Connect with us


New Mining Malware threatens crypto-world – ZombieBoy

Gautham Kadri



New Mining Malware threatens crypto-world - ZombieBoy
Source: Unsplash

Earlier this week, the presence of a new crypto mining malware was discovered named ZombieBoy. This malware started mining initially at $1000 per month. The existence of this threat was revealed by a Private security researcher, James Quinn

Tweet by Latest Hacking News:

“ZombieBoy: New Crypto-Mining Malware Exploits Multiple CVEs”

ZombieBoy was named after its use of ZombieBoyTools kit, a kit which the malware uses in dropping its first .DLL or dynamic link library file. Similar to Massminer, except this Malware uses WinEggDrop to search for its next victim to infect.

According to Quinn reports, the malware was gathering an average of $1000 cryptocurrencies every 30 days before a recent closure of its address, which traced back to the Monero mining pool MineXMR. The malware can be traced back to its origin in China due to the simplified mandarin it uses. Its most common target is Monero [XMR] and Zcash [ZEC].

The malware attacks its victims by infecting their system using certain weak points like:

  • CVE-2017-9073 which is primarily a Remote Desktop Protocol on ‘Windows XP’ and ‘Windows 2003’
  • Server Message Block that utilizes CVE-2017-0146 and CVE-2017-0143.

Furthermore, for creating a large number of back-doors, the malware takes advantage of EternalBlue and DoublePulsar, exploits developed by the National Security Agency [NSA], to access control over a device or machine. This increases the possibilities of the network crashing and at the same time makes it impossible for the IT department to identify and remove any threat.

Encoded with Themedia, a pop-up which prevents this malware from running on Virtual machines, making it nearly impossible to reverse engineer and trace its activities. This shows the limit for how much countermeasure protocols can develop and its effectiveness.

Reports indicate that it has been recently discovered that ZombieBoy has connected up with another mining program of the same origin by the name of IRON TIGER APT, a version of the Gh0stRAT, and a few other mining malware with a Chinese origin which indicates a continuous evolution and resolution.

For many companies who want to protect their systems from such threats, a few countermeasures that could protect their system are:

  • Allowing two-factor authentication
  • Impair access to less used ports and services.
  • Venturing in end-point safety protocols
  • Having an updated anti-virus
  • Formulating secondary practices and making them active.

Subscribe to AMBCrypto’s Newsletter

Follow us on Telegram | Twitter | Facebook

Gautham Kadri is a full time content writer at AMB Crypto. His passion is for writing and interest towards the future of cryptocurrencies and blockchain technology. He does not hold any form of crypto currencies presently.


Ripple’s partnership with Euro Exim Bank explores possibilities other than the use of XRP

Namrata Shukla



Ripple's partnership with Euro Exim Bank explores possibilities other than use of XRP Ripple's partnership with Euro Exim Bank explores possibilities other than use of XRP
Source: Pixabay

Ripple, the real-time gross settlement system, has been working hard towards the adoption of their native cryptocurrency, XRP. While proponents of other cryptos are working towards increasing the use cases of the coin, Ripple took XRP to the banks and provided them with a liquidity solution called xRapid.

Euro Exim bank, an international financial institution, partnered with Ripple in January 2019 to use its services like xRapid and xCurrent. Head of Compliance and Operations of Euro Exim Bank, Graham Bright, stated in an interview with that despite the fact that he worked with SWIFT for 20 years, Ripple would work as a complementary network to SWIFT.

“I don’t believe Ripple is going to replace SWIFT. Ripple is one of the complementary networks which is going to allow those institutions who need real-time to make use of that. We’re also seeing that SWIFT are changing their network capabilities, so real-time will also be a possibility as well but we may also see Ripple XRP moving across the SWIFT network as a currency when we are perhaps using FX.”

Bright also revealed that Euro Exim Bank will be announcing a cryptocurrency exchange soon and it would list various cryptocurrencies and not just XRP. However, their core business remains trading finance.

He also said that Ripple are trying to expand the usage and not restrict it to just using XRP. Euro Exim Bank is currently investigating how to embed instructions for bonds/derivative/foreign exchange inside a Ripple message, he said.

With the cryptocurrency ecosystem booming, Ripple’s XRP has risen, along with its technological services. As for XRP’s performance in the market, it was falling by 1.03% over the day and was valued at $0.4268 with a market cap of $18.14 billion. The 24-hour trading volume of the coin was noted to be $1.22 billion, as it noted a growth of 6.13% over the past seven days and continued to soar by 0.32% within the hour.

Subscribe to AMBCrypto’s Newsletter

Continue Reading