• About
  • FAQ
  • Contact Us
Newsletter
Crypto News
Advertisement
  • Home
    • Home – Layout 1
    • Home – Layout 2
    • Home – Layout 3
  • News
  • Market
  • Analysis
  • DeFi & NFTs
  • Guides
  • Tools
  • Flash
  • Insights
  • Subscribe
No Result
View All Result
  • Home
    • Home – Layout 1
    • Home – Layout 2
    • Home – Layout 3
  • News
  • Market
  • Analysis
  • DeFi & NFTs
  • Guides
  • Tools
  • Flash
  • Insights
  • Subscribe
No Result
View All Result
Crypto News
No Result
View All Result
Home Market

Crypto users targeted in SourceForge malware attack via fake Microsoft Office softwares

admin by admin
April 25, 2025
in Market
0
Crypto users targeted in SourceForge malware attack via fake Microsoft Office softwares
189
SHARES
1.5k
VIEWS
Share on FacebookShare on Twitter


Cybercriminals are targeting crypto users by exploiting SourceForge, a well-known open-source software platform.

According to security experts at Kaspersky, malicious attackers upload fake Microsoft Office installers packed with hidden malware, including crypto miners and clipboard hijackers, to deceive unsuspecting users.

They noted that while the SourceForge project pages appear legitimate, the danger lies in their auto-generated subdomains. In one instance, Russia’s Yandex search engine indexed a fake domain, leading unsuspecting users to a page filled with counterfeit Office tools and download buttons.

Crypto Hack
Sample Search Query Results on SourceForge. (Source: SecureList)

Data from Kaspersky indicates that more than 4,600 incidents were recorded in the first quarter of 2025, with 90% of the affected users in Russia.

It was unclear if this attack had led to significant financial losses for crypto users.

The attack

In this attack, the hackers upload weaponized software to SourceForge’s project pages. These pages mimic legitimate Office-related tools, but the installers contain embedded scripts that deliver harmful payloads.

The trap begins with a small archive file named vinstaller.zip, only around 7MB. This is suspicious, as genuine Office software is significantly larger—even when compressed.

However, once the file is unzipped, it balloons into a 700MB installer packed with hidden scripts. These scripts silently fetch additional files from GitHub and scan the system for antivirus tools.

If no protection is detected, the installer loads crypto mining software and a clipbanker Trojan.

According to the blog post:

“ClipBanker is a malware family that replaces cryptocurrency wallet addresses in the clipboard with the attackers’ own. Users of crypto wallets typically copy addresses instead of typing them. If the device is infected with ClipBanker, the victim’s money will end up somewhere entirely unexpected.”

At the same time, one of the scripts sends user information to a Telegram bot, giving the hacker full access to sensitive data.

This campaign highlights how hackers leverage trusted platforms to bypass security systems and spread malware at scale.

Mentioned in this article
Latest Alpha Market Report



#Crypto #users #targeted #SourceForge #malware #attack #fake #Microsoft #Office #softwares

Related articles

Fast food giant Steak ‘n Shake launches Bitcoin payments, boosts financial efficiency

Fast food giant Steak ‘n Shake launches Bitcoin payments, boosts financial efficiency

May 27, 2025
Bo Hines declares the US won’t sell Bitcoin, seek endless accumulation for strategic reserve

Bo Hines declares the US won’t sell Bitcoin, seek endless accumulation for strategic reserve

May 27, 2025
Tags: after ftx s dramaticaid and last month s punishingat kasperskyattackbtc recent range playbuys 250m btc in 4 dayscommunity but losing momentumcryptocrypto minerscrypto walletengine indexed aeven when compressedFakefilled with counterfeithad thousands of gpusinput from the lomond community pmalwareMicrosoftnear pakistan p pOfficeout aave and twitter s blueskyp p crypto isn tsay like madagascar they makescripts silently fetch additional filessoftwaressolo missions throughSourceForgeTargetedtariffs themselves and when people andto compete for points blockquote ptop while there s nothingtuttle capital have proposed leveragedunsuspecting users to a page filledusersusers to a page filledwallets typically
Share76Tweet47

Related Posts

Fast food giant Steak ‘n Shake launches Bitcoin payments, boosts financial efficiency

Fast food giant Steak ‘n Shake launches Bitcoin payments, boosts financial efficiency

by admin
May 27, 2025
0

Fast food chain Steak ‘n Shake has expanded its payment options to include Bitcoin (BTC) at all of its locations...

Bo Hines declares the US won’t sell Bitcoin, seek endless accumulation for strategic reserve

Bo Hines declares the US won’t sell Bitcoin, seek endless accumulation for strategic reserve

by admin
May 27, 2025
0

Bo Hines told the 2025 Bitcoin Conference in Las Vegas on May 27 that the federal government will hold every...

Cetus seeks Sui community nod to unlock 2M to make users whole

Cetus seeks Sui community nod to unlock $162M to make users whole

by admin
May 27, 2025
0

Sui-based protocol Cetus said on May 27 that it can reimburse every user affected by its May 22 exploit if...

VanEck proposes mining royalty to fill US strategic Bitcoin reserve in a budget-neutral way

VanEck proposes mining royalty to fill US strategic Bitcoin reserve in a budget-neutral way

by admin
May 27, 2025
0

VanEck head of digital assets research Matthew Sigel called on US lawmakers to attach a royalty to domestic Bitcoin (BTC)...

SharpLink makes 5M Ethereum treasury plunge with Joseph Lubin’s guidance

SharpLink makes $425M Ethereum treasury plunge with Joseph Lubin’s guidance

by admin
May 27, 2025
0

SharpLink Gaming plans to establish a $425 million Ethereum (ETH) treasury under the guidance of Consensys CEO and Ethereum co-founder...

Load More
  • Trending
  • Comments
  • Latest
Bitcoin and Ethereum Stuck in Range, DOGE and XRP Gain

Bitcoin and Ethereum Stuck in Range, DOGE and XRP Gain

April 25, 2025
Saylor says Warren Buffett’s Berkshire Hathaway is Bitcoin of 20th century – Deep Insight

Saylor says Warren Buffett’s Berkshire Hathaway is Bitcoin of 20th century – Deep Insight

May 7, 2025
Amazon CEO on Crypto and NFTs, EPNS to Expand Beyond Ethereum + More News

Amazon CEO on Crypto and NFTs, EPNS to Expand Beyond Ethereum + More News

April 25, 2025
Why DeFi agents need a private brain

Why DeFi agents need a private brain

May 4, 2025
US Commodities Regulator Beefs Up Bitcoin Futures Review

US Commodities Regulator Beefs Up Bitcoin Futures Review

0
Bitcoin Hits 2018 Low as Concerns Mount on Regulation, Viability

Bitcoin Hits 2018 Low as Concerns Mount on Regulation, Viability

0
India: Bitcoin Prices Drop As Media Misinterprets Gov’s Regulation Speech

India: Bitcoin Prices Drop As Media Misinterprets Gov’s Regulation Speech

0
Bitcoin’s Main Rival Ethereum Hits A Fresh Record High: 5.55

Bitcoin’s Main Rival Ethereum Hits A Fresh Record High: $425.55

0
ASIC Sues Former Blockchain Global Exec Over M in Unpaid Customer Claims

ASIC Sues Former Blockchain Global Exec Over $20M in Unpaid Customer Claims

May 28, 2025
Crypto czar Sacks says US could possibly ‘acquire more Bitcoin’

Crypto czar Sacks says US could possibly ‘acquire more Bitcoin’

May 28, 2025
Bitcoin Traders Eye New Highs by End of Summer; Ether Rises 3% on Treasury Optimism

Bitcoin Traders Eye New Highs by End of Summer; Ether Rises 3% on Treasury Optimism

May 28, 2025
Cetus Reveals Recovery Plan, Taps SUI for Bridge Loan

Cetus Reveals Recovery Plan, Taps SUI for Bridge Loan

May 28, 2025
  • About
  • FAQ
  • Contact Us
Call us: +1 23456 JEG THEME

© 2025 Btc04.com

No Result
View All Result
  • Home
  • News
  • Market
  • Analysis
  • DeFi & NFTs
  • Guides
  • Tools
  • Flash
  • Insights
  • Subscribe
  • Contact Us

© 2025 Btc04.com