Welcome to week 14 of the Crypto Alert of the Week series by AMLT, a series dedicated to documenting interesting or high profile frauds/hacks etc that recently happened and have been reported into the AMLT Network and show how the AMLT Network can help track and prevent it in the future.
But what if a specific malicious program could do more than one of these actions depending on their profitability? Here’s where the infamous “Rakhni Trojan” comes in. First seen in 2013, this notorious and most likely of Russian origin virus has recently added a new weapon to its arsenal. What started as a ransomware has now evolved and turned into a multi-purpose virus. Usually seen in spam campaigns, the virus infects PCs disguised as PDF reading software with forged digital certificates.
These kinds of attacks are incredibly hard to track, as the malware producers tend to prefer privacy-focused cryptocurrencies.