Tuesday, June 24, 2025
  • Login
Whats Current In
Advertisement
  • Cyber Security
No Result
View All Result
  • Cyber Security
No Result
View All Result
Whats Current In
No Result
View All Result
Home Cyber Security

Hamster Kombat’s 250 million players targeted in malware attacks

wcisrvadm by wcisrvadm
July 24, 2024
in Cyber Security
0
Hamster Kombat’s 250 million players targeted in malware attacks
0
SHARES
0
VIEWS
Share on FacebookShare on Twitter

This post was originally published on this site

Hamster Kombat

Threat actors are taking advantage of the massive popularity of the Hamster Kombat game, targeting players with fake Android and Windows software that install spyware and information-stealing malware.

Hamster Kombat is a clicker mobile game for Android where players earn fictional currency by completing simple tasks, primarily by tapping the screen.

Launched in March 2024, the game has already garnered significant interest due to the potential to earn a new TON-based crypto token tied to it, scheduled to be introduced later this year.

Hamster Kombat is Telegram-based, requiring players to join its channel on Telegram, scan a QR code provided by a bot, and then launch a web app on their Android devices to play it.

The game has seen massive growth since its launch, with over 250 million players and 53 million users on it’s Telegram channel.

The Hamster Kombat app interface
The Hamster Kombat app interface
Source: BleepingComputer

Targeting the “hamsters”

Although a clone app on Google Play named ‘Hamster Kombat – Earn Crypto,’ the genuine project isn’t available on any official channels but Telegram, making those interested in joining easy prey for cybercriminals and scammers.

ESET has found multiple cases where threat actors use the Hamster Kombat game as bait, even extending to other platforms beyond Android, like Windows.

The first risk lies in Telegram, where various Hamster-branded channels distribute Android malware to users searching for the official channel.

ESET highlights a channel named ‘HAMSTER EASY’ that distributes the Ratel Android spyware as an APK file (‘Hamster.apk’) that does not contain any legitimate functionality.

Malicious APK distributed on Telegram
Malicious APK distributed on Telegram
Source: ESET

Ratel can intercept SMS and device notifications, but it’s used mainly to subscribe the victim to premium services, from which the malware operators get a cut.

The malware hides notifications from 200 apps, so the victim never realizes they have subscribed to various premium services.

Another malicious campaign uses fake websites like ‘hamsterkombat-ua.pro’ and ‘hamsterkombat-win.pro’ that claim to offer the game but instead redirect visitors to advertisements so they can generate money.

Fake sites mimicking the Google Play interface
Fake sites mimicking the Google Play interface
Source: ESET

ESET notes that Hamster Kombat-branded scams also target Windows users, with Lumma Stealer being distributed through malicious GitHub repositories claiming to offer farming bots for the cryptocurrency game.

“The GitHub repositories we found either had the malware available directly in the release files, or contained links to download it from external file-sharing services,” reads ESET’s report.

“We identified three different versions of Lumma Stealer cryptors lurking within the repositories: C++ applications, Go applications, and Python applications.”

Of the three, the Python version was prepared with better care, even featuring a graphical installer to further the deception until the end of the malware installation process.

Fake Hamster Kombat farmer bot spreading Lumma Stealer
Fake Hamster Kombat farmer bot spreading Lumma Stealer
Source: ESET

Note of caution

If you’re interested in the Hamster Kombat project, you should get it straight from its official channel on Telegram or visit the project’s website.

However, it should be noted that even the genuine game itself has not been scrutinized for its security, as it is not on Google Play or the App Store. The project’s whitepaper hasn’t been published yet, and the token launch promises remain unfulfilled.

It should also be noted that the clone app on Google Play has several reports claiming that it scams users asking for withdrawal fees and never performs the money withdrawal.

People should treat any Hamster Kombat copycat apps distributed via any platform or method with distrust, as even if not all contain malware, they’re almost definitely scams.

Decrypt.co has compiled a list of cryptocurrency gaming projects that launched tokens in 2024 and which have a functional system in place, so if you’re interested in this concept, you may want to consider investing your time on those instead.


Previous Post

Windows 10 KB5040525 fixes WDAC issues causing app failures, memory leak

Next Post

Chinese hackers deploy new Macma macOS backdoor version

wcisrvadm

wcisrvadm

Next Post
Chinese hackers deploy new Macma macOS backdoor version

Chinese hackers deploy new Macma macOS backdoor version

Recent Posts

  • New FileFix attack weaponizes Windows File Explorer for stealthy commands
  • Researchers Find Way to Shut Down Cryptominer Campaigns Using Bad Shares and XMRogue
  • How Today’s Pentest Models Compare and Why Continuous Wins
  • How the US Military Is Redefining Zero Trust
  • US House bans WhatsApp on staff devices over security concerns

Recent Comments

No comments to show.

Archives

  • June 2025
  • May 2025
  • April 2025
  • March 2025
  • February 2025
  • January 2025
  • December 2024
  • November 2024
  • October 2024
  • September 2024
  • August 2024
  • July 2024
  • June 2024

Categories

  • Cyber Security

Browse by Category

  • Cyber Security
  • About
  • Advertise
  • Privacy & Policy
  • Contact

© 2025 JNews - Premium WordPress news & magazine theme by Jegtheme.

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In
No Result
View All Result
  • Cyber Security

© 2025 JNews - Premium WordPress news & magazine theme by Jegtheme.