CCleaner distributed malware infected software on Windows

CCleaner a popular software for file clean-up and performance optimization unknowingly distributed its malware infected Windows app for a month.

Piriform, the firm behind “CCleaner,” has announced in their official post that, 32-bit versions of CCleaner 5.33.6162 and CCleaner Cloud 1.07.3191 distributed malicious software, between August 15 and September 12. The firm rolled out an automatic update to prevent any further downloads of these versions. The malware was spotted by Cisco Talos.

CCleaner Software for Windows Infected
CCleaner distributed malware infected software on Windows

The malware distributed with CCleaner sent various encrypted information from affected PCs to attackers, including PC names, installed and running software, Windows updates and MAC addresses of network adapters.

These exploits also allowed affected PCs to be remotely controlled, with the capability to download and install additional binaries. However, it has been noted that execution of the second stage is yet to be seen, meaning no additional software should have installed to devices.

Piriform is investigating into the origin of the attack and taking action to prevent future incidents. In the meantime, the company recommends potentially affected users update to the latest version of the program as soon as possible.

Piriform is part of Avast which is a security giant with products spanning security, privacy, and performance-enhancing applications.