The malware can mine the Monero currency without being detected. It is believed it works closely like the Loapi malware which led to bulging of phones.
Malware in the technology industry has become much of a common thing now. Every day a new type of malware strain shows up, as hackers try to get the best they can whilst a device still shows vulnerability.
A new malware has been seen on the Android market. The malware is believed to have Monero mining abilities. It is also reported that as the malware mines Monero from the device, it drains the power of the vulnerable device.
Security researchers at the firm, Trend Micro, noted that they had discovered a malware that could mine Monero. The sophisticated malware was notably targeting the Android market. It showed itself up as a fake Google Play update, to lure users in. The malware has been seen primarily in China and India, two places were third-party apps are the order of the day.
The malware has been called the HiddenMiner malware by the researchers. It manages to hide itself behind an original looking Google Play update of an app. When the app is installed, the malware will request for device administrator status. Users who don’t accept will be flooded with several pop-ups until they relent.
When the users give the permission, the computer will then start by using the CPU of the computer to do its primary work. Its primary work is to mine the Monero cryptocurrency. Trend Micro researchers wrote in their blog post that the malware will cause the device to overwork resulting in overheating, and eventually a failure.
The malware is believed to work like the Loapi malware which was discovered in several Android apps a few months ago. The Loapi malware also targeted the CPU of devices in order to mine the Monero cryptocurrency. It also caused some DDoS attacks from the phone, which led to the device overworking and bulging up leading to its destruction. The fatality of the phone would happen just a few days after the installation of Loapi.
According to the researchers, the HiddenMiner hackers managed to withdraw $5219.76 worth of Monero currency. The withdrawal was done on the 26th of March 2018, and they withdrew 26 Monero. The HiddenMiner malware certainly has its profits for the hackers as they continually target users without their knowledge.
Avoidance of Detection
The malware has anti emulator abilities in it which enable it to be hidden from sight. It manages to hide in the app by riding off of the app label and then showing up a transparent icon. It is able to actively rid off any suspicion when users get to install it.
Lorin Wu of Trend Micro said that the HiddenMiner was one example were hackers could get their money illegally. Wu also encouraged users to continue updating their operating system to help them check for any vulnerabilities.