The crypto jacking Shellbot Malware is back in the scene again with some new upgrades and abilities. Apparently, it can hack into Linux servers based on a network. The malware usually makes use of SSH brute-force to gain access to systems with weak passwords. It can infect a network and mine the cryptocurrency Monero(XMR). What stands out about the Shellbot Malware is, it can shut down other miners on a network.

The crypto jacking malware makes use of IRC chat server to drop the payload. This chat server acts as the command of the hackers. They make use of 272-line script which checks for the presence of other crypto miners on a network. As it removes other miners it can mine up to $300 a day. Then it sends the resultant mine to MoneroHash server. According to the MoneroHash campaign, the more servers it will affect, greater will be the amount of crypto it will mine.

Recently, cybersecurity firm Threat Stack spotted the Shellbot Malware on the servers of a US company. According to the Cheif Security officer of the firm, the developers of Shellbot can use it to retrieve or destroy information, demand ransom, etc.

There has been a significant rise in the malware threat in the crypto domain. It is proving fatal for crypto miners and everyone else dealing with crypto. Most recently, Beapy malware was discovered which makes use of NSA’s hacking tools. Also, there are fresh reports of anonymous hackers stealing cryptocurrencies by hacking Microsoft Email accounts. So, to address this issue, folks working with crypto should be aware of such malware. Also, security measures should be stepped up.