At least 5% of the issued Monero coins were mined by malicious software.

About 2% of the total hash rate of the Monero network comes from devices infected with malicious programs that mine this famous anonymous cryptocurrency, researchers of the cybersecurity company Palo Alto Networks found out. Experts analyzed 629,126 cases when devices got infected by hidden miners and found out that in 84% of cases such programs were aimed at mining Monero. Only tiny 7.5% of malicious programs mined bitcoin.

Since malware created for Monero mining mentions mining pools and hackers' Monero addresses, to which the mined coins were sent, the researchers were able to track most of the coins mined on the infected devices.

According to Palo Alto Networks, scammers with malware managed to extract about 798,613.33 XMRs worth about $108 million, which is about 5% of the Monero coins in circulation.

At the same time, it does not mean that cybercriminals managed to get rich on the spread of hidden miners. Only 1278 addresses out of 2341 detected could collect more than 0.01 XMR ($2.2) on their accounts. According to experts, many malicious programs are incorrectly programmed and do not bring their owners income. Only 16 addresses managed to earn more than 10 000 XMR ($1.35 million), and only 99 addresses collected more than 1000 XMR ($135 thousand).