Hacked No Way Home Downloads Contain Crypto Mining Malware

Peter Parker may not be a cryptocurrency criminal mastermind, but the name Spiderman is increasingly becoming associated with the mining landscape. ReasonLabs, a leading provider of cybersecurity detection and prevention software, recently discovered a new form of malware hacking on customer computers in the guise of the latest Spiderman movie.

As perhaps the most talked about movie in quite some time, Spiderman: No Way Home represents a huge opportunity for hackers. It’s an opportunity to connect with millions of potential targets and hack into computers around the world. All today’s malicious actors have to do is promise their victims access to the latest movie and get an unlimited access pass to their PC.

The cryptocurrency mining malware discovered by ReasonLabs masquerades as a torrent for the movie Spiderman: No Way Home, encouraging viewers around the world to download the file and open the computer to criminals.

Wearing a mask: tricking users into downloading malware

Cybersecurity problems are increasing in today’s digital world. There have been approximately 714 million reported ransomware attack attempts by 2021, a 134% increase from 2020. As people spend more time online, for both work and entertainment, criminals discover new opportunities to identify easy targets. . One of the easiest ways for criminals to find their victims is to use the right decoy.

Automatic GitHub Backups

With many viewers still unable to attend physical theaters due to closure restrictions, fans of the Spiderman franchise were eager to have the film elsewhere. Perhaps this is why so many people chose to download the “leaked” file, identified as: spiderman_net_putidomoi.torrent.exe, when it first appeared.

However, according to ReasonLabs, this is not the first time that criminals have tried to trick users into convincing them that they are downloading something they want.

While most people are aware of the threats associated with unknown files, criminals are great at legitimizing your downloads. This specific cryptocurrency mining malware may have existed in several different guises before donning the Spiderman suit. ReasonLabs believes that it also circulated in the form of applications such as Discord or Windows Updater.

What does Spiderman malware do?

The malware embedded in the Spiderman: No Way Home torrent is not currently listed on VirusTotal, but ReasonLabs believes it has been around for some time and affects many users.

ReasonLabs noted that they frequently see minors deploying themselves under the guise of common programs and files. Crypto mining tools hidden in files have become increasingly popular in recent years because they provide easy access to cash. Hiding a crypto miner in a file that is sure to attract a lot of attention, like a Spiderman movie, makes it easy to target as many victims as possible.

Crypto-minage malware

When a user downloads the file, the code adds exclusions to Windows Defender to prevent it from tracking their actions, generates watchdogs for protection, and creates persistence. The overall goal of the malware is to mine a kind of cryptocurrency called Monero (XMR), one of the most untraceable and anonymous cryptocurrencies frequently used on the dark web.

Prevent data breaches

Users affected by malware may not immediately notice a change on their computer. However, as technology uses your processor power, you may start to see reduced speed and problems with the overall functionality of your computer. Also, the damage is likely to eventually show up on the electricity bill, as the devices have to consume additional power for mining.

Even Spiderman is not safe

As consumers continue to spend more time online, malicious people are actively looking for new and improved ways to trick their users into downloading suspicious files. The Spiderman torrent malware is just one excellent example of this.

ReasonLabs found the malware during a routine search for files in its important database. The company has collected a large amount of malware data over the years and regularly checks all files that can be identified as suspicious. After one of the ReasonLabs users downloaded the Spiderman file, it was immediately flagged as a suspect and flagged for investigation.

ReasonLabs is currently still actively investigating where this malware came from and hopes to provide additional information soon. In the meantime, watch out for spiders you trust.

The full ReasonLabs report

Rank Math Seo Pro Weadown, Wordfence Premium Nulled, Yoast Nulled, PHP Script, Fs Poster Plugin Nulled, Astra Pro Nulled,Woodmart Theme Nulled, Wpml Nulled, Avada 7.4 Nulled, Woodmart Theme Nulled, PW WooCommerce Gift Cards Pro Nulled, Elementor Pro Weadown, Newspaper – News & WooCommerce WordPress Theme, Nulledfire, Slider Revolution Nulled, Elementor Pro Weadown, Jnews 8.1.0 Nulled, WeaPlay, Business Consulting Nulled, WP Reset Pro, Newspaper 11.2, Flatsome Nulled, Woocommerce Custom Product Ad, Premium Addons for Elementor, Jannah Nulled, Consulting 6.1.4 Nulled, Plugins, WordPress Theme, Dokan Pro Nulled

Back to top button