'Lemon Duck' Spreads Through Windows 10 Computers, Infecting Users Through Fake COVID-19 E-mails
‘Lemon Duck’ Spreads Through Windows 10 Computers, Infecting Users Through Fake COVID-19 E-mails
October 16, 2020
'Lemon Duck' Spreads Through Windows 10 Computers, Infecting Users Through Fake COVID-19 E-mails
‘Lemon Duck’ Spreads Through Windows 10 Computers, Infecting Users Through Fake COVID-19 E-mails
October 16, 2020

Lemon Duck, a crypto mining botnet, is spreading through Windows 10 computers by infecting users through fake COVID-19 e-mails, as researchers have identified this since the end of August.

It has been reported that the botnet has been around since December 2018.

However, a big jump in activity over the past six weeks suggests that the malware has infiltrated many more machines in order to harness their resources to mine the cryptocurrency Monero.

Cisco’s Talos Intelligence Group researched that Lemon Duck infections are unlikely to have been detected by end-users, however, power defenders such as network administrators are likely to have picked it up. 

The report said that crypto mining malware can cause physical damage to hardware since it leaches resources by running the CPU or GPU constantly in order to carry out the mining process. This will cause an increase in power consumption and heat generation which, in severe cases, could lead to a fire.

ALSO READ :  Insurance Company Link4 Partners With RegTech Startup Coinfirm For Document Management

Likewise, Windows 10 computers are targeted by the malware which exploits vulnerabilities in a number of Microsoft system services.

It has been analyzed that the malware has been spread through e-mail with a COVID-19 related subject and an infected file attached. Once the system has been infected, it uses Outlook to automatically send itself to every contact in the affected user’s contacts list.

The fake e-mails contain two malicious files. The first is an RTF document with the name readme.doc, which exploits remote code execution vulnerability in Microsoft Office. And the second file is called readme.zip, which contains a script that downloads and runs the Lemon Duck loader. Once installed, the sophisticated software terminates a number of Windows services and downloads other tools for stealth connections to the rest of the network.

Lemon Duck has also been known to infect Linux systems but Windows machines are the primary victims.

The malware mines Monero since it is anonymous by design and very easy to unclear.

ALSO READ :  BitGo To Provide Custodian Services To Leading Indian Crypto Exchange CoinDCX

Thus, the researchers did not explain as to who was behind Lemon Duck though it has been linked to other crypto mining malware called “Beapy” that targeted East Asia in June 2019.

Source: Cointelegraph


Crypto News Point a news platform of Digital Notice Media Labs is primarily a regular publication of information, commentary and articles focused extensively on fintech, blockchain technology, cryptocurrency, blockchain-based tokens, cryptocurrency market trends, and trading strategies. We do not provide individually tailored investment advice and does not take a subscriber’s or anyone’s circumstances into consideration when discussing investments, nor is Crypto News Point registered as an investment adviser or broker-dealer in any jurisdiction. Information contained herein is not an offer or solicitation to buy, hold, or sell any digital assets.

Affiliate Disclosure: To help support the work we do here at CNP, we often link to products and deals from around the web. Should you buy some of these, we may get a portion of the sale.

We in generally gather content from the major websites. In every article there is always a clear link and attribution to the source publication. If you have any issue with any of our published content taken from your site, kindly let us know so that we can take appropriate action. In any case, the content of the pages of this website is for your general information and use only. It is subject to change without notice.

You May Also like

Ishita Bora

Ishita Bora is a Senior Content Creator at Digital Notice Media Labs with an experience of 1 year. She has completed her Master's Degree in Language and Linguistics in 2019 from Gauhati University, India. Her interest lies in blockchain technology and cryptocurrency space, as she loves writing about blockchain and other blockchain-related articles. Currently, she is working on blockchain-based news, reviews, featured articles, and guides.