NuggetPhantom Malware

The NuggetPhantom Malware is a threatening piece of software, which first emerged in 2016. Since then, it has been used in several large-scale campaigns, and it is very likely that multiple threat actors are making use of this payload's functionality. The primary goal of the NuggetPhantom Malware was to hijack cryptocurrency transactions and credentials, but its features have been extended over the past few years.

Nowadays, the NuggetPhantom Malware is able to evade anti-virus software by checking for specific files, processes, and registry entries they are known to use. If it detects any anti-virus tools on the compromised system, it may stop the execution of corrupted code. Furthermore, the malware has the ability to identify systems used for malware analysis. The biggest news about the NuggetPhantom Malware was the introduction of the ETERNALBLUE exploit, which would allow the operators to try to infiltrate entire networks just by compromising the security of one of the systems.

The NuggetPhantom Malware has functionality typical for botnets, as it can harvest the computer's resources to execute distributed-denial-of-service attacks, as well as to initialize cryptocurrency mining operations. Last but not least, the operators of the NuggetPhantom Malware may have the ability to execute remote commands on compromised systems.

The NuggetPhantom Malware was one of the most impressive cryptocurrency mining campaigns to be observed in 2016 and 2017. Nowadays, this malware sample is not that unique since cybercriminals have managed to develop more sophisticated threats capable of executing similar tasks. The best way to protect your computer or network from the NuggetPhantom Malware intrusion is to use an up-to-date anti-virus app, as well as to follow the best online security practices.