Sodinokibi Crypto- Ransonware Changes from Bitcoin to Monero

Sodinokibi crypto-ransomware was discovered to switch from Bitcoin (BTC) to Monero (XMR), striving to protect the hackers’ identities. By description, ransomware is malware that encrypts user data and asks for a ransom to restore access to it. In the wake of COVID-19, hackers are using this strategy to steal from investors.

Based on an April 11 report compiled by BleepingComputer, a cybersecurity news outlet, using Monero will become more challenging for law enforcers to track ransom payments to the hackers behind Sodinokibi. According to that report, Europol strategy analyst Jerek Jakubcek highlighted in a February webinar how anon coins influence legal investigations:

“Since the suspect used a combination of TOR and privacy coins, we could not trace the funds. We could not trace the IP addresses. Which means, we hit the end of the road. Whatever happened on the Bitcoin blockchain was visible, and that’s why we were able to get reasonably far. But with Monero blockchain, that was the point where the investigation has ended.”


This incident appears to be a perfect example of one of the many cases that have happened previously where the criminal moves fund from Bitcoin or Ethereum to Monero.

‘Bitcoin Will Be Removed’

The hackers behind the Sodinokibi ransomware even published on a hacker and malware forum. They wrote a post stating that they had switched to Monero, according to the report. In that post, the hackers openly said that their move was influenced by the attempts to make it harder for law enforcement to track the money. That announcement read:

“In this regard, we inform you that after a while, the BTC will be removed as a payment method. Victims need to begin to understand the new cryptocurrency, as well as other interested parties who work with us.”

Notably, the Sodinokibi payment website is already discouraging people from paying with Bitcoin by adding the price in the currency by up to 10% when compared to the Monero price. The group also seeks partners to get the data access back for the users at discounted rates to enable them to add a surcharge to it.

Brett Callow, a threat analyst, working at cybersecurity firm Emsisoft, told reporters that anon coin use for payments of ransomware ransoms is less common than most people would expect. He also believes that several other ransomware groups might follow the same strategy:

“While there are some instances of demands being made in alternative currencies, this will be the first time that a major ransomware group has settled on a currency other than

Bitcoin. Like other businesses, criminal enterprises adopt strategies that have been proven to work and, accordingly, if this switch proves successful for REvil, we’d expect to see other groups begin to experiment with demands in currencies other than bitcoin.

Ransom Attacks Are Increasing

Many analysts now believe that ransomware developed and distributed by well-organized cybercrime entities and groups are the biggest cybersecurity threats currently. In that context, a UK-based firm recently paid hackers around $2.3 million in bitcoin after the Sodinokibi ransomware infected it.


Most investors and analysts are afraid that the current coronavirus pandemic will increase the consequences of successful attacks on healthcare providers. Microsoft recently told hospitals to enhance their security infrastructure to avoid falling victim to these criminals’ ransomware attacks.

Crypto Holders Targeted By COVID-19 Scammers, FBI Warns

The Federal Bureau of Investigations (FBI) said that it expects an increase in the number of crypto-related scams connected to the coronavirus health crisis. The FBI warned in an April 13 press release that the expected surge would only be fueled by more people joining the crypto industry.

The elderly are the easiest targets. Nonetheless, the FBI believes that people of all ages could be victimized. The press release reads:

“There are not only numerous virtual asset service providers online but also thousands of cryptocurrency kiosks located throughout the world which are exploited by criminals to facilitate their schemes. Many traditional financial crimes and money laundering schemes are now orchestrated via cryptocurrencies.”

The Agency warned Americans to be on the lookout for work from home scams, blackmail attempts, fake coronavirus treatments or preventive measures, and some of the traditional investment scams. The most common are emails or letters in which the author issues threats of infecting the victim or their family with COVID-19 unless a payment is made to a provided Bitcoin wallet address.

Some criminals have tried to steal crypto by tricking people into thinking that they are sending Bitcoin donations to the World Health Organization (WHO) to combat the pandemic. The FBI advises people to verify the authenticity of charities before sending their contributions.


Sodinokibi crypto-ransomware has reportedly switched from Bitcoin (BTC) to Monero (XMR), striving to protect hackers’ identities from the authoritities.

About the author

Wanguba Muriuki is an Editor at Large for E-Crypto News and author of the book- "The Exploitative Intrigues of Cryptocurrency Scams Explained." He is also a passionate creator who sees every aspect of life from a written perspective. He loves Blockchain, Cryptocurrency, Technology, and Traveling. He is a widely experienced creative and technical writer. Everything and everyone is describable. The best description is written.

Related Posts

E-Crypto News Executive Interviews

Automated trading with HaasBot Crypto Trading Bots

Crypto Scams

Millions in Cryptocurrency Stolen by Scammers in the Last Month According to Tenable Research
November 24, 2021
Behind The Scenes: How this Crypto Community Responded to + $50m Hack
October 18, 2021
Crypto Scams
Crypto Scams Still Persistent In 2021, SEC Warns About Red Flags To Watch
September 9, 2021
Poly Network
Here’s How Hackers Stole Over $600 million in the Poly Network Attack
August 12, 2021
The World’s Most Infamous Crypto Hacks and Scams
July 31, 2021

Blockchain/Cryptocurrency Questions and Answers

Crypto casinos
How Does Bitcoin Casino Work + 2021 Beginner’s Guide
November 8, 2021
How to Buy and Sell Cryptocurrency
November 8, 2021
What Are Bitcoin Futures And How Will They Work In 2022?
November 4, 2021
The Unconventional Guide to Ethereum
October 28, 2021
ICo Presale
The Science Behind ICO Presales…
October 14, 2021

CryptoCurrencyUSDChange 1hChange 24hChange 7d
Bitcoin53,658 0.18 % 5.39 % 8.90 %
Ethereum4,236.8 0.00 % 6.67 % 6.18 %
Binance Coin596.09 0.17 % 4.14 % 6.59 %
Tether0.9986 0.03 % 0.08 % 0.23 %
Solana213.26 0.67 % 8.63 % 1.65 %
Cardano1.570 0.27 % 8.43 % 6.62 %
XRP0.9275 0.06 % 4.86 % 11.03 %
USD Coin1.000 0.14 % 0.20 % 0.17 %
Polkadot30.87 2.19 % 17.29 % 10.73 %
Dogecoin0.2215 0.68 % 1.42 % 7.23 %

Bitcoin (BTC) $ 53,607.00
Ethereum (ETH) $ 4,236.07
Binance Coin (BNB) $ 594.89
Tether (USDT) $ 1.00
Solana (SOL) $ 214.02
Cardano (ADA) $ 1.57
XRP (XRP) $ 0.927736
USD Coin (USDC) $ 0.999723
Polkadot (DOT) $ 33.75
Dogecoin (DOGE) $ 0.200748