CoinMiner Malware Uses EternalBlue to Force Infected PCs to Mine Cryptocurrency
Trend Micro researchers have reported that cyber criminals are now hijacking Windows PCs with a fileless malware that forces the computer to mine cryptocurrency.
The ‘CoinMiner’ malware exploits the EternalBlue flaw used by WannaCry and NotPetya. Microsoft has already released a patch for the vulnerability last March, but for computers that haven’t been updated, the malware will trigger a WMI script to download malware or mining software every three hours.
Trend Micro recommends that admins SMBv1 file-sharing protocol, and use the Microsoft tool that can trace WMI activity.