The security researchers from Red Canary have identified another threat to your software cryptocurrency wallet of choice, and it is hiding in a popular Windows activator. The fake KMSPico installers work as intended for Microsoft Windows or Office activation, but they can also lodge into several popular crypto wallets and grab their credentials. Since KMSPico is piggybacking on Microsoft's own Windows Key Management Services (KMS) option, the security firm claims that even IT departments use it, potentially introducing crypto wallet malware to the unsuspecting machines they activate Microsoft software on.
https://www.notebookcheck.net/Security-firm-flags-crypto-wallet-credentials-malware-tucked-into-a-hacky-KMSPico-Windows-activator.583263.0.html
The only "IT departments" using this are those not paying their Microsoft licensing! Apart from 'research purposes' it has no legitimacy. KMS is an easy system to use.