[clamav-users] crypto currency miner

Eric Tykwinski eric-list at truenet.com
Tue Jan 2 21:53:31 UTC 2018


> -----Original Message-----
> From: clamav-users [mailto:clamav-users-bounces at lists.clamav.net] On
> Behalf Of Matthew Molyett
> Sent: Tuesday, January 02, 2018 4:46 PM
> To: ClamAV users ML
> Subject: Re: [clamav-users] crypto currency miner
> 
> L,
> 
> minerd is being detected as tool which has been encountered with malicious
> usage. This specific tool has been observed being dropped and set up
within
> honey pots. As with other tools, it has legitimate usage, but makes sense
> to flag because it is a valid indicator of compromise when located
> unexpectedly.

Exactly, Here was an incident that stung a couple of our customer's at the
DC:
https://www.pcworld.com/article/2364120/hacked-synology-nas-systems-used-in-
highprofit-cryptocurrency-mining-operation.html






More information about the clamav-users mailing list