Efimer Trojan Poses as Torrents to Steal Cryptocurrency

27 Aug 2025

Researchers at Kaspersky have identified a new cyber threat disguised as torrents, with the notorious Efimer trojan at its core. This malicious software is actively attempting to infiltrate users' cryptocurrency wallets by disguising itself as legitimate torrent downloads. The criminals behind Efimer exploit inadequately protected websites, particularly those powered by WordPress, to distribute these dangerous files.

These files often present themselves as newly released movies. However, once downloaded, the torrent contains a malicious file, camouflaged as a media player executable named xmpeg_player.exe. This clever mimicry allows the trojan to trick users into launching the program, unleashing its harmful payload.

Phishing Campaigns Targeting Companies

In addition to individual users, companies have also become targets of this cyberattack. The perpetrators dispatch phishing emails filled with false accusations of copyright infringement. Included in these emails is an archive file claiming to contain details about these supposed violations. In reality, however, it harbors the Efimer trojan, ready to execute once opened.

Upon activation, Efimer begins searching through the victim's device for strings that resemble seed phrases, which are critical for accessing cryptocurrency wallets. The trojan manipulates these transactions, redirecting funds to the attackers' own cryptocurrency addresses instead.

Global Reach and Growing Threat

The impact of Efimer has already been felt on an international scale, with Kaspersky reporting victims in Russia, India, Spain, Italy, and Germany. The number of affected users continues to rise as the distribution of this malware spreads. This global reach underscores the need for increased vigilance and robust cybersecurity measures.

This incident is reminiscent of previous attacks, such as SparkKitty, which targeted iOS and Android platforms in Southeast Asia and China to similarly pilfer cryptocurrency from unsuspecting users. These threats underline the ongoing efforts by cybercriminals to exploit digital financial systems, highlighting the importance of security awareness and proactive measures to safeguard against such activities.

Update: 27 Aug 2025

Top charts for Desktop Windows

uTorrent

uTorrent

Latest update uTorrent download for free for Windows PC or Android mobile

5
1032 reviews
7508546
downloads
Zona

Zona

Latest update Zona download for free for Windows PC or Android mobile

4
614 reviews
1735230
downloads
WinRAR

WinRAR

Streamline file management with fast compression, secure your documents, and save space.

5
735 reviews
746697
downloads
Minecraft

Minecraft

Shape environments, explore vast worlds, and survive against monsters with endless creativity.

5
750 reviews
495215
downloads

News and reviews for Desktop Windows

Visio 2021 Professional Now $9.97 Until February 8

Visio 2021 Professional Now $9.97 Until February 8

Microsoft offers Visio 2021 Professional for $9.97, down from $249, with added templates, until February 8.

Read more
Code Vein Offers Stylish Combat, Discounted Editions

Code Vein Offers Stylish Combat, Discounted Editions

Code Vein captivates with anime-style combat and offers discounted editions. Fast-paced action meets fun builds in this cult classic.

Read more
Microsoft Phases Out RC4 in Kerberos for Windows Security

Microsoft Phases Out RC4 in Kerberos for Windows Security

Microsoft to eliminate RC4 in Kerberos by July 2026, enhancing Windows security.

Read more
Highguard Faces Criticism but Shows Potential for Growth

Highguard Faces Criticism but Shows Potential for Growth

Highguard, launched with controversy, holds potential despite poor reviews. Offering genre innovation, it aims to evolve against negative feedback.

Read more
PS2Recomp Boosts Native PS2 Games with Recompilation

PS2Recomp Boosts Native PS2 Games with Recompilation

PS2Recomp, a new tool, promises enhanced native PS2 game ports, sparking interest among developers for PC platforms.

Read more
NVIDIA Introduces RTX Remix Logic for Classic Game Mods

NVIDIA Introduces RTX Remix Logic for Classic Game Mods

NVIDIA's RTX Remix Logic, launched on 2026-01-27, enables dynamic modding of classic PC games with a no-code node-based interface.

Read more
Windows 11 Update KB5074109 Affects Legacy Modems

Windows 11 Update KB5074109 Affects Legacy Modems

The Windows 11 update KB5074109 disrupts modems by removing several legacy drivers, causing connectivity issues for select users.

Read more
Anytype Replaces Notion, Obsidian, and Todoist for Unified Workflow

Anytype Replaces Notion, Obsidian, and Todoist for Unified Workflow

Anytype consolidates Notion, Obsidian, and Todoist functions, reducing context-switching and improving workflow efficiency.

Read more
ReBlade: Cyberpunk Roguelike Announced by ChillyRoom

ReBlade: Cyberpunk Roguelike Announced by ChillyRoom

ReBlade from ChillyRoom and Spiral Up Games announced for PC: cyberpunk roguelike offers high-speed action in a dystopian setting.

Read more
Artorias Battles Elden Ring Bosses in New Video Showcase

Artorias Battles Elden Ring Bosses in New Video Showcase

Artorias from Dark Souls faces Elden Ring bosses, demonstrating impressive skills in Fights' YouTube video.

Read more
All article