How sould I run a crypto miner in a victim machine? Dropper? Injector?

[3c2n90yt57489t3y8794]

Hello, how should a crypto miner be executed to be legit for AV?
Is it okay to drop on the disk the exe of an official cli miner executable, make it persistent (register or service), set it to minimum power (less cpu used, so silent in the background).
Maybe without crypting the miner payload because is a legit executable.
Any other idea is appreciated

 

[thecount]

what tool are you going to use for that ?

 

[3c2n90yt57489t3y8794]

maybe xmrig, generating monero is more anonymous imho, so you don't need to do coinjoin/mix

 

[qGodless]

persistent pe loader

 

[jaber69]

have source code for xmrig miner keeps undetected breaks down xmrig source code and add little try gitub xmrig and remove use custom builder like slient builder for xmrig xmr miner

 

[jaber69]

its easy build c# xmrig down loader n c# to downlaod xmrig from github as base64 covert into xmrig miner exclude from denfender and add to startup also check to see if antivirus are debugger detecting it from antivirus here if you ask i post source code can modified

 

[TOP G]

First don't spread the miner direct other than spread Private Loader Or private encrypted Loader after you getting you target number of bots let's say 1k bot's now here you can use the Loader to install the silent miner slowly if you spread it fast will get detected ...
so split the 1k bot into groups and spread every day 1 group lets say 50 bot every day this will keep you more silent .

and don't forget always to use Private Crypts if you really are investing in this game , i was have 300 bots mining and iam a maldev i crypt my stubs before and i know what iam telling you .

If you need any help let me know

 

[jaber69]

no its uses git-hub and bas64 to decode on the fly it add to defender becore coverting into exe denfender does not pick it up its old source code but works still