Common Information
| Type | Value |
|---|---|
| Value |
xmrig |
| Category | Tool |
| Type | Malpedia |
| Misp Type | Cluster |
| Description | According to PCrisk, XMRIG is a completely legitimate open-source application that utilizes system CPUs to mine Monero cryptocurrency. Unfortunately, criminals generate revenue by infiltrating this app into systems without users' consent. This deceptive marketing method is called "bundling". In most cases, "bundling" is used to infiltrate several potentially unwanted programs (PUAs) at once. So, there is a high probability that XMRIG Virus came with a number of adware-type applications that deliver intrusive ads and gather sensitive information. |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2024-09-27 | 2 | 新的恶意软件活动在 Docker 和 Kubernetes 中挖掘加密货币-安全客 - 安全资讯平台 | ||
| Details | Website | 2024-09-26 | 2 | TeamTNT Hackers Attacking VPS Servers Running CentOS | ||
| Details | Website | 2024-09-26 | 5 | Intelligence Insights: September 2024 | ||
| Details | Website | 2024-09-23 | 17 | Unmasking Malware Through IP Tracking: How Attackers Exploit IP and Geo-Location Data to Target Your Network | ||
| Details | Website | 2024-09-23 | 386 | RST TI Report Digest: 23 Sep 2024 | ||
| Details | Website | 2024-09-23 | 15 | Supershell Backdoor IOCs - SEC-1275-1 | ||
| Details | Website | 2024-09-23 | 78 | Threat Actors leverage Docker Swarm and Kubernetes to mine cryptocurrency at scale | Datadog Security Labs | ||
| Details | Website | 2024-09-20 | 10 | HackTheBox Sherlock Writeup: Ore | ||
| Details | Website | 2024-09-19 | 1 | Hackers Using Supershell Malware To Attack Linux SSH Servers | ||
| Details | Website | 2024-09-19 | 0 | Hackers deliver popular crypto-miner through malicious email auto replies, researchers say | ||
| Details | Website | 2024-09-13 | 4 | Weekly Cyber Threat Intelligence Summary | ||
| Details | Website | 2024-09-13 | 1 | Selenium Grid 配置不当引发加密货币挖矿与代理劫持-安全客 - 安全资讯平台 | ||
| Details | Website | 2024-09-12 | 1 | Exposed Selenium Grid Servers Targeted for Crypto Mining and Proxyjacking | ||
| Details | Website | 2024-09-12 | 1 | Exposed Selenium Grid Servers Targeted for Crypto Mining and Proxyjacking - RedPacket Security | ||
| Details | Website | 2024-09-12 | 41 | From Automation to Exploitation: The Growing Misuse of Selenium Grid for Cryptomining and Proxyjacking | ||
| Details | Website | 2024-09-12 | 25 | Hygiene, Hygiene, Hygiene! [Guest Diary] - SANS Internet Storm Center | ||
| Details | Website | 2024-09-12 | 2 | Hackers Proxyjack & Cryptomine Selenium Grid Servers | ||
| Details | Website | 2024-09-11 | 2 | Hold – Verify – Execute: Rise of malicious POCs targeting security researchers - Cybersecurity Insiders | ||
| Details | Website | 2024-09-11 | 17 | 리눅스 SSH 서버를 대상으로 유포 중인 SuperShell 악성코드 - ASEC | ||
| Details | Website | 2024-09-10 | 17 | Supershell Malware Being Distributed to Linux SSH Servers - ASEC | ||
| Details | Website | 2024-09-09 | 1199 | RST TI Report Digest: 09 Sep 2024 | ||
| Details | Website | 2024-09-07 | 3 | Unmasking PackXOR: The FIN7 Packer Exposed | ||
| Details | Website | 2024-09-06 | 4 | Researchers Unpacked AvNeutralizer EDR Killer Used By FIN7 Group | ||
| Details | Website | 2024-09-05 | 127 | Threat Actors Exploit GeoServer Vulnerability CVE-2024-36401 | FortiGuard Labs | ||
| Details | Website | 2024-09-04 | 9 | Hold – Verify – Execute: Rise of Malicious POCs Targeting Security Researchers | SonicWall |