The value of cryptocurrency is down right now, but online criminals are still happy to generate coins using your hardware. Usually, this comes in the form of crypto mining plugins running on websites, but there’s a new form of Android malware spreading online that mines coins on your phone. The odds of picking up this particular virus are low, but it’s still a clever bit of coding.
The malware, known as ADB.Miner, was discovered by Chinese IT firm Qihoo 360 Netlab. The researchers report this is a “wormable” piece of malware, which means it’s capable of spreading to new devices over a Wi-Fi network. The “ADB” in the name comes from the method it uses to spread: the Android Debug Bridge. This is a developer tool built into Android that allows communication with a device via a command line interface. In this case, the malware authors turn it against the user.
Every infection with ADB.Miner starts with a bad decision. Someone has to find the infected APK on a shady app store and manually install it. Qihoo 360 Netlab reports this malicious package is hiding in a number of apps that promise either porn or antivirus protection. Instead, you get ADB.Miner. It uses the processing power of your device to mine the Monero cryptocurrency and deposit it in the wallet belonging to the malware distributors. Of course, this causes lag and drains your battery.
ADB.Miner infection rates.
The next phase is where things get interesting. ADB.Miner uses code from the Mirai IoT malware that hit last year.