Dissecting the Infrastructure Used in Web-based Cryptojacking: A Measurement Perspective

• URL: http://arxiv.org/abs/2408.03426v1
• Date: Tue, 6 Aug 2024 20:04:47 GMT
• Title: Dissecting the Infrastructure Used in Web-based Cryptojacking: A Measurement Perspective
• Authors: Ayodeji Adeniran, Kieran Human, David Mohaisen,
• Abstract summary: This paper conducts a comprehensive examination of the infrastructure supporting cryptojacking operations. A dataset of 887 websites, previously identified as cryptojacking sites, was compiled and analyzed to categorize the attacks and malicious activities observed. Various malware and illicit activities linked to these sites were identified, indicating the presence of unauthorized cryptocurrency mining via compromised sites.
• Score: 11.217261201018815
• License: http://creativecommons.org/licenses/by-nc-nd/4.0/
• Abstract: This paper conducts a comprehensive examination of the infrastructure supporting cryptojacking operations. The analysis elucidates the methodologies, frameworks, and technologies malicious entities employ to misuse computational resources for unauthorized cryptocurrency mining. The investigation focuses on identifying websites serving as platforms for cryptojacking activities. A dataset of 887 websites, previously identified as cryptojacking sites, was compiled and analyzed to categorize the attacks and malicious activities observed. The study further delves into the DNS IP addresses, registrars, and name servers associated with hosting these websites to understand their structure and components. Various malware and illicit activities linked to these sites were identified, indicating the presence of unauthorized cryptocurrency mining via compromised sites. The findings highlight the vulnerability of website infrastructures to cryptojacking.

Related papers

• Preliminary study on artificial intelligence methods for cybersecurity threat detection in computer networks based on raw data packets [34.82692226532414]
  In this paper, we investigate deep learning methodologies capable of detecting attacks in real-time directly from raw packet data within network traffic. We propose a novel approach where packets are stacked into windows and separately recognised, with a 2D image representation suitable for processing with computer vision models.
  arXiv  Detail & Related papers  (2024-07-24T15:04:00Z)
• Blockchain security for ransomware detection [0.0]
  This study uses the Lazy Predict library to automate machine learning (ML) on the UGRansome dataset. Key features such as timestamps, protocols, and financial data are used to predict anomalies as zero-day threats. Results demonstrate that ML can significantly improve cybersecurity in blockchain environments.
  arXiv  Detail & Related papers  (2024-07-23T22:04:41Z)
• Understanding crypter-as-a-service in a popular underground marketplace [51.328567400947435]
  Crypters are pieces of software whose main goal is to transform a target binary so it can avoid detection from Anti Viruses (AVs) applications. The crypter-as-a-service model has gained popularity, in response to the increased sophistication of detection mechanisms. This paper provides the first study on an online underground market dedicated to crypter-as-a-service.
  arXiv  Detail & Related papers  (2024-05-20T08:35:39Z)
• The Devil Behind the Mirror: Tracking the Campaigns of Cryptocurrency Abuses on the Dark Web [39.96427593096699]
  We identify 2,564 illicit sites with 1,189 illicit blockchain addresses, which account for 90.8 BTC in revenue. Our exploration suggests that illicit activities on the dark web have strong correlations, which can guide us to identify new illicit blockchain addresses and onions.
  arXiv  Detail & Related papers  (2024-01-09T16:35:25Z)
• Darknet Traffic Analysis A Systematic Literature Review [0.0]
  The objective of an anonymity tool is to protect the anonymity of its users through the implementation of strong encryption and obfuscation techniques. The strong anonymity feature also functions as a refuge for those involved in illicit activities who aim to avoid being traced on the network. This paper presents a comprehensive analysis of methods of darknet traffic using machine learning techniques to monitor and identify the traffic attacks inside the darknet.
  arXiv  Detail & Related papers  (2023-11-27T19:27:50Z)
• Understanding the Utilization of Cryptocurrency in the Metaverse and Security Implications [11.217261201018815]
  We present our results on analyzing and understanding the behavior and security of various metaverse platforms incorporating cryptocurrencies. We obtained the top metaverse coins with a capitalization of at least 25 million US dollars and the top metaverse domains for the coins. Our analysis highlights indicators of (in)security, in the correlation sense, with the files and other attributes that are potentially responsible for the malicious activities.
  arXiv  Detail & Related papers  (2023-11-26T17:23:35Z)
• Analyzing In-browser Cryptojacking [16.599890339599586]
  We analyze the static, dynamic, and economic aspects of in-browser cryptojacking. We apply machine learning techniques to distinguish cryptojacking scripts from benign and malicious JavaScript samples. We also build an analytical model to empirically evaluate the feasibility of cryptojacking as an alternative to online advertisement.
  arXiv  Detail & Related papers  (2023-04-26T02:46:42Z)
• An anomaly detection approach for backdoored neural networks: face recognition as a case study [77.92020418343022]
  We propose a novel backdoored network detection method based on the principle of anomaly detection. We test our method on a novel dataset of backdoored networks and report detectability results with perfect scores.
  arXiv  Detail & Related papers  (2022-08-22T12:14:13Z)
• Detecting Anomalous Cryptocurrency Transactions: an AML/CFT Application of Machine Learning-based Forensics [5.617291981476445]
  The paper analyzes a real-world dataset of Bitcoin transactions represented as a directed graph network through various techniques. It shows that the neural network types known as Graph Convolutional Networks (GCN) and Graph Attention Networks (GAT) are a promising AML/CFT solution.
  arXiv  Detail & Related papers  (2022-06-07T16:22:55Z)
• Timely Detection and Mitigation of Stealthy DDoS Attacks via IoT Networks [30.68108039722565]
  Internet of Things (IoT) devices are susceptible to being compromised and being part of a new type of stealthy Distributed Denial of Service (DDoS) attack, called Mongolian DDoS. This study proposes a novel anomaly-based Intrusion Detection System (IDS) that is capable of timely detecting and mitigating this emerging type of DDoS attacks.
  arXiv  Detail & Related papers  (2020-06-15T00:54:49Z)
• Survey of Network Intrusion Detection Methods from the Perspective of the Knowledge Discovery in Databases Process [63.75363908696257]
  We review the methods that have been applied to network data with the purpose of developing an intrusion detector. We discuss the techniques used for the capture, preparation and transformation of the data, as well as, the data mining and evaluation methods. As a result of this literature review, we investigate some open issues which will need to be considered for further research in the area of network security.
  arXiv  Detail & Related papers  (2020-01-27T11:21:05Z)

This list is automatically generated from the titles and abstracts of the papers in this site.

This site does not guarantee the quality of this site (including all information) and is not responsible for any consequences.