Analyzing In-browser Cryptojacking
Muhammad Saad, David Mohaisen
TL;DR
This paper provides a comprehensive analysis of in-browser cryptojacking, including static, dynamic, and economic aspects, and proposes countermeasures to mitigate such attacks.
Contribution
It introduces a systematic approach combining static, dynamic, and economic analysis of cryptojacking, and develops machine learning models with high accuracy for detection.
Findings
Cryptojacking scripts can be distinguished from benign scripts with 100% accuracy.
Cryptojacking has a significant impact on CPU and battery resources.
Economically, cryptojacking is shown to be infeasible as an alternative to online advertising.
Abstract
Cryptojacking is the permissionless use of a target device to covertly mine cryptocurrencies. With cryptojacking, attackers use malicious JavaScript codes to force web browsers into solving proof-of-work puzzles, thus making money by exploiting the resources of the website visitors. To understand and counter such attacks, we systematically analyze the static, dynamic, and economic aspects of in-browser cryptojacking. For static analysis, we perform content, currency, and code-based categorization of cryptojacking samples to 1) measure their distribution across websites, 2) highlight their platform affinities, and 3) study their code complexities. We apply machine learning techniques to distinguish cryptojacking scripts from benign and malicious JavaScript samples with 100\% accuracy. For dynamic analysis, we analyze the effect of cryptojacking on critical system resources, such as CPU…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsSpam and Phishing Detection · Advanced Malware Detection Techniques · Internet Traffic Analysis and Secure E-voting