The researchers found the first hidden cryptocurrency miner, containing the "kill list", that "kills" the processes of other miners in an attempt to capture all the power of the computer. This is reported by Bleeping Computer.
Malware was discovered by researcher Xavier Mertens of ICS Sans. In addition to the curious function, it does not differ from the many existing miners that were distributed this year, when the attackers switched from ransomware to a new type of attack.
Unlike competitors, the author of the miner realized that this market is becoming rather crowded, and infecting a device that does not already have several similar viruses becomes more and more difficult, which is why they have to fight for the power of the CPU and GPU.
To solve this problem, the author analyzed what miners most often infect devices, and compiled a list of system processes under the guise of which viruses act.
When such a trojan gets on the computer, it checks the running processes and, in case of detection of names from the list, stops them.
According to Mertens, experts in the field of cybersecurity can use the work done by the author of the virus to detect infected computers.
It's worth noting that this is not the first trojan containing the function "kill list", but none of them was designed for crypto currency mining.