{"id":133301,"date":"2021-06-29T07:01:43","date_gmt":"2021-06-29T06:01:43","guid":{"rendered":"https:\/\/www.techweekmag.com\/?p=133301"},"modified":"2021-06-29T07:49:59","modified_gmt":"2021-06-29T06:49:59","slug":"crackonosh-a-dangerous-malware-in-pirated-games-and-software","status":"publish","type":"post","link":"https:\/\/www.stereoindex.com\/tech\/technology\/crackonosh-a-dangerous-malware-in-pirated-games-and-software\/","title":{"rendered":"Crackonosh: A dangerous malware in pirated games and software"},"content":{"rendered":"<p>The\u00a0creation of malware\u00a0has been a constant on the Internet for many years and every year new variants are found that seek to deceive users in the most sophisticated ways.\u00a0Now, the latest one to gain popularity is called\u00a0Crackonosh and it has already caused serious complications in hundreds of thousands of computers around the world.<\/p>\n<p>In recent days, an\u00a0Avast report has given details about Crackonosh\u00a0, a malware that has been in existence since 2018 but that has spread in recent months with more than 30 variants and that is\u00a0reached through unlicensed and cracked software, being pirate video games one of the most common examples.<\/p>\n<h2>How Crackonosh works<\/h2>\n<p><img decoding=\"async\" class=\"lazyloaded wp-image-173517 size-full aligncenter\" title=\"Chart of countries with the highest number of infected computers\" src=\"https:\/\/www.stereoindex.com\/tech\/wp-content\/uploads\/2021\/06\/Avast-Crackonosh.png\" \/><\/p>\n<p id=\"caption-attachment-173517\" class=\"wp-caption-text\">Chart of countries with the highest number of infected computers<\/p>\n<p>The download of corrupt files cause Crackonosh to attack around 1000 devices per day and more than 222,000 computers around the world\u00a0have already been affected.<\/p>\n<p>Pirated video games have been the most chosen form for this malware\u00a0, traces of it being found in installers of titles such as Fallout 4 Game of the Year edition, Far Cry 5, Grand Theft Auto V, NBA 2K19, Pro Evolution Soccer 2018, The Sims 4 and more.\u00a0Because the game installs correctly, no one notices that malicious software has also been added.<\/p>\n<p>Basically the operation of Crackonosh is based on the user&#8217;s belief that they are executing a file corresponding to a cracked version of legitimate software.\u00a0Subsequently,\u00a0an installer and a script that modifies the Windows registry make it easier for the main executable of the malware to run in safe mode\u00a0.<\/p>\n<p>In this way, the infected system will start the next time in safe mode and thus the antivirus that is installed will not work.\u00a0With this, the malware\u00a0is able to deactivate and remove Windows Defender from the computer\u00a0as well as search for software records of popular companies such as\u00a0Avast, Kaspersky, McAfee, Norton and Bitdefender, and also try to deactivate or eliminate them.<\/p>\n<p>It\u00a0will not be easy\u00a0for the user\u00a0to find details about the presence of Crackonosh in the system since the Windows registry files are deleted\u00a0, at the same time that they try to disable Windows Update and replace Windows Security with a false green icon in the tray.<\/p>\n<p>The final and most important step is the\u00a0installation of\u00a0XMRig, a cryptocurrency miner that uses system resources to mine the Monero (XMR) cryptocurrency\u00a0.\u00a0It is believed that so far those responsible have already generated more than two million dollars in profit using this method.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>The\u00a0creation of malware\u00a0has been a constant on the Internet for many years and every year new variants are found that seek to deceive users in the most sophisticated ways.\u00a0Now, the latest one to gain popularity is called\u00a0Crackonosh and it has already caused serious complications in hundreds of thousands of computers around the world. In recent [&hellip;] <a class=\"g1-link g1-link-more\" href=\"https:\/\/www.stereoindex.com\/tech\/technology\/crackonosh-a-dangerous-malware-in-pirated-games-and-software\/\">More<\/a><\/p>\n","protected":false},"author":10404,"featured_media":133304,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[805],"tags":[779],"class_list":{"0":"post-133301","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-technology","8":"tag-news"},"acf":[],"aioseo_notices":[],"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/www.stereoindex.com\/tech\/wp-json\/wp\/v2\/posts\/133301","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.stereoindex.com\/tech\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.stereoindex.com\/tech\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.stereoindex.com\/tech\/wp-json\/wp\/v2\/users\/10404"}],"replies":[{"embeddable":true,"href":"https:\/\/www.stereoindex.com\/tech\/wp-json\/wp\/v2\/comments?post=133301"}],"version-history":[{"count":0,"href":"https:\/\/www.stereoindex.com\/tech\/wp-json\/wp\/v2\/posts\/133301\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.stereoindex.com\/tech\/wp-json\/wp\/v2\/media\/133304"}],"wp:attachment":[{"href":"https:\/\/www.stereoindex.com\/tech\/wp-json\/wp\/v2\/media?parent=133301"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.stereoindex.com\/tech\/wp-json\/wp\/v2\/categories?post=133301"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.stereoindex.com\/tech\/wp-json\/wp\/v2\/tags?post=133301"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}