The cybercriminal group is so named after one of the domains used by it to host their malware.
The hackers blasted in through the weak password of the SQL Servers and then released the crypto-miner on target systems, according to Tencent Security.
“MrbMiner mining Trojan will carefully hide itself to avoid being discovered by the administrator,” the company said in a blog post earlier this month.
“The Trojan will monitor the task manager process. When the user starts the ‘task manager’ process to view the system, the mining process will immediately exit and delete related files,” it added.
Microsoft was yet to comment on the Tencent report.
Tencent security experts also discovered the Linux system and ARM system-based mining Trojan files on the FTP File Transfer Protocol) server of the MrbMiner mining Trojan, speculating that MrbMiner has cross-platform attack capabilities.
According to the current threat intelligence data, MrbMiner mining Trojan has controlled thousands of servers for network mining, Tencent Security added.
RBI Governor highlights five key areas that will determine India’s growth in the post-COVID world
Apple Watch Series 6, iPad Air, iPad 8, and Apple One will be available in India — here’s how much they cost
Amid India-China standoff, Tencent is back with an investment in Flipkart
India’s surging COVID-19 infections is testing the health infra once again — beds added during lockdown aren’t enough
Get your CompTIA A+, Network+ White Hat-Hacker, Certified Web Intelligence Analyst and more starting at $35 a month. Click here for more details.