• bitcoinBitcoin (BTC) $ 92,556.00
  • ethereumEthereum (ETH) $ 3,156.93
  • tetherTether (USDT) $ 0.999398
  • xrpXRP (XRP) $ 2.13
  • bnbBNB (BNB) $ 898.06
  • solanaSolana (SOL) $ 135.25
  • usd-coinUSDC (USDC) $ 0.999927
  • staked-etherLido Staked Ether (STETH) $ 3,156.44
  • tronTRON (TRX) $ 0.295130
  • dogecoinDogecoin (DOGE) $ 0.150304
  • cardanoCardano (ADA) $ 0.401758
  • figure-helocFigure Heloc (FIGR_HELOC) $ 1.02
  • bitcoin-cashBitcoin Cash (BCH) $ 662.17
  • wrapped-stethWrapped stETH (WSTETH) $ 3,866.22
  • whitebitWhiteBIT Coin (WBT) $ 57.96
  • wrapped-beacon-ethWrapped Beacon ETH (WBETH) $ 3,433.45
  • wrapped-bitcoinWrapped Bitcoin (WBTC) $ 92,321.00
  • wrapped-eethWrapped eETH (WEETH) $ 3,428.75
  • usdsUSDS (USDS) $ 0.999625
  • chainlinkChainlink (LINK) $ 13.50
  • binance-bridged-usdt-bnb-smart-chainBinance Bridged USDT (BNB Smart Chain) (BSC-USD) $ 0.999126
  • leo-tokenLEO Token (LEO) $ 9.00
  • wethWETH (WETH) $ 3,160.32
  • zcashZcash (ZEC) $ 493.90
  • moneroMonero (XMR) $ 425.98
  • stellarStellar (XLM) $ 0.232875
  • coinbase-wrapped-btcCoinbase Wrapped BTC (CBBTC) $ 92,605.00
  • suiSui (SUI) $ 1.68
  • ethena-usdeEthena USDe (USDE) $ 0.999535
  • litecoinLitecoin (LTC) $ 82.24
  • hyperliquidHyperliquid (HYPE) $ 26.42
  • avalanche-2Avalanche (AVAX) $ 14.30
  • hedera-hashgraphHedera (HBAR) $ 0.125888
  • canton-networkCanton (CC) $ 0.147351
  • shiba-inuShiba Inu (SHIB) $ 0.000009
  • world-liberty-financialWorld Liberty Financial (WLFI) $ 0.172262
  • susdssUSDS (SUSDS) $ 1.08
  • usdt0USDT0 (USDT0) $ 0.999537
  • the-open-networkToncoin (TON) $ 1.84
  • daiDai (DAI) $ 0.999205
  • crypto-com-chainCronos (CRO) $ 0.104879
  • uniswapUniswap (UNI) $ 5.93
  • paypal-usdPayPal USD (PYUSD) $ 0.999712
  • polkadotPolkadot (DOT) $ 2.14
  • ethena-staked-usdeEthena Staked USDe (SUSDE) $ 1.21
  • mantleMantle (MNT) $ 1.05
  • usd1-wlfiUSD1 (USD1) $ 1.00
  • pepePepe (PEPE) $ 0.000007
  • memecoreMemeCore (M) $ 1.60
  • rainRain (RAIN) $ 0.008067
  • bittensorBittensor (TAO) $ 264.23
  • bitget-tokenBitget Token (BGB) $ 3.57
  • aaveAave (AAVE) $ 163.94
  • okbOKB (OKB) $ 113.93
  • tether-goldTether Gold (XAUT) $ 4,422.43
  • nearNEAR Protocol (NEAR) $ 1.75
  • falcon-financeFalcon USD (USDF) $ 0.997196
  • ethereum-classicEthereum Classic (ETC) $ 12.98
  • jito-staked-solJito Staked SOL (JITOSOL) $ 169.52
  • ethenaEthena (ENA) $ 0.243590
  • binance-peg-wethBinance-Peg WETH (WETH) $ 3,159.31
  • aster-2Aster (ASTER) $ 0.759161
  • pi-networkPi Network (PI) $ 0.212741
  • internet-computerInternet Computer (ICP) $ 3.25
  • blackrock-usd-institutional-digital-liquidity-fundBlackRock USD Institutional Digital Liquidity Fund (BUIDL) $ 1.00
  • pax-goldPAX Gold (PAXG) $ 4,428.57
  • worldcoin-wldWorldcoin (WLD) $ 0.597806
  • htx-daoHTX DAO (HTX) $ 0.000002
  • jupiter-perpetuals-liquidity-provider-tokenJupiter Perpetuals Liquidity Provider Token (JLP) $ 4.74
  • global-dollarGlobal Dollar (USDG) $ 0.999552
  • hashnote-usycCircle USYC (USYC) $ 1.11
  • kucoin-sharesKuCoin (KCS) $ 11.19
  • midnight-3Midnight (NIGHT) $ 0.087766
  • binance-staked-solBinance Staked SOL (BNSOL) $ 147.59
  • aptosAptos (APT) $ 1.92
  • skySky (SKY) $ 0.062658
  • syrupusdcsyrupUSDC (SYRUPUSDC) $ 1.14
  • hash-2Provenance Blockchain (HASH) $ 0.026570
  • ondo-financeOndo (ONDO) $ 0.437478
  • ripple-usdRipple USD (RLUSD) $ 1.00
  • kaspaKaspa (KAS) $ 0.050280
  • bfusdBFUSD (BFUSD) $ 0.998706
  • pump-funPump.fun (PUMP) $ 0.002233
  • rocket-pool-ethRocket Pool ETH (RETH) $ 3,647.91
  • wbnbWrapped BNB (WBNB) $ 898.25
  • binance-bridged-usdc-bnb-smart-chainBinance Bridged USDC (BNB Smart Chain) (USDC) $ 0.999772
  • polygon-ecosystem-tokenPOL (ex-MATIC) (POL) $ 0.120472
  • gatechain-tokenGate (GT) $ 10.55
  • arbitrumArbitrum (ARB) $ 0.214052
  • algorandAlgorand (ALGO) $ 0.136245
  • kelp-dao-restaked-ethKelp DAO Restaked ETH (RSETH) $ 3,352.62
  • cosmosCosmos Hub (ATOM) $ 2.31
  • official-trumpOfficial Trump (TRUMP) $ 5.46
  • filecoinFilecoin (FIL) $ 1.48
  • render-tokenRender (RENDER) $ 2.08
  • bonkBonk (BONK) $ 0.000012
  • vechainVeChain (VET) $ 0.012026
  • myx-financeMYX Finance (MYX) $ 5.27
  • xdce-crowd-saleXDC Network (XDC) $ 0.053477
  • janus-henderson-anemoy-aaa-clo-fundJanus Henderson Anemoy AAA CLO Fund (JAAA) $ 1.02
  • ignition-fbtcFunction FBTC (FBTC) $ 92,266.00
  • bridged-wrapped-lido-staked-ether-scrollBridged Wrapped Lido Staked Ether (Scroll) (WSTETH) $ 3,854.95
  • lombard-staked-btcLombard Staked BTC (LBTC) $ 92,523.00
  • solv-btcSolv Protocol BTC (SOLVBTC) $ 92,508.00
  • flare-networksFlare (FLR) $ 0.011824
  • nexoNEXO (NEXO) $ 0.948451
  • liquid-staked-ethereumLiquid Staked ETH (LSETH) $ 3,365.00
  • usddUSDD (USDD) $ 0.999321
  • usdtbUSDtb (USDTB) $ 0.999829
  • ousgOUSG (OUSG) $ 113.85
  • superstate-short-duration-us-government-securities-fund-ustbSuperstate Short Duration U.S. Government Securities Fund (USTB) (USTB) $ 10.94
  • sei-networkSei (SEI) $ 0.124630
  • pudgy-penguinsPudgy Penguins (PENGU) $ 0.012510
  • wrappedm-by-m0WrappedM by M^0 (WM) $ 0.999406
  • bridged-usdc-polygon-pos-bridgePolygon Bridged USDC (Polygon PoS) (USDC.E) $ 0.999731
  • arbitrum-bridged-wbtc-arbitrum-oneArbitrum Bridged WBTC (Arbitrum One) (WBTC) $ 92,409.00
  • story-2Story (IP) $ 2.15
  • mantle-staked-etherMantle Staked Ether (METH) $ 3,424.98
  • virtual-protocolVirtuals Protocol (VIRTUAL) $ 1.08
  • renzo-restaked-ethRenzo Restaked ETH (EZETH) $ 3,372.97
  • syrupusdtsyrupUSDT (SYRUPUSDT) $ 1.11
  • clbtcclBTC (CLBTC) $ 90,486.00
  • pancakeswap-tokenPancakeSwap (CAKE) $ 2.07
  • beldexBeldex (BDX) $ 0.091037
  • ondo-us-dollar-yieldOndo US Dollar Yield (USDY) $ 1.10
  • wrapped-flareWrapped Flare (WFLR) $ 0.011852
  • jupiter-exchange-solanaJupiter (JUP) $ 0.214505
  • lighterLighter (LIT) $ 2.65
  • usdaiUSDai (USDAI) $ 1.00
  • fetch-aiArtificial Superintelligence Alliance (FET) $ 0.282901
  • stakewise-v3-osethStakeWise Staked ETH (OSETH) $ 3,326.14
  • blockstackStacks (STX) $ 0.353060
  • jupiter-staked-solJupiter Staked SOL (JUPSOL) $ 157.06
  • l2-standard-bridged-weth-baseL2 Standard Bridged WETH (Base) (WETH) $ 3,158.94
  • polygon-pos-bridged-dai-polygon-posPolygon PoS Bridged DAI (Polygon POS) (DAI) $ 0.999795
  • morphoMorpho (MORPHO) $ 1.16
  • curve-dao-tokenCurve DAO (CRV) $ 0.422629
  • optimismOptimism (OP) $ 0.317287
  • kinetic-staked-hypeKinetiq Staked HYPE (KHYPE) $ 26.68
  • spx6900SPX6900 (SPX) $ 0.630560
  • tezosTezos (XTZ) $ 0.542146
  • c8ntinuumc8ntinuum (CTM) $ 0.127916
  • aerodrome-financeAerodrome Finance (AERO) $ 0.596695
  • usual-usdUsual USD (USD0) $ 0.997379
  • tbtctBTC (TBTC) $ 92,425.00
  • eutblSpiko EU T-Bills Money Market Fund (EUTBL) $ 1.22
  • flokiFLOKI (FLOKI) $ 0.000056
  • dashDash (DASH) $ 42.87
  • lido-daoLido DAO (LDO) $ 0.633242
  • arbitrum-bridged-weth-arbitrum-oneArbitrum Bridged WETH (Arbitrum One) (WETH) $ 3,160.38
  • injective-protocolInjective (INJ) $ 5.19
  • first-digital-usdFirst Digital USD (FDUSD) $ 0.999466
  • gtethGTETH (GTETH) $ 3,159.11
  • ether-fiEther.fi (ETHFI) $ 0.774150
  • ghoGHO (GHO) $ 0.999602
  • true-usdTrueUSD (TUSD) $ 0.998021
  • celestiaCelestia (TIA) $ 0.564590
  • fasttokenFasttoken (FTN) $ 1.09
  • chilizChiliz (CHZ) $ 0.046742
  • msolMarinade Staked SOL (MSOL) $ 182.69
  • stader-ethxStader ETHx (ETHX) $ 3,401.76
  • ether-fi-liquid-ethEther.Fi Liquid ETH (LIQUIDETH) $ 3,381.33
  • starknetStarknet (STRK) $ 0.089616
  • pippinpippin (PIPPIN) $ 0.442414
  • wrapped-apecoinWrapped ApeCoin (WAPE) $ 0.219662
  • doublezeroDoubleZero (2Z) $ 0.125186
  • the-graphThe Graph (GRT) $ 0.040423
  • bittorrentBitTorrent (BTT) $ 0.00000044
  • iotaIOTA (IOTA) $ 0.101837
  • newton-projectAB (AB) $ 0.004486
  • swethSwell Ethereum (SWETH) $ 3,505.07
  • bitcoin-svBitcoin SV (BSV) $ 21.60
  • sbtc-2sBTC (SBTC) $ 92,110.00
  • syrupMaple Finance (SYRUP) $ 0.360988
  • justJUST (JST) $ 0.041435
  • ethereum-name-serviceEthereum Name Service (ENS) $ 10.77
  • conflux-tokenConflux (CFX) $ 0.079250
  • coinbase-wrapped-staked-ethCoinbase Wrapped Staked ETH (CBETH) $ 3,535.62
  • usdbUSDB (USDB) $ 1.00
  • staked-aaveStaked Aave (STKAAVE) $ 163.66
  • steakhouse-usdc-morpho-vaultSteakhouse USDC Morpho Vault (STEAKUSDC) $ 1.11
  • dogwifcoindogwifhat (WIF) $ 0.393258
  • plasmaPlasma (XPL) $ 0.190081
  • fartcoinFartcoin (FARTCOIN) $ 0.388930
  • binance-peg-dogecoinBinance-Peg Dogecoin (DOGE) $ 0.150368
  • telcoinTelcoin (TEL) $ 0.004047
  • sun-tokenSun Token (SUN) $ 0.020028
  • pyth-networkPyth Network (PYTH) $ 0.067010
  • trust-wallet-tokenTrust Wallet (TWT) $ 0.919224
  • pendlePendle (PENDLE) $ 2.19
  • gnosisGnosis (GNO) $ 138.91
  • apenftAINFT (NFT) $ 0.00000037
  • kaiaKaia (KAIA) $ 0.062455
  • euro-coinEURC (EURC) $ 1.17
  • bitcoin-avalanche-bridged-btc-bAvalanche Bridged BTC (Avalanche) (BTC.B) $ 92,559.00
  • olympusOlympus (OHM) $ 21.90
  • wrapped-stx-velarWrapped STX (Velar) (WSTX) $ 0.350620
  • benqi-liquid-staked-avaxBENQI Liquid Staked AVAX (SAVAX) $ 17.75
  • crvusdcrvUSD (CRVUSD) $ 0.999341
  • sonic-3Sonic (S) $ 0.090426
Bitcoin

Malware Campaign Targets Crypto Wallets With Fake PDF Conversion Software

By admin
0 64

Malware Campaign Targets Crypto Wallets With Fake PDF Conversion Software

A malware campaign is using fake PDF to DOCX converters as a vector for sneaking malicious PowerShell commands onto machines, enabling the attacker to access crypto wallets, hijack browser credentials and steal information.

Following an FBI alert last month, CloudSEK Security Research team has carried out an investigation revealing details about the attacks.

The goal is to trick users into executing a PowerShell command which installs the Arechclient2 malware, a variant of SectopRAT, an information stealing family known to harvest sensitive data from victims.

The malicious websites impersonate that of legitimate file converter PDFCandy, but instead of loading the real software, the malware is downloaded. The site features loading bars and even CAPTCHA verification in order to lull users into a false sense of security.

Ultimately, after several redirects, the victim’s machine downloads an “adobe.zip” file containing the payload—exposing the device to the Remote Access Trojan, which has been active since 2019.

This leaves users open to data theft, including browser credentials and cryptocurrency wallet information.

The malware “checks extension stores, lifts seed phrases, and even taps into Web3 APIs to ghost-drain assets post-approval,” Stephen Ajayi, Dapp Audit Technical Lead at blockchain security firm Hacken, told Decrypt.

CloudSEK advised people to use antivirus and antimalware software, and to “Verify file types beyond just extensions, as malicious files often masquerade as legitimate document types.”

The cybersecurity firm also advises that users rely on “trusted, reputable file conversion tools from official websites rather than searching for ‘free online file converters’,” and to consider using “offline conversion tools that don’t require uploading files to remote servers.”

Hacken’s Ajayi advised crypto users to remember that, “Trust is a spectrum, it’s earned, not given. In cybersecurity, assume nothing is safe by default.” He added that they should, “Apply a zero trust mindset, and keep your security stack up to date especially EDR and AV tools that can flag behavioral anomalies like rogue msbuild.exe activity.”

“Attackers evolve constantly and so should defenders,” Ajayi noted, adding that, “Regular training, situational awareness, and strong detection coverage are essential. Stay skeptical, prepare for worst-case scenarios, and always have a tested response playbook ready to go.”

Source

admin 16729 posts 0 comments
You might also like More from author

Leave A Reply

Your email address will not be published.