HomeBlockchainSecurityBeapy: new malware that mines Monero

Beapy: new malware that mines Monero

As reported by the security company Symantec, there is a new malware around, Beapy, which falls into the crypto jacking category used to mine Monero, probably chosen by hackers for its characteristic of being anonymous.

Beapy was discovered by Symantec last April 1st and has been identified as a Windows malware. Beapy mainly targets companies and uses the EternalBlue exploit, which, according to many people, was developed by the American NSA as a means of stealing credentials and quickly spreading throughout the company network.

The malware, sent via an excel attachment, downloads the DoublePulsar backdoor to the victim’s computer, allowing remote commands to be executed. In addition, the vulnerability exploit of the Windows SMB protocol allows it to spread throughout the affected network.

With the above command, the computer contacts the Beapy C&C server, where other commands leading to the download of the Monero coinminer are executed and the whole process is repeated on all computers in the network.

According to data gathered from the malware’s behaviour, Beapy mainly affected Asian regions such as China (80%), Japan (4%), South Korea (3%) and Hong Kong (2%).

Alfredo de Candia
Alfredo de Candia
Android developer da oltre 8 anni sul playstore di Google con una decina di app, Alfredo a 21 anni ha scalato il Monte Fuji seguendo il detto "Chi scala il monte Fuji una volta nella vita è un uomo saggio, chi lo scala due volte è un pazzo". Tra le sue app troviamo un dizionario di giapponese, un database di spam e virus, il più completo database sui compleanni di serie Anime e Manga e un database sulle shitcoin. Miner della domenica, Alfredo ha una forte passione per le crypto ed è un fan di EOS.
RELATED ARTICLES

Stay updated on all the news about cryptocurrencies and the entire world of blockchain.

MOST POPULARS