CoinMiner targets Windows systems, silently hijacking their CPU resources to mine cryptocurrency.

CoinMiner was designed for stealth and persistence, leveraging a vulnerability in Windows Server Message Block protocol using the NSA-attributed EternalBlue exploit to execute code remotely on a compromised system without user interaction.

CoinMiner is fileless malware that uses PowerShell and Windows Management Instrumentation (WMI), native components of Windows to perform malicious activity, making it difficult to detect using conventional anti-virus software.

Products sold by OpenVault are for entertainment and educational purposes only. Customer’s are purchasing a physical copy of digital artwork (Software box).