Cyber Criminals has started targeting Youtubers in promoting the trojan malware links.
Cybercriminals are sending bogus copyright claims to YouTubers to coerce them into promoting malware and cryptocurrency miners on their videos. The threat actors take advantage of the popularity of Windows Packet Divert (WPD) tools that are increasingly used in Russia as they help users bypass internet censorship and government-imposed restrictions on websites and online services. YouTube creators catering to this audience publish tutorials on how to use various WPD-based tools to bypass censorship and are being targeted by threat actors posing as the copyright holders of these tools. In most cases seen by Kaspersky, the threat actors claim to be the original developers of the presented restriction bypass tool, filing a copyright claim with YouTube and then contacting the creator to offer a resolution in the form of including a download link they provide. At the same time, they threaten that non-compliance will result in two more "strikes" on YouTube, which could lead to a channel ban based on the platform's "three strikes" policy. In other cases, the attackers contact the creator directly, impersonating the tool's developers and claiming that the original tool has a new version or new download link, asking the creator to change it on their video. The creators, fearing they will lose their channels, give in to the threat actors' demands, and agree to add links in their videos to GitHub repositories that host the said Windows Packet Divert (WPD) tools. However, these are trojanized versions that include a cryptominer downloader instead. Kaspersky has seen this promotion of laced WPD tools take place on a YouTube video that generated over 400,000 views, with the malicious link reaching 40,000 downloads before it got removed. A Telegram channel with 340,000 subscribers has also promoted the malware under the same disguise."According to our telemetry, the malware campaign has affected more than 2,000 victims in Russia, but the overall figure could be much higher," warns Kaspersky.in Russia, but the overall figure could be much higher," warns Kaspersky. SilentCryptoMiner deploymentThe malicious archive downloaded from the GitHub repositories contains a Python-based malware loader that is launched using PowerShell via a modified start script ('general. bat'). If the victim's antivirus disrupts this process, the start script delivers a 'file not found' error message suggesting that the user disables their antivirus and re-download the file. The executable fetches the second-stage loader only for Russian IP addresses and executes it on the device. The second stage payload is another executable whose size was bloated to 690 MB to evade antivirus analysis, while it also features anti-sandbox and virtual machine checks. The malware loader turns off Microsoft Defender protections by adding an exclusion and creates a Windows service named 'DrvSvc' for persistence between reboots. Eventually, it downloads the final payload, SilentCryptoMiner, a modified version of XMRig capable of mining multiple cryptocurrencies, including ETH, ETC, XMR, and RTM. The coin miner fetches remote configurations from Pastebin every 100 minutes so it can be updated dynamically. For evasion, it is loaded into a system process like 'dwm. exe' using process hollowing and pauses mining activity when the user launches monitoring tools like Process Explorer and the Task Manager. Although the campaign discovered by Kaspersky primarily targets Russian users, the same tactics may be adopted for broader-scoped operations that also deliver higher-risk malware like info-stealers or ransomware. Users should avoid downloading software from URLs in YouTube videos or descriptions, especially from smaller to medium-sized channels that are more susceptible to scams and blackmail.
Trending Now - TOP 100
1
Why Africa’s Mineral-Rich Countries Stay Poor: The Hidden Truth Behind Cobalt, Gold, and the Resource Curse, and Profit Shifting.
2
Crystal Palace stunned Liverpool to win the Community Shield
3
More than 50k Russian troops have deserted war from Ukraine
4
Michelle Obama Says America “Ain’t Ready” for a Woman President: Candid Remarks on Kamala Harris Loss and Gender Bias in 2025.
5
MIT Study Reveals AI's Fatal Flaw: Why ChatGPT Still Can't Understand 'No.
6
Why Your Phone Screen Is Shaking: Causes, Fixes, and Prevention Tips
7
Introducing Runfarbiz Network TV Global News software 2026
8
Jeff Bezos Reclaims No. 3 Richest Title From Sergey Brin After Amazon Store Closures
9
Best Music Affiliate Program This 2026 For Musicians.
10
Elon Musks SpaceX to invest in xAI From $2 billion funding to $113 billion valuation.
11
Aliko Dangote Became The Richest Black Man In The World — And Now He Plans To Invest $1B In Industrial Projects In Zimbabwe.
12
Kampala Traffic Jam Continues To Be Dominated By Bodaboda Riders & Taxis Amidst Coming Events.
13
Acidic Vokoz plans another major concert
14
WordPress Settings Required For Any Good Website Development And Clean User Interface
15
ARSENAL TO SIGN MADUEKE FROM CHELSEA
16
Types of Hacking Methods That Are Popularly Being Used By Hackers.
17
SPORTS: All transfer rumors
18
Man United receive key Marcus Rashford transfer exit 'approval' as £44.8m enquiry made
19
The health benefits of eating sugarcane on daily basis
20
YOU CAN CONTACT SYPHILIS IN YOUR EYES IF YOU ENGAGE IN THESE THREE THINGS.
21
Ugandans spend Shs 55bn a day on TikTok data - Report
22
What Is Agood Webhosting ?
23
Do These Simple Steps To Stop Mustarbation Addiction.
24
Kalaki Leaders Embark On Benchmarking Tour To Revive Education Standards At Top-Performing VH Public School
25
UPDF has disqualified More than 60000 Applicants In Intitail Phase Screening.
26
Runfarbiz Related Premium Offers Now Includes Investment, Subscription For Voice, Data & Airtime Bundles Options Updated.
27
Crazy Things Awife May Do To Mess Up Her Relationship
28
Solomon Kampala, Son of Bobi Wine, Engages Mexican Partner Helen Jaquez in Stunning Lakeside Proposal
29
We are now operating on both Ads revenue Model and Subscription Offers Just like Spotify, TikTok, Deezer, Apple Music , Mdundo, Boomplay, YouTube Music, Facebook Streams , Latest Runfarbiz Network system Upgrade.
30
Billionaires Elon Musk and Mark Zuckerberg almost ended up in a cage fight over their competing social media platforms.
31
Fintechs Dominate Africa's Top Startup Valuations in 2025: Flutterwave, OPay, and Wave Lead the Unicorn List.
32
Tulus Biography Details And Music Of The Artist
33
Africa aviation industry, Isaac Balami University of Aeronautics and Management, IBUAM, first aeronautics university Africa.
34
NRM Party Primary Elections Has Failed UpTo Ten Ministers , Report Confirmed by Electoral Commission Uganda.
35
Protect your soul, The world isn’t worth it.
36
Nigerian researcher develops wireless charging tech for electric vehicles.
37
Iran holds state funeral for military leaders killed in Israel conflict.
38
The tech world was left stunned when Perplexity, the $18 billion AI startup led by Indian-origin CEO Aravind Srinivas, made an audacious $34.5 billion cash offer to acquire Google Chrome.
39
Two Suspected Ugandan Rebels Killed in Kampala Explosion.
40
Official Digital Transformation Update From Runfarbiz Network Admin, Try To Read To The Last Paragraph
41
Trump Health 2025 Perfect MRI No Idea What Body Part Was Scanned, Full Story.
42
Billionaire Telegram Founder Leaves His $14 Billion Fortune to the 100+ Children He’s Fathered—Which Means $132 Million for Each Lucky Gen Alpha Kid.
43
A comprehensive biography of Raila Odinga, exploring his journey from political detainee to Prime Minister, his five presidential bids, and his complex legacy in shaping modern Kenya.
44
The landscape of modern warfare is on the brink of a seismic shift, and China is at the forefront of this transformation.
45
Uganda Secures Over $2 Billion in World Bank Financing to Bolster Development.
46
Assistant referee Peter Kabugo passes away during sports club Villa match against UPDF
47
Exposed Tricks How Some Financial Credit Institutions In The Names Of Money Lenders Are Stealing From Poor Ugandans .
48
Iran-Israel War: Origins, Casualties, Global Impact, and Future Projections.
49
Russia Begins Production of Advanced Oreshnik ICBM: A New Era in Strategic Capabilities.
50
The Opposition Claims Hundreds Of Tanzanian Protesters Around 700 Already Dead.
51
Uganda Police Ban Campaign Processions and Ambulance Misuse as Bobi Wine Launches Kampala Campaigns in Kawempe | 2026 Elections.
52
Uganda’s New Law Allowing Military Trials for Civilians.
53
Qatar, UAE, Saudi Arabia, and other Gulf nations have shut down airspace amid rising tensions, causing massive flight cancellations and travel chaos. Latest updates here.
54
Why J Donald Trump Is Still Dominating American Politics
55
UPDF Bids Farewell to Over 600 Retirees in Nationwide Ceremonies.
56
VINKA AND FIK FAMAICA TO LEAD MUBs GALA
57
Runfarbiz Network Improved Streaming Features Includes The Following.
58
Mdundo Temporarily Blocked My Music Page After Hitting 1 million Streams Plus, My 5 million Uganda Shillings Will be losts .
59
Six Dangerous Diseases You Can Catch Through Kissing _What You Need To Know.
60
Daily USSD Codes for MTN UG and Airtel UG that may assist you when having some Emergencies.
61
President Yoweri Museveni has promised to address two critical needs in Obongi District—electricity and better roads
62
Top Most Corrupt Institutions Made To Control Human Race Under The Financial Matrixs They Are Not Telling You.
63
TotalEnergies Sued in Uganda Over Unpaid Bill for Toxic Fuel Depot Cleanup in Kampala.
64
SFC soldier shoots three dead in Agago
65
Singer Daudi Mugema dies in Gulu
66
Antoine Semenyo £65m Release Clause Active in January: Man City, Liverpool & Spurs Monitoring Bournemouth Star.
67
_biography_–_the_rising_star_in_the_music_industry..jpeg)
DAX (Daniel Nwosu) Biography – The Rising Star in the Music Industry.
68
Uganda and Kenya Assure No War Over Indian Ocean Oil Dispute , Museveni Remarks, Mudavadi Response & EAC Diplomacy 2025.
69
REPORT REVEALS ALARMING HUMAN RIGHT ABUSES IN KARAMOJA MINING SECTOR.
70
UGANDA SIGNS BILATERAL AIR SERVICE AGREEMENT WITH OMAN.
71
The Secret Life of Squirrels: A Tale of Love, Loyalty, and Forests in the Making.
72
U.S. President Donald Trump recently expressed admiration for Pakistan.
73
Bebe Cool Announces Release of New Single, ‘Circumference’
74
See why your always having sex on dreams, Secrets Exposed.
75
British firm discovers gold worth over $5B in western Kenya.
76
Uganda and Kenya Harmonise SGR Standards: Land Acquisition Accelerates for Malaba-Kampala Railway Project.
77
Arsenal Eye Move for Liverpool Wonderkid Joshua Abe | 15-Year-Old Right-Back Transfer News.
78
Auditor-General Demands Shs2 Trillion Forensic Tax Audit on Uganda Telecom Companies Over Revenue Discrepancies.
79
Bunyoro Kingdom Rejects UCDA Rationalization, Calls for Increased Funding
80
Microsoft has unveiled their new Copilot AI model
81
GOVERNMENT OF UGANDA TO RECRUIT OVER 2800 TEACHERS AHEAD OF NEW TERM.
82
UPC's Jimmy Akena Vows No Space for NRM in 2026 Elections: Uganda People's Congress Resurgence Ahead of General Polls.
83
Pakistan Tightens Cash Dollar Sales in Bid to Curb Outflow and Support Rupee.
84
Why Bobiwine Has Been Failing The Political Presidential Elections In Uganda.
85
Kylian Mbappé Breaks Messi Record: Youngest to 400 Career Goals Since Pelé at Age 26.
86
CDF Kainerugaba On Behalf Of UPDF Is Planning To Reshuffle Their Generals Like GEN Elwelu.
87
Stop praying like this, You will summon demonic forces from abyss without knowing
88
H.E Yoweri Kaguta Museveni Is The Most Concerned Ugandan Patriot.
89
![Boywisky music official ft Bill Ranka Uganda have already released a new song titled "Yom Cwinya"](/rfpro/posts/boywisky_music_official_ft_bill_ranka_uganda_have_already_released_a_new_song_titled_"yom_cwinya".jpg)
Boywisky music official ft Bill Ranka Uganda have already released a new song titled "Yom Cwinya"
90
25 Motivational Tips & Quotes that shall Inspire You.
91
Causes and prevention of high blood pressure
92
SEE NAMES OF UGANDANS SHORTLISTED FOR GOVERNMENT PAYROLL JOBS AS HEAD TEACHERS, DEPUTIES IN KCCA SCHOOLS.
93
UPDF SALUTS SEVEN GENERALS , AWAITING THEIR OFFICIAL RETIREMENT
94
In tit-for-tat, Zambia suspends Kenya Airways flights over country’s denial of access to Zambia Airways
95
HOW UGANDAN'S ENERGY SECTOR WILL PERFORM IN 2026.HOW UGANDAN'S ENERGY SECTOR WILL PERFORM IN 2026.
96
Cloudflare Outage November 18 2025: Why the Internet Broke and How Cloudflare Actually Works Behind the Scenes.
97
MANCHESTER UNITED HAVE REJECTED A £40MILLION OFFER FROM ITALIAN SIDE NAPOLI FOR ALEJANDRO GARNACHO.
98
Museveni Urges Ugandans to Embrace Swahili for Commerce, Pledges 100 Million to Swahili Sacco
99
How to stay the happy life without money in your pocket
100
4 THINGS MOSQUITOS DON'T LIKE, WHICH WILL MAKE THEM RUN FROM BITTING YOU.
RECENT CONTENTS
Irans Supreme Leader Confirmed Killed By Israels Joint Attack With America
On February 28 and into March 1, 2026, Israel and the United States launched a coordinated joint military operation against Iran, marking a significant escalation in long-running tensions over Tehran’s nuclear and missile programs. The offensive involved extensive airstrikes by Israeli forces and participation by U.S. military assets targeting Iranian military infrastructure, command centers, missile sites, air defenses, and political leadership compounds. Several senior Iranian officials and commanders were reported...
Read More
WestLife - Biography And Their Music Journey.
Westlife, the Irish pop group, came together in Dublin in July 1998 when Shane Filan, Kian Egan, and Mark Feehily, who had been schoolmates from Sligo, joined forces with Nicky Byrne and Brian McFadden following auditions to complete the original five-member lineup. by Louis Walsh and initially supported by Ronan Keating, they quickly signed a >
Managedajor record deal and burst onto the scene in 1999 with their debut single...
Read More
Niki Biography And Music – Indonesian Singer-Songwriter, Global Pop R&B Artist, Career and Music Journey
Nicole Zefanya, known professionally as Niki, is an Indonesian singer-songwriter born on January 24, 1999, in Jakarta, Indonesia. She is recognized for her alternative pop and R&B sound and is signed to the record label 88rising. Over the years, she has gained global recognition for her songwriting and musicianship, building an international audience while living and working in the United States.
Niki began developing her musical skills at a young age...
Read More
Afgan Music And Biography Of The Artist – Indonesian Singer, R&B Artist, Albums, Career Journey, and Music Evolution.
Afgansyah Reza, known professionally as Afgan, is an Indonesian singer and actor born on May 27, 1989, in Jakarta, Indonesia. He is widely recognized for his smooth pop and R&B style and has become one of Indonesia’s most prominent contemporary male vocalists.
He grew up in a musical Muslim family of Minangkabau heritage and is the second of four children.
Interestingly, despite later becoming famous for his voice, he never underwent...
Read More
Tulus Biography Details And Music Of The Artist
Tulus, whose full name is Muhammad Tulus, is an Indonesian singer and songwriter known for his warm baritone voice, emotional storytelling, and refined pop-jazz musical style. He was born on 20 August 1987 in Bukittinggi, West Sumatra, Indonesia, and grew up in a Minangkabau family.
From an early age, he showed interest in music, although it was not immediately his main career path. During his university years, he studied architecture...
Read More
Who is Kim Ju Ae? Inside Kim Jong Uns Decision to Designate His Teen Daughter as Successor
Kim Jong Un chooses teen daughter as heir, says Seoul
Jake Kwon Seoul correspondent
North Korean leader Kim Jong Un has selected his daughter as his heir, South Korea's spy agency told lawmakers on Thursday.
Kim Ju Ae - who is believed to be 13 - has in recent months been pictured beside her father in high-profile events like a visit to Beijing in September, her first known trip abroad.
The National Intelligence Service...
Read More