This website
lelibros[.]online/libro/descargar-libro-el-monje-que-vendio-su-ferrari-en-pdf-epub-mobi-o-leer-online/
has a link to a renamed/obfuscated bitcoin miner
static[.]staticbooks[.]com/hermano.loot.js?v1
aef8e033bf9ab2e82e6d8bdafa7033cd
ESET-NOD32 JS/CoinMiner.F
(View it safely here at urlscan.io)
Notice the obfuscation via hex characters.
Also notice the common bitcoin miner keywords such as websocket, throttle, concurrency, threads.
No comments:
Post a Comment