Products
Features
YouTube Video Summarizer
Summarize YouTube videos
Web & PDF Highlighter
Highlight web pages & PDFs
Chat with PDF
Ask any PDF questions with AI
Ask AI Clone
Chat with your highlights & memories
Audio Transcriber
Transcribe audio files to text
Glasp Reader
Read and highlight articles
Kindle Highlight Export
Export your Kindle highlights
Idea Hatch
Hatch ideas from your highlights
Integrations
Obsidian Plugin
Notion Integration
Pocket Integration
Instapaper Integration
Medium Integration
Readwise Integration
Snipd Integration
Hypothesis Integration
Apps & Extensions
Chrome Extension
Safari Extension
Edge Add-ons
Firefox Add-ons
iOS App
Android App
Discover
Discover
Ideas
Discover new ideas and insights
Articles
Curated articles and insights
Books
Book recommendations by great minds
Posts
Essays and notes from readers
Quotes
Inspiring quotes collection
Videos
Curated videos and summaries
Explore Glasp
Glasp Story
How we grew from 0 to 3 million users
Glasp Newsletter
Weekly insights and updates
Glasp Talk
Interview series with great minds
Glasp Blog
Latest news and articles
Glasp Use Cases
Learn how others use Glasp
Build & Support
Glasp API
Access Glasp's API for developers
MCP Connector
Connect Glasp to Claude & ChatGPT
Community
Glasp Reddit Community
Students
Student discount and benefits
FAQs
Frequently Asked Questions
AboutPricing
DashboardLog inSign up

Ransomware or Cryptominer? Rakhni can choose

July 10, 2018
by
The PC Security Channel
YouTube video player
Ransomware or Cryptominer? Rakhni can choose

TL;DR

A new variant of Rachni malware has emerged, infecting systems primarily through spam campaigns and choosing between ransomware and crypto mining depending on the system.

Transcript

a new rachni variant has surfaced that now chooses whether to mine or to ransom depending on your system so this is ransomware and crypto minor two and one double the trouble let's first talk about how this malware is distributed and which countries are affected mostly this is really nice in depo strum Kaspersky it kind of covers everything first o... Read More

Key Insights

  • 👶 The new Rachni variant targets specific countries, with Russia, Kazakhstan, Ukraine, Germany, and India being the most affected.
  • 👤 The malware is distributed through spam campaigns, luring users with fake documents.
  • 🎰 The malware employs extensive anti-virtual machine techniques, making analysis challenging.
  • ⚾ The malware chooses between ransomware and crypto mining based on the system's number of logical processors.
  • ❓ Fake certificates are used by the malware to appear legitimate.
  • ✅ The malware checks for and disables antivirus processes.
  • 📁 The ransomware variant encrypts files and demands payment in Bitcoin.

Install to Summarize YouTube Videos and Get Transcripts

Explore YouTube Video Summarizer or Get YouTube Transcript Extractor

Questions & Answers

Q: How is the new Rachni variant distributed and which countries are most affected?

The malware is distributed through spam campaigns, tricking users into opening fake documents. The countries most affected by the malware are Russia, Kazakhstan, Ukraine, Germany, and India.

Q: How does the malware evade analysis on virtual machines?

The malware has a comprehensive set of checks to detect virtual machines, including process names, machine names, and virtual machine tools. If any of these are found, the malware terminates without deploying the payload.

Q: What does the malware do once it successfully infects a system?

Depending on the system's configuration, the malware decides whether to install a ransomware variant or a crypto miner. It installs a fake certificate and encrypts files in the case of ransomware, or runs as a disguised process for crypto mining.

Q: How does the malware spread to other computers on the network?

The malware has a worm component that allows it to spread to other computers on the local network, increasing its reach and potential for income generation.

Summary & Key Takeaways

  • The new Rachni variant primarily targets countries like Russia, Kazakhstan, Ukraine, Germany, and India, while the impact on the United States is relatively lower.

  • The malware is distributed through spam campaigns, disguising itself as fake documents and Adobe Reader plugins.

  • The malware has strong anti-virtual machine capabilities, making it difficult for analysis, and it checks for various processes, machine names, and virtual machine tools to avoid execution.


Read in Other Languages (beta)

English

Share This Summary 📚

Summarize YouTube Videos and Get Video Transcripts with 1-Click

Download browser extensions on:

Try YouTube Summary with ChatGPT & Claude or YouTube Transcript Generator

Explore More Summaries from The PC Security Channel 📚

What Is Petya Ransomware and How Dangerous Is It? thumbnail
What Is Petya Ransomware and How Dangerous Is It?
The PC Security Channel
Google Chrome vs Microsoft Edge | Security Test thumbnail
Google Chrome vs Microsoft Edge | Security Test
The PC Security Channel
NordVPN Hacked! How secure is VPN Really? thumbnail
NordVPN Hacked! How secure is VPN Really?
The PC Security Channel
Security Talk 6: Bleeping Computer sued for a negative review and more thumbnail
Security Talk 6: Bleeping Computer sued for a negative review and more
The PC Security Channel
MGM & Defcon Venue hack: BlackCat Ransomware thumbnail
MGM & Defcon Venue hack: BlackCat Ransomware
The PC Security Channel
Avast vs Ransomware thumbnail
Avast vs Ransomware
The PC Security Channel

Summarize YouTube Videos and Get Video Transcripts with 1-Click

Download browser extensions on:

Try YouTube Summary with ChatGPT & Claude or YouTube Transcript Generator

Apps & Extensions

  • Chrome Extension
  • Safari Extension
  • Edge Add-ons
  • Firefox Add-ons
  • iOS App
  • Android App

Key Features

  • YouTube Video Summarizer
  • Web & PDF Summarizer
  • Web & PDF Highlighter
  • Chat with PDF
  • Ask AI Clone
  • Audio Transcriber
  • Glasp Reader
  • Kindle Highlight Export
  • Idea Hatch

Integrations

  • Obsidian Plugin
  • Notion Integration
  • Pocket Integration
  • Instapaper Integration
  • Medium Integration
  • Readwise Integration
  • Snipd Integration
  • Hypothesis Integration

More Features

  • APIs
  • MCP Connector
  • Blog & Post
  • Embed Links
  • Image Highlight
  • Personality Test
  • Quote Shots
  • Open Graph Checker

Company

  • About us
  • Our Story
  • Blog
  • Community
  • FAQs
  • Job Board
  • Newsletter
  • Pricing
Terms

•

Privacy

•

Guidelines

© 2026 Glasp Inc. All rights reserved.