StripedFly malware: A worming miner hiding advanced code, espionage-ready capabilities

Kaspersky researchers have discovered a previously unknown StripedFly malware that has globally infected over a million victims since 2017. Initially regarded as a cryptocurrency miner, the malware, which shows similarities to the Equation malware, was found to be a complex, multifunctional wormable framework capable of acting as an APT, a crypto miner, and a ransomware group. It also harvests credentials, collects personal data, and can control victims’ devices. Despite a patch released by Microsoft, many users’ systems remain vulnerable due to not having updated their systems.