- New malware that exploits crypto wallets has been discovered.
- According to a technical analysis published by Bitdefender BHUNT is a stealer written in.NET that can exfiltrate the majority of wallets, including Exodus, Electrum, Atomic, Jaxx, Ethereum, Bitcoin, and Litecoin wallets.
- Its attacks include stealing content, passwords saved in the browser, and clipboard passwords.
A new virus has been identified that infects cryptocurrency wallets.
During its research, Bitdefender, a cybersecurity firm, discovered malware that targets cryptocurrency wallets.
The BHUNT virus family is a new type of crypto-wallet stealer.
The malware operates in conjunction with installing vulnerable or pirated software that is already included in the system to be used on desktops. The malware collects passcodes and seeds from popular wallets once installed.
Its components are designed to steal wallet files (wallet.dat and seed.seco), clipboard data, and account recovery passwords.
Exodus, Electrum, Atomic, Jaxx, Ethereum, Bitcoin, and Litecoin wallets are all targeted by BHUNT.
Once installed, the programme can move cash from one wallet to another and steal additional personal information from the compromised machine.
Password stealers aren’t new to the PC world; machines can already be attacked with viruses that have these capabilities. This software is unusual in that it is heavily encrypted and packaged as digitally signed software, yet the issued certificate does not match the application’s binary.
The malware mainly targets individuals who have crypto wallets installed as well as cracked applications on their systems.
According to the analysis, almost all of the telemetry came from home users, who are more likely to have bitcoin wallet software installed on their devices. This demographic is also more prone to use cracks for operating system software, which is the primary source of exploitation.
By how BHUNT propagated, Bitdefender concluded that it was launched into the wild with no apparent objective. The company displayed the number of identified infections on a map, with Australia, Egypt, Germany, India, Indonesia, Japan, Malaysia, Norway, Singapore, South Africa, Spain, and the United States having the highest infections.
After gaining access to the crypto wallet via the password, the virus transfers the funds to the attacker’s account.
To protect yourself from such malware, follow these steps:
- Installing software from untrusted sources is never a good idea.
- Keep your security solution up to date, and don’t turn it off, especially if it prevents installing such software.
To avoid becoming infected with BHUNT or other password-stealing malware, Bitdefender has offered some advice. The paper states, “The most efficient strategy to guard against this danger is to avoid installing software from untrusted sources and to maintain security solutions up to date.”
A torrent featuring the new film “Spiderman: No Way Home” was recently discovered, including Crypto malware.