It uses GPU module for attack to Bitcoins.
Technical description:
http://www.symantec.com/business/securi ... 15-5847-99
http://www.symantec.com/connect/blogs/b ... anbadminer
When it comes to mining, Badminer contains functionality to deal with all eventualities. It detects the type of computer that it is running on and then activates the appropriate “machinery” to dig through the hashes to reach the hidden treasures. If it determines the computer has a high-spec graphics card with a fast enough graphics processing unit (GPU), it uses the appropriate packages to leverage the immense processing power of the GPU to literally move through the mountains of hashes to reach the valuable bitcoins. Conversely if a low-spec computer is found, then it will wheel out the basic bitcoin mining tools, which will result in much slower throughput. To perform the mining functions, the Trojan contains both the RPC miner and Phoenix miner programs. The latter can take advantage of the extra power of the GPU for bitcoin mining.
Symantec wrote that it creates key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\srvsysdriver32, i. e. with driver on board.
May be anyone could share sample?
Technical description:
http://www.symantec.com/business/securi ... 15-5847-99
http://www.symantec.com/connect/blogs/b ... anbadminer
When it comes to mining, Badminer contains functionality to deal with all eventualities. It detects the type of computer that it is running on and then activates the appropriate “machinery” to dig through the hashes to reach the hidden treasures. If it determines the computer has a high-spec graphics card with a fast enough graphics processing unit (GPU), it uses the appropriate packages to leverage the immense processing power of the GPU to literally move through the mountains of hashes to reach the valuable bitcoins. Conversely if a low-spec computer is found, then it will wheel out the basic bitcoin mining tools, which will result in much slower throughput. To perform the mining functions, the Trojan contains both the RPC miner and Phoenix miner programs. The latter can take advantage of the extra power of the GPU for bitcoin mining.
Symantec wrote that it creates key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\srvsysdriver32, i. e. with driver on board.
May be anyone could share sample?
