The new variant of the Lucifer malware performs cryptomining by dropping XMRig to mine for Monero cryptocurrency, connects to C&C servers and is self-propagating via credential brute-forcing and exploiting multiple vulnerabilities, including DoublePulsar, EternalBlue, and EternalRomance against vulnerable devices.



