Disconnect infected hosts from the network to prevent lateral movement.

Exploitation of known vulnerabilities (e.g., EternalBlue, CVE-2019-9081 ) or credential brute-forcing. Capabilities: Cryptojacking: Deployment of XMRig to mine Monero.

Use of scheduled tasks and registry modifications to remain active on Windows systems.

Could you clarify if this is a on a system or a case name provided to you for analysis? The Cyber Threat - FBI

The identifier does not correspond to a known public cybersecurity threat, standardized malware strain, or official intelligence report as of April 2026.

Capable of launching TCP, UDP, and HTTP floods.

Modifications to HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run for persistence.

Paknri_pcvd_luciferzip

Disconnect infected hosts from the network to prevent lateral movement.

Exploitation of known vulnerabilities (e.g., EternalBlue, CVE-2019-9081 ) or credential brute-forcing. Capabilities: Cryptojacking: Deployment of XMRig to mine Monero. PakNRI_pcvd_luciferzip

Use of scheduled tasks and registry modifications to remain active on Windows systems. Disconnect infected hosts from the network to prevent

Could you clarify if this is a on a system or a case name provided to you for analysis? The Cyber Threat - FBI standardized malware strain

The identifier does not correspond to a known public cybersecurity threat, standardized malware strain, or official intelligence report as of April 2026.

Capable of launching TCP, UDP, and HTTP floods.

Modifications to HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run for persistence.