A new threat campaign has seen cryptocurrency-mining malware distributed across at least 11 countries, disguised as translator apps and music download apps. The app itself provides the advertised functionality, but also hides a sneaky downloader.
These fake applications were distributed through legitimate software download sites. One of the translator apps had reached over 112,000 downloads on Softpedia.
In an effort to avoid detection, the malware will wait patiently for five days before downloading the next stage, and then another 15 days before downloading an additional payload. It can take up to a month till the final Monero crypto-miner is retrieved and installed.
Acronis Cyber Protect Cloud includes protection against cryptojacking malware by using behavioral analysis to detect and block malicious activity on your system. This keeps workloads safe and prevents additional drain on your resources.