SilentCryptoMiner Versions Save

• Added language localizer to allow translations of all controls through XML
• Added Swedish translation
• Changed "Save Path" to show "Program Files" for clarity when "Run as System" and "Run as Administrator" are both enabled
• Moved AMSI bypass from the RunPE module into the miner to bypass Assembly.Load detections
• Obfuscated all remaining strings inside all files
• Remade manifest to reduce detections
• Added new advanced option to disable built-in obfuscations
• Updated rootkit to reduce detections and improve compatibility and reliability
• Improved process hollowing implementation

• Removed Panthera (Panthera) algorithm due to reported collateral issues
• Updated ETH miner CUDA and OpenCL implementations
• Added ETH miner OpenCL fallback for Nvidia cards if CUDA is unavailable
• Fixed connections to some ghostrider pools
• Fixed ETH first web panel configuration and first "Remote Configuration" pool switching
• Fixed Clover platform support
• Fixed non-intended administrator permission request during normal user first installation start
• Fixed brief powershell window popup on administrator installation startups with "Run as System" disabled

Hotfix 08-06-2022:

• Added bypass for new RunPE AMSI detection

Hotfix 15-06-2022:

• Fixed AMSI bypass for some versions of the .NET framework

• Added new Ubqhash (ubqhash) algorithm
• Added new CryptoNight-GPU (cn/gpu) algorithm
• Added new Panthera (panthera) algorithm
• Added new AstroBWT V2 (astrobwt/v2) algorithm
• Added new option "Stealth on Fullscreen" to pause the miner when Windows reports a fullscreen program to be open on the user running the miner
• Added executable name to the web panel "Active Window" reporting
• Added executable name reporting of the found "Stealth Targets" during "Stealth" to the web panel
• Added UTF8 encoding to GPU and CPU name web panel reporting
• Added C# shellcode injector for in-memory watchdog injection without an intermediary "Shellcode Loader"
• Changed Task Scheduler task creation from schtasks command to powershell to greatly increase customizability of the task
• Changed Task Scheduler task conditions and settings to the most optimal for the miner
• Changed Task Scheduler task to start at system startup instead of any user login when "Run as System" is enabled
• Fixed Task Scheduler task on some systems when install path contains spaces
• Replaced many commands with obfuscated powershell versions
• Reworked miner installation code and methods
• Reworked miner checking loops to ensure correct web panel status reporting and better performance
• Added support for reporting to the web panel when running at least two miners of the same miner type
• Improved watchdog miner restoration
• Updated the rootkit

• Changed miner to install into Program Files if installed with "Run as System" enabled
• Changed miner to instead start from the Task Scheduler instead of CMD immediately after install if running as administrator
• Changed Icon preview to reload after loading a save
• Reworked "Remote Configuration" and web panel API calls for better performance, flexibility and less overhead
• Changed miner to immediately start reporting to the web panel on start
• Added new "Starting" miner status when first reporting to the web panel
• Added new miner version reporting to the web panel
• Added new currently active window reporting to the web panel
• Added new miner run time reporting to the web panel
• Inverted some advanced options for better clarity

• Changed ETH miner to force desired CUDA settings, can increase hashrate on newer drivers/GPUs
• Changed ETH miner to not mine on integrated Intel GPUs, meaning CPUs with a GPU in them since they are not profitable and can cause lag
• Reworked manifest system to reduce overall detections
• Reduced C# detections greatly, especially helpful for those with "Shellcode Loader" disabled
• Changed "Entry Name" check to reallow backslashes for Task Scheduler subsections
• Improved "Disable Windows Update" function with better persistence and effectiveness
• Added advanced option to disable the miner from running after install so that it will only run on startup

• Added option to disable Windows Update which stops updates from being found and installed
• Changed Watchdog to now run only in memory with no file dropped
• Added new Advanced Options form to make space for more options
• Added advanced option to use old Watchdog behaviour and start as a dropped file instead of only in memory
• Added advanced option to not overwrite old installed miners if desired
• Changed HTTP library to always follow redirects
• Decreased miner stealth and idle check loop timer for faster checks
• Moved process hollowing code back into DLL
• Added custom user level manifest
• Reduced some antivirus detections, mainly in C# code
• Cleaned up builder and miner code
• Fixed uninstaller
• Removed duplicate disable sleep command
• Updated miner

Update was too big to be a minor update (2.2.2) so it became a major update (2.3.0)

Hotfix 14-04-2022:

• Changed ETH miner to force desired CUDA settings, increase hashrate on newer drivers/GPUs

• Added morphing to Windows Defender exclusion command to avoid static detection
• Added option to run/install the miner as System instead of always doing so by default
• Changed rootkit target program from nslookup.exe to dialer.exe and modified rootkit workflow
• Fixed XMR difficulty negotiation
• Fixed XMR worker name variable replacement
• Fixed XMR CUDA library locator for unicode characters
• Fixed missing builder events

• Added custom system-wide idle detection that replaces the previous dedicated Windows API idle detection, this allows the miner to be run as "System"
• Changed miner to be installed with the "System" user when run as administrator which means that it will now run when the computer is started with any user
• Added field to customize the entry name displayed in the startup registry and Task Scheduler
• Added option to automatically delete the original miner file after installation finishes
• Added option to disable sleep and hibernation on the computer
• Added option to block websites/domains from being able to be accessed by using the hosts file
• Fixed computer name and username convertions when containing non-ASCII characters
• Changed default library and installation locations to avoid path access restrictions by some programs
• Fixed XMR miner GPU CUDA libraries
• Fixed missing Watchdog Loader obfuscation step when using "Pause for Obfuscation"
• Improved GhostRider algorithm implementation
• Changed ETH miner idle sleeping
• Fixed minor builder bugs
• Cleaned up form elements
• Added icon file error checking
• Updated compilers
• Updated miners

• Added the Ghost Rider algorithm, mainly used for the coin Raptoreum
• Added JSON generator inside builder for easier "Remote Configuration" and web panel configuration creation
• Added rootkit helper signatures to relevant files to ensure that files and processes are not hidden from the miner processes
• Added new "Out of free VRAM" status for the web panel if no GPU has enough current free VRAM to mine the selected coin
• Added "remote-config" and "api-endpoint" configuration options for the "Remote Configuration" and web panel configurations
• Changed save/load form serialization to also save checkbox and toggle text states
• Changed default "Startup" "Filename" due to certain anticheats blocking default "Startup" folder access
• Changed "Shellcode Loader" code and overall flow
• Improved rootkit stability and stealth
• Cleaned up messy and unclear form control names, breaks old save compatibility

• Removed Hide File option due to it restricting the file from being written to, thus enabling it to cause unwanted behaviour and bugs
• Fixed possible bug where the random encryption keys could be generated with illegal characters
• Fixed builder bug where it didn't clear the miner set for the Watchdog between builds
• Fixed Monero icon