Tencent Yujian: Eternal Blue Trojan Downloader can be upgraded to perform a "no file" form mining attack

Tencent Security Yushen Threat Intelligence Center detected the Eternal Blue Downloader Trojan on April 3, this update changed the original mining Trojan execution mode, by embedding the PE file in Powershell to achieve the implementation. No file" form mining attack. The new mining trojan execution mode has no file landing and runs directly in the Powershell.exe process, which can be difficult to detect and clear.