BHUNT Stealer Malware Targeting Crypto Wallets!

[notblox1]

Security reports from Bitdefender spotted a new malware written in .NET that is targeting cryptocurrency wallets (Electrum, Exodus, Atomic, Jaxx...) exfiltrating contents, browser passwords, passphrases captured from the clipboard, and it's looking for wallet.dat and seed.seco files.
Malware is spreading in many countries  Australia, Egypt, Germany, India, Indonesia, Japan, Malaysia, Norway, Singapore, South Africa, Spain, US and most users are using windows OS that is cracked with KMSPico.

Recommendation is to never install applications from untrusted sources, and don't use cracked software and operating systems.

More information:
https://www.bitdefender.com/blog/labs/poking-holes-in-crypto-wallets-a-short-analysis-of-bhunt-stealer/

[1715326575]

1715326575

[1715326575]

1715326575

[1715326575]

1715326575

[1715326575]

1715326575

[BitMaxz]

Windows 10 is almost free you don't need to use KMSPico to use this OS.

I have a PC that cracked with KMSPico but it's only for my son use only to install Microsoft office for school. But tried to search that mscrlib.exet according to that link and can't able to find them even I uncheck hide system files and folder.

So maybe the infected one is if you downloaded a KMSpico from an untrusted source?

[Lafu]

Recommendation is to never install applications from untrusted sources, and don't use cracked software and operating systems.
More information:
https://www.bitdefender.com/blog/labs/poking-holes-in-crypto-wallets-a-short-analysis-of-bhunt-stealer/

If you using a cracked software from a source you dont know on the Computer where you also have your Crypto things its your one fault.
I would never doing that , and for the Stealer Software thats nothing new , there was already this kind software back in the days 2014 - 2015.
Glad in some way that somebody is monitoring this , but i guess there some ways to hide it from the scan.
Thanks for the Info  

[witcher_sense]

Recommendation is to never install applications from untrusted sources, and don't use cracked software and operating systems.

Thanks for the helpful insight. Your recommendations are reasonable, and they definitely can help users to avoid being robbed by nefarious actors. However, I would add another recommendation, which is never keep considerable amounts of money on the computer connected to the Internet. Instead, use a decent hardware wallet or air-gapped computer with which you can keep your private keys and sign your transactions completely offline without a tiny possibility for a casual hacker to get access to them. Of course, if a hacker is too sophisticated or government-sponsored, there is a chance that they will find a way to hack your air-gapped device, but nonetheless the attack surface is reduced significantly when compared to the device that has full access to the Internet.

[hugeblack]

Something I do not consider that the advice offered by anti-virus programs is ideal because these programs themselves are considered a gateway to viruses, give false security and fail to identify new viruses.
The advice below is the basis not to download any program that you do not want or are not sure of, but the method of installing the operating system, obtaining periodic updates, and avoiding staying uninhibited for a long time is essential to maintaining privacy.

As for cryptocurrencies, generating keys in an offline environment and signing off-line transactions (then broadcast it to online PC) is the ideal method.

[Lucius]

Something I do not consider that the advice offered by anti-virus programs is ideal because these programs themselves are considered a gateway to viruses, give false security and fail to identify new viruses.

Sometimes anti-virus companies promote themselves by publishing this kind of news, and some will say that they first create a problem and then offer a solution. However, I would not agree that AV programs (at least not those with a solid reputation) are a source of possible infection. Anyone who wants a good and reliable AV must pay for it, forget about free solutions or cracked versions.

I speak from the personal experience of someone who has tried a large number of AVs over 20+ years and found what really works.


I recently wrote that anyone who uses Bitcoin or other cryptocurrencies should forget about all the problematic activities on their computer - this includes downloading torrents, visiting pornographic content, using cracked software... Everyone needs to understand that every crypto user is a potential target, and a very valuable target for every hacker.

[notblox1]

Windows 10 is almost free you don't need to use KMSPico to use this OS.

Almost free is not free and you have many limitations of using windows os like that.
Maybe you are not paying with money for that operating system but you pay with your data information from telemetry.

Something I do not consider that the advice offered by anti-virus programs is ideal because these programs themselves are considered a gateway to viruses, give false security and fail to identify new viruses.
The advice below is the basis not to download any program that you do not want or are not sure of, but the method of installing the operating system, obtaining periodic updates, and avoiding staying uninhibited for a long time is essential to maintaining privacy.

I don't see any difference with using antivirus software and operating systems like windows.
I think that Bill Gates is the original creator of concepts like viruses and antiviruses.

[S3300]

Buy your window OS key they don't cost much, I don't see why people are cracked version of Windows OS which is called stealing if you ask me, they kinda deserve all the malwares they getting especially those that are running crypto wallets on their cracked windows OS what the hell are they thinking?