The malware targets Windows servers with a cornucopia of well-known exploits, all within a single executable — including the EternalBlue NSA hacking tool.
Not just a miner, the malware also sets up a hidden default account with system administrator privileges, to be used for re-infection and further attacks.