According to Cisco Talos, new spyware is targeting cryptocurrency investors
MortalKombat ransomware and Laplas Clipper viruses have been actively scouring the internet and snatching cryptocurrency from naive investors since December 2022.
antivirus software Two new malicious computer applications disseminated by unidentified sources that are specifically aimed towards desktop crypto speculators were highlighted by Malwarebytes.
The MortalKombat ransomware and Laplas Clipper virus have been actively scouring the internet and collecting cryptocurrency from naive investors since December 2022, according to Cisco Talos, a threat intelligence research team. As indicated below, the majority of the campaign’s victims are in the United States, with smaller percentages in the United Kingdom, Turkey, and the Philippines.
The malicious software collaborates to steal information from the user’s clipboard, which is often filled with a string of letters and numbers that the user has copied. Once wallet addresses have been copied to the clipboard, the infection finds them and replaces them with a different address.
The attack depends on the user failing to pay attention to the sender’s wallet address, which would result in the recipient of the bitcoins being an unidentified attacker. The attack affects both individuals and small and large enterprises, with no clear aim.
When MortalKombat ransomware infects a computer, it encrypts the user’s files and leaves a ransom note with payment instructions, like depicted above. The Talos analysis revealed the download links (URLs) connected to the assault campaign and said:
“One of them reaches an attacker-controlled server via IP address 193[.]169[.]255[.]78, based in Poland, to download the MortalKombat ransomware. According to Talos’ analysis, 193[.]169[.]255[.]78 is running an RDP crawler, scanning the internet for exposed RDP port 3389.”
Get to know Godleak
Godleak crypto signal is a service which comprise of a professional team. They tried to provide you signals of best crypto channels in the world.
It means that you don’t need to buy individual crypto signal vip channels that have expensive prices. We bought all for you and provide you the signals with bot on telegram without even a second of delay.
Godleak crypto leak service have multiple advantages in comparision with other services:
- Providing signal of +160 best crypto vip channels in the world
- Using high tech bot to forward signals
- Without even a second of delay
- Joining in +160 separated channels on telegram
- 1 month, 3 months , 6 months and yearly plans
For joining Godleak and get more information about us only need to follow godleak bot on telegram and can have access to our free vip channels. click on link bellow and press start button to see all features
https://t.me/Godleakbot
Also you can check the list of available vip signal channels in the bot. by pressing Channels button.
According to Malwarebytes, the “tag-team campaign” begins with an email with a malicious attachment that has a cryptocurrency theme. When opened, the attachment launches a BAT file that aids in downloading and executing the ransomware.
Investors are proactively able to stop this attack from having an adverse effect on their financial well-being thanks to the early discovery of dangerous software with high potential. Cointelegraph continues to urge investors to conduct thorough due diligence before making an investment while confirming the veracity of any correspondence. To find out how to safeguard cryptocurrency investments, read this Cointelegraph Magazine article.
On the flip side, as ransomware victims continue to refuse extortion demands, ransomware revenues for attackers plummeted 40% to $456.8 million in 2022.
Chainalysis disclosed the data while pointing out that it doesn’t necessarily follow that fewer assaults occurred this year compared to last.