Loader

NullMixer

First seen: 2022-01 • Status: active

Currently Active Threat

NullMixer installs a whole bunch of viruses at once. If you download fake cracked software, you might get 10+ different malware programs at the same time.

Overview

NullMixer is a dropper that installs multiple malware families simultaneously. It spreads through fake cracked software and installs stealers, miners, and backdoors.

How It Spreads

  • Fake cracked software
  • Malicious websites

What It Does

  • Drops multiple malware families
  • Installs stealers and miners

Is your business exposed?

Target Platforms

Windows

Detection Tips

  • Watch for multiple simultaneous infections
  • Monitor for dropper behavior

MITRE ATT&CK Techniques

T1105, T1204

If You're Infected

  1. 1.

    Assume severe compromise

  2. 2.

    Consider reimaging system

Related Malware

Privateloader, Redline Stealer

Is your business exposed?

Check if your company data is circulating on the dark web

Free scan • No credit card required

Privacy PolicyYour Privacy Choices