As per the report, this crypto miner malware campaign has infected machines across 11 countries. Check Point XDR first found out about the attack, says the report.
According to the report, the malware is available via websites like Softpedia and uptodown and can usually turn up at the top when anyone searches on Google for “Google Translate desktop download.”
“While the applications boast a “100 CLEAN” banners on some site, the applications are in fact Trojanized, and contain a delayed mechanism to unleash a long multi-stage infection that ends with a crypto mining malware”, said the report.
The cyber criminals are also trying to cover their tracks. The report added that after installing the software initially, the infection process was delayed by the attackers for weeks and the traces from the original installation deleted. This approach has helped them stay under the radar for years.