Microsoft security engineers have discovered a new strain of malware that infects computers under running Windows since October 2018 and seizing their resources for cryptocurrency mining.
Malicious software called Dexphot,peaked in June this year, capturing nearly 80,000 computers. Since then, the number of daily infections has been gradually decreasing. According to Microsoft, this is due to the fact that the company began to take measures to improve the detection and termination of the virus.
Microsoft claims that Dexphot is sophisticated and complex. After downloading to a computer, Dexphot calmly uses part of its computing power for crypto jacking.
It is noteworthy that a running crypto miner initiates re-infection of the system when trying to remove it.
One way to mask a virus is tocalled polymorphism - constantly changes the malware footprint on a computer and helps hide it from antivirus software. Therefore, Dexphot is extremely difficult to detect.
As previously reported, this year Unit 42 discovered a new malware - CookieMiner - that steals cryptocurrency on Mac computers.