New crypto-stealing malware lurks Windows 10 users

The hackers never take a break, and let alone if the cryptocurrency market is bullish. Your cryptocurrencies might be safe in your device or favorite exchange, but they always have their ways to steal the coins. A crypto-stealing malware disguised as a feature of Windows 10 is the last of those ways.

To be more specific, the hackers designed a fake website to download DirectX 12 in Windows 10. This pack of functionalities works to develop and run multimedia content, especially videogames. So, a lot of gamers, for example, might want to update the DirectX and find the awful surprise instead.

The phishing page was designed to detail. It includes a privacy policy, disclaimer, contact form, and, at the first sight, everything that a legitimate web should have. If the user clicks on the Download buttons, they will be redirected to an external page to get the files. Once installed, the malware will silently harvest the user’s data, including cookies, files, and information about the system and programs. It can even take screenshots.

But probably the worst part is that the malware looks for cryptocurrency wallets inside the system to steal the credentials, passwords, and, ultimately, the funds stored in there. So, the malicious software can identify wallets like Ledger Live, Waves.Exchange, Coinomi, Electrum, Electron Cash, BTCP Electrum, Jaxx, Exodus, MultiBit HD, Aomtic, and Monero.

All the stolen data is compressed and sent automatically to the hackers involved. So, all your wallets might be emptied in no time if you’re not careful enough.

Avoid crypto-stealing malware

The aforementioned is a classic phishing case. Let’s remember that phishing occurs when some hackers make a fake version of something (website, app, software, message, call…) to deceive people and get from them valuable information, like bank or cryptocurrency credentials and keys.

So, the hackers clone websites or software, or impersonate some service, company, or person via email or call to achieve their malicious goals. Avoid this type of crypto-stealing malware is kind of easy, though.

First of all, download files and software only from the official websites (Microsoft, in this case). Check twice the URLs to be sure. Likewise, it’s important to keep updated the OS, antivirus, and firmware of all your smart devices, and don’t opening links or attached files from dubious emails.

Featured Image by Elchinator / Pixabay

Wanna trade Bitcoin and other tokens? You can do it safely on Alfacash! And don’t forget we’re talking about this and a lot of other things on our social media.

Twitter * Telegram * Facebook * Instagram * Vkontakte

Originally published at on April 26, 2021.

We are an eight-year-old and duly regulated cryptocurrency exchange. We offer crypto-fíat and non-custodial transactions, and valuable knowledge in our blog.

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store