend notes an apparent anomaly in its current deployment:

“[O]ddly enough, upon execution of the PS command from the decoded certificate file, other malicious files are downloaded without being hidden via the certificate file format mentioned earlier. This might indicate that the obfuscation method is currently being tested for its effectiveness, with its expansion to other malware variants pegged at a later date.”

The post concludes with a recommendation to firms using WebLogic Server to update their software to the latest version with the security patch in order to mitigate the risk of cryptojacking.

As recently reported, Trend Micro detected a major uptick in XMR cryptojacking targeting China-based systems this spring, in a campaign mimicking earlier activities that had used an obfuscated PowerShell script to deliver XMR-mining malware.



Credit: Source link

Tags: Litecoin
Share76Tweet48
Previous Post

Overstock’s tZero Launches Mobile Crypto App Touted as Hack-Resistant

Next Post

27% of UK Residents Want to See Crypto in More Real-World Applications

coinnewsdaily

coinnewsdaily

CoinNewsDaily.com is an online Crypto Coin News Website that aims to provide latest trendy news from market and around the world.

Related Posts

Bitcoin Will Overtake Gold’s MarketCap in 9 years, Says Bobby Lee |
Bitcoin

Sell or hodl? How to prepare for the end of the bull run, Part 2

April 10, 2022
How to prepare for the end of the bull run, Part 1: Timing
Bitcoin

How to prepare for the end of the bull run, Part 1: Timing

April 3, 2022
Bull or bear market, creators are diving headfirst into crypto
Alt Coin

Bull or bear market, creators are diving headfirst into crypto

April 2, 2022
crypto listing and delisting announcements: week 9
Alt Coin

Crypto Listing and Delisting Announcements: Week 9

February 28, 2022
unstable markets how to invest in cryptocurrency
Alt Coin

How to invest in cryptocurrency when the market is uncertain, explained

December 21, 2021
be your own banker secrets
Alt Coin

Bitcoin and Crypto Wallet Hygiene 101

November 22, 2021
Load More
Next Post
27% of UK Residents Want to See Crypto in More Real-World Applications

27% of UK Residents Want to See Crypto in More Real-World Applications

Categories

  • Alt Coin
  • Bitcoin
  • Business
  • Ethereum
  • ICO
  • Litecoin
  • Mining
  • NFT
  • Ripple
  • Tech
  • Trading

What New here?

  • YGG SEA Surpasses 10,000 Scholarships in Just Six Months of Launch
  • Mintable Launches Industry Changing Gas Free Minting Service on Ethereum
  • 5 Projects Enabling Smart Contract Development on Bitcoin

Subscribe to Get More!

Loading
  • About Us
  • Contact Us
  • Privacy & Policy

© 2018-2021 CoinNewsDaily.com by CoinNewsDaily Inc. Crafted with Love by iFtiDev

No Result
View All Result
  • Home
  • Coin Market Cap
  • Bitcoin
  • Ethereum
  • Ripple
  • Litecoin
  • Alt Coin
  • Business
  • Trading
  • Mining

© 2018-2021 CoinNewsDaily.com by CoinNewsDaily Inc. Crafted with Love by iFtiDev

  • bitcoinBitcoin(BTC)$20,742.00-2.57%
  • ethereumEthereum(ETH)$1,188.05-2.96%
  • tetherTether(USDT)$1.00-0.06%
  • binancecoinBNB(BNB)$233.90-1.66%
  • rippleXRP(XRP)$0.353435-2.92%
  • cardanoCardano(ADA)$0.485195-3.89%
  • SolanaSolana(SOL)$38.49-4.51%
  • dogecoinDogecoin(DOGE)$0.072296-1.82%
  • polkadotPolkadot(DOT)$7.85-2.22%
  • Shiba InuShiba Inu(SHIB)$0.000011-5.23%
  • daiDai(DAI)$1.00-0.05%
  • tronTRON(TRX)$0.0679315.28%
  • leo-tokenLEO Token(LEO)$5.81-1.45%
  • matic-networkPolygon(MATIC)$0.53-9.76%
  • litecoinLitecoin(LTC)$55.60-4.53%
  • FTXFTX(FTT)$26.83-3.28%
  • CronosCronos(CRO)$0.124308-2.91%
  • OKBOKB(OKB)$12.22-4.33%
  • chainlinkChainlink(LINK)$6.48-7.07%
  • stellarStellar(XLM)$0.118277-4.73%
  • cosmosCosmos Hub(ATOM)$7.95-6.31%
  • algorandAlgorand(ALGO)$0.330180-3.09%
  • ethereum-classicEthereum Classic(ETC)$16.551.74%
  • moneroMonero(XMR)$121.88-6.10%
  • bitcoin-cashBitcoin Cash(BCH)$111.50-4.44%
  • vechainVeChain(VET)$0.024545-3.20%
  • Internet ComputerInternet Computer(ICP)$5.77-4.28%
  • tezosTezos(XTZ)$1.500.14%
  • theta-tokenTheta Network(THETA)$1.32-4.94%
  • filecoinFilecoin(FIL)$5.75-4.52%
  • ElrondElrond(EGLD)$56.58-5.17%
  • bitcoin-cash-svBitcoin SV(BSV)$59.88-4.97%
  • eosEOS(EOS)$0.99-3.06%
  • makerMaker(MKR)$1,005.23-4.82%
  • AaveAave(AAVE)$63.80-7.14%
  • paxos-standardPax Dollar(USDP)$1.000.00%
  • huobi-tokenHuobi(HT)$5.30-0.25%
  • iotaIOTA(MIOTA)$0.290598-1.57%
  • zcashZcash(ZEC)$62.97-5.39%
  • neoNEO(NEO)$9.59-2.53%
  • zilliqaZilliqa(ZIL)$0.044689-6.21%
  • wavesWaves(WAVES)$5.86-6.06%
  • basic-attention-tokenBasic Attention(BAT)$0.386297-5.93%
  • havvenSynthetix Network(SNX)$2.44-12.58%
  • dashDash(DASH)$49.19-3.80%
  • PancakeSwapPancakeSwap(CAKE)$3.33-1.23%
  • KusamaKusama(KSM)$52.99-4.74%
  • nemNEM(XEM)$0.041776-2.75%
  • Elrond ERDElrond ERD(ERD)$0.0259290.00%
  • CompoundCompound(COMP)$48.49-6.72%
  • ethlendAave [OLD](LEND)$4.103.48%
  • qtumQtum(QTUM)$2.99-1.93%
  • bitcoin-goldBitcoin Gold(BTG)$17.33-1.46%
  • omisegoOMG Network(OMG)$1.94-1.24%
  • golemGolem(GLM)$0.246731-0.51%
  • SushiSushi(SUSHI)$1.15-4.25%
  • ontologyOntology(ONT)$0.2440620.84%
  • yearn-financeyearn.finance(YFI)$6,200.19-8.56%
  • umaUMA(UMA)$2.68-5.28%
  • digibyteDigiByte(DGB)$0.010173-5.31%
  • UniswapUniswap(UNI)$2.4438.80%
Posting....