This only applies to "previous" Versions at the time that PM was downloaded from the Pale Moon Archive, and not if you downloaded at that time the current PM Version.
- Pale Moon says hackers added malware to older browser versions
... => Which makes me wondering if the Trojan has been known and analyzed already in March 2018, why the Infection did not get detected on Users' PC's shorty after, and quickly linked back to the PM Archive...?The hack went undetected for more than 18 months, according to a breach notice published today by M.C. Straver, the Pale Moon lead developer.
Going after cryptocurrency users
Users who downloaded files from the archive server are advised to scan their systems or wipe and reinstalls their workstations, to be on the safe side.
The Win32/ClipBanker.DY trojan is a what security researchers call a clipboard hijacker. After it infects victims it sits in an operating system's background, watching the OS clipboard. This particular variant would watch for text snippets that looked like Bitcoin addresses, and would replace them with a pre-configured address, in the hopes of hijacking transactions towards a hacker's own wallet.
The trojan had been previously analyzed in an ESET report dated March 2018. Other versions of this same malware family also had support for replacing Monero addresses.