Unveiling CryptoMiner 2024: How the Latest Cryptojacking Malware Operates
Tags
maec-delivery-vectors: Watering Hole
attack-pattern: Data Direct Javascript - T1059.007 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Powershell - T1059.001 Python - T1059.006 Software - T1592.002 Vulnerabilities - T1588.006 Powershell - T1086
Show in Graph
Common Information
Type Value
UUID 7cb8928c-764b-4f9d-a28e-154fb2f9fae2
Fingerprint 94c11db2a91d2fc5
Analysis status DONE
Considered CTI value 0
Text language
Published Sept. 14, 2024, 12:31 p.m.
Added to db Sept. 14, 2024, 3:16 p.m.
Last updated Nov. 17, 2024, 4:47 p.m.
Headline Unveiling CryptoMiner 2024: How the Latest Cryptojacking Malware Operates
Title Unveiling CryptoMiner 2024: How the Latest Cryptojacking Malware Operates
Detected Hints/Tags/Attributes 43/2/15
Source URLs
Redirection Url
Details Source https://medium.com/@vddivekar1003/unveiling-cryptominer-2024-how-the-latest-cryptojacking-malware-operates-ae96bb54bb5f?source=rss------cybersecurity-5
URL Provider
Details Provider Source level domain
Details medium.com medium.com
Attributes
Details Type #Events CTI Value
Details Domain 3 
maliciousdomain.com
Details Domain 49 
xhr.open
Details Domain 14 
installer.sh
Details Domain 1 
miningpool.com
Details Domain 98 
requests.post
Details Domain 1 
c2server.com
Details File 55 
payload.exe
Details File 3 
c:\windows\temp\payload.exe
Details File 27 
exploit.js
Details File 7 
platform.pl
Details Url 1 
http://maliciousdomain.com/payload.exe
Details Url 1 
http://maliciousdomain.com/exploit.js
Details Url 1 
http://maliciousdomain.com/installer.sh
Details Url 1 
http://maliciousdomain.com/cryptominer
Details Url 1 
http://c2server.com/api