Intezer Labs, a New York-based malware analysis and detection firm, found out hackers using the infamous "Doki" backdoor have been using Dogecoin wallets to mask their online presence.
A hacker - who goes by Ngrok - had uncovered a method to use Dogecoin wallets for infiltrating web servers, the firm noted.
Intezer Labs found out Doki was using a previously undocumented method to contact its operator by abusing the Dogecoin blockchain in a unique way in o.rder to dynamically generate its control and command domain addresses.
Using Dogecoin transactions allowed the attackers to alter these C&C addresses on any affected computers, or servers, that ran Ngrok's Monero mining bots.
"While some malware strains connect to raw IP addresses or hardcoded URLs included in their source code, Doki used a dynamic algorithm to determine the control and command address using the Dogecoin API.".
The firm added these steps meant security firms needed to access the hacker's Dogecoin wallet to take down Doki, which was "Impossible" without knowing the wallet's private keys.
They used the Doki service to determine and change the URL of the control and command server it needed to connect for new instructions.
When the above was fully executed, the Ngrok gang could change Doki's command servers by making a single transaction from within a Dogecoin wallet they controlled.
Dogecoin and Doki only served as access bridge, as ZDNet.
Intezer said Doki has been active since this January, but remained undetected on all 60 "VirusTotal" scanning software used on Linux servers.
Dogecoin is now being used by crypto hackers after TikTok boom
Published on Aug 1, 2020
by Cryptoslate | Published on Coinage
Mentioned in this article
Here's what on-chain data is saying about Band Protocol's 30% decline
Band Protocol has been garnering significant attention over the past few weeks due to its intense rally that sent it from the lower-$4.00 region in early-August to highs of nearly $18.00 that were set earlier this week.
How Not To Lose Everything During the Bull Run
With sentiment suggesting Bitcoin and the crypto markets are about to go on a bull run, seasoned old timers are warning about the lessons learned from previous rallies.
CoinShares: 'Bitcoin Is Like a Risky Tech Stock''
Behaving like a tech stock means Bitcoin carries the same high risk and high reward opportunities as a fledgling startup.
Flipstarter Campaign Launched to Create Viral BCH Videos for Normies
Bitcoin Cash advocate and CEO of BitcoinBCH.com, Hayden Otto, has launched a fundraising campaign to create viral videos promoting BCH to mainstream audiences - after failing to win over crypto converts to the cause.