The Spider-Man No Way Home movie, which has just been released, is now downloadable online. Not surprisingly, hackers quickly broadcast to their users on the web. But beware: one of the files circulating on p2p networks hides crypto mining software. And to top it all, the malware is capable of obscuring Windows Defender surveillance.
If Spider-Man No Way Home is currently a blockbuster movie, which has grossed more than a billion dollars, the movie is now illegally available on the Web. But be careful of sites offering you to take this movie as it could be malware.
Discovered by ReasonLabs, a file posing as the Marvel movie is currently circulating on the torrent network. Be careful and don’t download it especially – it is actually malware. Once installed on your PC, it will use the resources of your machine to mine cryptocurrencies and then send the results of its work to the hackers behind its implementation.
Also read: Bitcoin: be careful, Windows Cryptbot malware seeks to steal your cryptocurrencies
Spider-Man No Way Home torrent cache a cryptominage malware
At this time, VirusTotal does not recognize the malware in question, but it should be recognized quickly. More annoying, it especially escapes the surveillance of Windows Defender. According to ReasonLabs, “this miner adds exclusions to Windows Defender, creates persistence and generates a monitoring process to maintain its activity.”
The torrent comes in the form of an executable called spiderman_net_putidomoi.torrent.exe, a Russian file name that translates to spiderman_no_wayhome.torrent.exe. It should come as no surprise that the filename is in that language, as pirated movies often originate from Russia. Also, obviously nothing is stopping hackers from distributing a localized version in the next few days.
Also read: cryptocurrency: the price of Omicron explodes thanks to the new variant of Covid-19
Once run on a PC, the malware can start a process and inject its resources into another process. And its preferred target is a necessary component for the proper functioning of Windows, namely svchost.exe (a generic process that allows you to load DLL files). The good news is that the malware appears to compromise the personal data of its victim’s PC. This is what emerges from the analysis carried out by ReasonLabs, which managed to decode the malware. The bad news is that the malware will use your PC’s resources to mine cryptocurrencies.
Its effects are not immediate, but should be felt after a few hours or days. Due to the installed crypto mining software, the PC becomes slower and its power consumption is higher.
Rank Math Seo Pro Weadown, Wordfence Premium Nulled, Yoast Nulled, PHP Script, Fs Poster Plugin Nulled, Astra Pro Nulled,Woodmart Theme Nulled, Wpml Nulled, Avada 7.4 Nulled, Woodmart Theme Nulled, PW WooCommerce Gift Cards Pro Nulled, Elementor Pro Weadown, Newspaper – News & WooCommerce WordPress Theme, Nulledfire, Slider Revolution Nulled, Elementor Pro Weadown, Jnews 8.1.0 Nulled, WeaPlay, Business Consulting Nulled, WP Reset Pro, Newspaper 11.2, Flatsome Nulled, Woocommerce Custom Product Ad, Premium Addons for Elementor, Jannah Nulled, Consulting 6.1.4 Nulled, Plugins, WordPress Theme, Dokan Pro Nulled