Inspired by the successful deployment of the NSA-attributed exploit EternalBlue against Windows systems, EternalMiner was the first instance of malware leveraging vulnerabilities in Samba’s implementation of the Server Message Block (SMB) protocol (CVE-2017-7494) to target Linux systems.

CopyMiner builds off the EternalMiner campaign by adding a persistent Tsunami backdoor to its payload and implementing a more robust command and control server infrastructure, giving you better control over compromised systems.


Exploits the SambaCry/EternalRed to target Linux servers.

Installs a persistent Tsunami backdoor with the ability to install updates.

A CPUMiner for multithreaded Monero mining.

Patches the SMB vulnerability to prevent competition from other actors.

Products sold by OpenVault are for entertainment and educational purposes only. Customer’s are purchasing a physical copy of digital artwork (Software box).

Add To Cart