Friday, February 2, 2018

Infosec quotes - Linux bitcoin miner

Linux bitcoin miner injection script (see here)

https://urlscan.io/result/94fab9ed-0ad3-4265-88de-b86ae5d6fe45/content/

hxxp://f4e8j36h8572a[.]com/robots.txt
md5 af8338f5e737d40139eece286cde9a76

https://www.virustotal.com/#/file/0de9cc886692cd7c7029de5334ae0bef1f0f32b141668eab0eb5db0a446d36a1/details


-kills other miners
-wget/curls files
-creates cron job
-enables hugepages

probably linked to weblogic vuln
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)