Monero mining malware hidden inside popular game torrents

Source Cryptopolitan

Hackers launched a mass infection campaign to distribute a Monero mining program that could be activated remotely. The hackers delivered the mining payload via popular game torrents and primarily targeted gamers, as gaming PCs commonly tend to have stronger processors with more than 8 cores.

According to a recent report by Kaspersky, hackers launched a mass infection campaign of popular game torrents like Garry’s Mod, Dyson Sphere Program, and Universe Sandbox to distribute Monero mining application. The hackers could activate this application remotely.

Monero mining malware hidden inside popular game torrents
Pie-chart showing the distribution of affected users by game (Source: Kaspersky)

Popular sandbox and simulator games were chosen to distribute the mining program, and the hackers specifically picked games requiring minimal disk space.

The hackers delivered the mining payload via a cracked game installer. Often, such cracked installers require users to turn off their anti-virus to install.

The campaign was referred to as StaryDobry, and it took advantage of torrents consisting of compressed files of the games for quicker downloads.

Kaspersky mentioned that the infections were initially detected in January 2025. However, the campaign started much earlier, in December 2024.

In fact, the campaign has been in preparation since September 2024, at the very least, when the initial versions of these games were uploaded. However, this was only the distribution phase.

The Monero mining program targets processors with 8 cores and above

According to Kaspersky, the remote Monero mining program was activated on 31st December. The functionality of the miner ensures that it makes the most out of the processor’s cores. It first checks if the computer has a process with eight cores or more for the highest yields. If the processor has less than 8 cores, the mining program will not be activated.

Due to this use case, the hackers primarily targeted gamers because gaming PCs are usually equipped with faster processors and strong hardware. According to Kaspersky’s data, most of these infections happened in Russia. However, cases have also been registered in Kazakhstan, Brazil, Germany, and Belarus.

As of yet, the team behind this mass infection hasn’t been identified. However, Kaspersky has reasons to believe that a Russian group is behind the malware, as some of its files use the Russian language. Also, a greater number of infections were reported within Russia.

Cryptopolitan Academy: Are You Making These Web3 Resume Mistakes? - Find Out Here

Disclaimer: For information purposes only. Past performance is not indicative of future results.
placeholder
XRP Price Prediction: Fibonacci And Elliott Wave Analysis Suggests $15 By May 2025Egrag Crypto, a well-known crypto analyst on the social media platform X, recently shared an optimistic price prediction for XRP. According to the analyst, technical analysis of the XRP price on the
Author  NewsBTC
Dec 30, 2024
Egrag Crypto, a well-known crypto analyst on the social media platform X, recently shared an optimistic price prediction for XRP. According to the analyst, technical analysis of the XRP price on the
placeholder
Ripple (XRP) Price Sees a Surge, Solana Targets $600 in 2025 as Investors Increase Focus on New AltcoinThe cryptocurrency market is showing renewed momentum as Ripple (XRP) experiences a significant price surge, and Solana (SOL) sets its sights on a bold $600 target by 2025. Meanwhile, a rising altcoin, Lightchain AI, is capturing investor attention with its innovative ecosystem and strong presale performance, making it a compelling choice for forward-looking investors. Ripple […]
Author  Cryptopolitan
Jan 15, Wed
The cryptocurrency market is showing renewed momentum as Ripple (XRP) experiences a significant price surge, and Solana (SOL) sets its sights on a bold $600 target by 2025. Meanwhile, a rising altcoin, Lightchain AI, is capturing investor attention with its innovative ecosystem and strong presale performance, making it a compelling choice for forward-looking investors. Ripple […]
placeholder
What Crypto Whales are Buying For May 2025Crypto whales are making bold moves heading into May 2025, and three tokens are standing out: Ethereum (ETH), Artificial Superintelligence Alliance (FET), and Onyxcoin (XCN).
Author  Beincrypto
Apr 21, Mon
Crypto whales are making bold moves heading into May 2025, and three tokens are standing out: Ethereum (ETH), Artificial Superintelligence Alliance (FET), and Onyxcoin (XCN).
placeholder
Gold Price Forecast: XAU/USD attracts some sellers below $3,250 on firmer US DollarThe Gold price (XAU/USD) extends the decline to around $3,245 during the early Asian session on Thursday. The precious metal edges lower to near a two-week low amid easing US-China trade tensions and stronger US Dollar (USD) demand. 
Author  FXStreet
May 01, Thu
The Gold price (XAU/USD) extends the decline to around $3,245 during the early Asian session on Thursday. The precious metal edges lower to near a two-week low amid easing US-China trade tensions and stronger US Dollar (USD) demand. 
placeholder
Gold Price Forecast: XAU/USD edges higher to near $3,250 as trade questions lingerThe Gold price (XAU/USD) trades in positive territory near $3,245 during the early Asian session on Monday. The renewed concerns over the US recession and US-China trade relations provide some support to safe-haven assets like Gold.
Author  FXStreet
Yesterday 01: 29
The Gold price (XAU/USD) trades in positive territory near $3,245 during the early Asian session on Monday. The renewed concerns over the US recession and US-China trade relations provide some support to safe-haven assets like Gold.
goTop
quote