Cryptomining Malware – Definition, Examples, & Detection – ExtraHop

What is Cryptomining?

Cryptomining malware, or ‘cryptojacking,’ is a malware attack that co-opts the target’s computing resources in order to mine cryptocurrencies like bitcoin. This malware uses a systems CPU and sometimes GPU to perform complex mathematical calculations that result in long alphanumeric strings called hashes.

These calculations serve to verify previous cryptocurrency transactions, and successfully solving them can generate a token of currency (like bitcoin). The process serves a dual purpose: limiting the total amount of currency created and checking previous transactions to prevent fraud (primarily double spending).

There are many different methods for getting the malware onto a target computer, like code embedded in a website or a classic email phishing attack. Once in place, the malware can be difficult to detect as it runs in the background.