Jimmy Nukebot Description
The Jimmy Nukebot is a backdoor Trojan and Trojan downloader that can perform a variety of attacks indirectly, according to the modules that a remote attacker selects. Examples of possible dangers from infections include the loss of screen-capturable data and the injection of corrupted content, such as phishing lures, into your Web browser. Users should keep anti-malware services available for removing the Jimmy Nukebot and its components efficiently.
The Banking Trojan that Ditched the 'Banking' Part
Banking Trojans are sources of concern for anyone that conducts financial transactions over the Internet, but a Trojan consists of more than just the – usually – small amount of code that dedicates itself to the user-oriented attack. The Jimmy Nukebot exemplifies just how far a Trojan can go, as a mutated version of a banking Trojan that no longer resembles a banking Trojan, at all. Threat actors modifying NeutrinoPOS have offloaded all of its spyware features to separate modules, and its body consists of little more than a loader for the other elements.
The Jimmy Nukebot's modules offer flexible configuration options, with threat actors choosing different payloads depending on the environment they're compromising per infection. The Trojan has almost no features, by itself, other than providing system information to the threat actor's C&C, receiving further instructions, and downloading the additional threats. While malware experts warn that this list is incomplete, some instances of the Jimmy Nukebot's modules attacking include:
- Generating Monero cryptocurrency by 'mining' the computer (using its hardware resources, such as CPU and GPU, for running a repetitive mining program automatically).
- Injecting corrupted Web content into the browser, such as tactic websites that collect your account credentials.
- Taking screenshots.
Nuking Transformative Trojans Safely
Some of the Jimmy Nukebot's previously-seen modules include risks of permanent hardware damage or performance error, as well as the recurring danger of information's theft. Since its symptoms can be flexible incredibly, malware researchers recommend against scouting for the Jimmy Nukebot infections manually. Users should follow traditional precautions for securing their PC from its installation exploits and run anti-malware services for disinfection as it's appropriate.
The Jimmy Nukebot is an oddly-casual name for a Trojan that's both old and substantially-changed beneath the hood. Programmers who are working with a robust base of code can do a lot – unfortunately, that includes Black Hat programmers, too.
Use SpyHunter to Detect and Remove PC Threats
If you are concerned that malware or PC threats similar to Jimmy Nukebot may have infected your computer, we recommend you start an in-depth system scan with SpyHunter. SpyHunter is an advanced malware protection and remediation application that offers subscribers a comprehensive method for protecting PCs from malware, in addition to providing one-on-one technical support service.
Why can't I open any program including SpyHunter? You may have a malware file running in memory that kills any programs that you try to launch on your PC. Tip: Download SpyHunter from a clean computer, copy it to a USB thumb drive, DVD or CD, then install it on the infected PC and run SpyHunter's malware scanner.