The Cryptohopper platform, which mainly provides automated cryptocurrency trading services, has recently found a high imitation version. In addition to the different URLs, the clone of the Cryptohopper platform uses the same trademarks and layouts as the official website of Cryptohopper, which is not harmful. The bad thing is that an executable file will be automatically downloaded once the Trojan is triggered. Although there is a trademark of Cryptohopper, it is actually a Vidar Trojan.
Vidar was written in C++ and appeared in October 2018. The black market price is between $250 and $700. Buyers can also generate malicious code from the C2 (command and control) store. Vidar’s features include searching for specific files, stealing IDs from browser cookies, stealing browser history, stealing cryptocurrency wallets, stealing data from two-factor authentication software , stealing data from communications software, and taking screenshots without permission.
The malicious program researcher, code-named Fumik0_, pointed out that victims of the clone of Cryptohopper will trigger the implementation of Vidar, and will install two Qulab Trojans, one for mining tools and the other for hijacking the clipboard.
Because Vidar’s ability is very powerful, and the attack lock is the user of the cryptocurrency trading platform, it can be judged that the hacker’s attempt is to steal the Cryptohopper certificate to steal the cryptocurrency stored by the victim in Cryptohopper.
Therefore, users are advised to pay special attention to the correct website URLs. Find the legit and official website to use. You can bookmark the page and avoid fake websites due to typing error or misleading popups. It is best to scan them with anti-virus software before using any files downloaded from the network. The malware and various threats are very harmful and aggressive. They aim at stealing your sensitive information and grabbing all of your money. It is surely worth to invest a piece of reliable security software.
Published by Emerson L. Sullivan & last updated on June 10, 2019 3:39 am