A previously undocumented malware family called KryptoCibule is mounting a three-pronged cryptocurrency-related attack. Researchers at ESET say the malware has been seen targeting victims mainly in the Czech Republic and Slovakia. It also uses legitimate software and platforms, including the Tor network and the BitTorrent protocol; the Transmission torrent client; Apache httpd; and the Buru SFTP server. The malware is also deploying remote-access trojan (RAT) functionality to establish backdoors to victims.
Source: https://threatpost.com/triple-threat-cryptocurrency-rat-mines-steals-harvests/158906/