Click anywhere to stop


Detect Date 06/22/2017
Class Trojan
Platform Win32

Malware that uses the CPU resources of an infected system to “mine” cryptocurrency for the creator of the malware. It copies itself to C:\ProgramData\MicrosoftCorporation\Windows\SystemData\Isass.exe and adds itself to the list of startup items. Updates to the malware, as well as the creator’s credentials needed for mining, are automatically downloaded from a server.

Countries with most attacked users (% of total attacks)

Country % of users attacked worldwide*
1 Russian Federation 37.5
2 Algeria 12.5
3 Bangladesh 12.5
4 Germany 12.5
5 Indonesia 12.5
6 Sri Lanka 12.5

* Percentage among all unique Kaspersky users worldwide attacked by this malware

Find out the statistics of the threats spreading in your region