According to Bitdefender, BHUNT, is a new kind of malware that targets cryptocurrency wallets upon cracked software installation. Once installed, the software can extract passwords and seed phrases from popular wallets.
Bitdefender, a renowned cybersecurity company, has released a study on a new type of password stealer that targets bitcoin wallets on users’ computers.
About BHUNT
BHUNT, as this new malware is known, infects PCs by installing infected software, most commonly cracked software. Exodus, Electrum, Atomic, Jaxx, Ethereum, Bitcoin, and Litecoin wallets are all targeted by BHUNT, according to the software’s technical documentation.
Once installed, the program can move the users’ cash to another wallet and steal additional personal information from the infected machine.
Password stealers aren’t new to the PC world; machines can already be attacked with viruses that contain these features. This software is unique in that it is strongly encrypted and packaged as digitally signed software, but the issued certificate does not correspond to the binary of the application.
By the way, BHUNT has spread, Bitdefender has concluded that it was launched into the wild with no apparent objective. According to Bitdefender’s analysis, the program distributed in the following ways:
All our telemetry originated from home users who are more likely to have cryptocurrency wallet software installed on their systems. This target group is also more likely to install cracks for operating system software, which we suspect is the main infection source.
The company displayed the number of infections discovered on a map, with Australia, Egypt, Germany, India, Indonesia, Japan, Malaysia, Norway, Singapore, South Africa, Spain, and the United States having the highest infections.
Bitdefender also offered advice on how to avoid becoming infected with BHUNT or other password-stealing malware. The research concluded, “The most efficient strategy to guard against this threat is to avoid installing software from untrusted sources and to maintain security solutions up to date.”
A torrent containing the latest “Spiderman: No Way Home” film was recently discovered to include bitcoin malware.
