> -----Original Message----- > From: clamav-users [mailto:[email protected]] On > Behalf Of Matthew Molyett > Sent: Tuesday, January 02, 2018 4:46 PM > To: ClamAV users ML > Subject: Re: [clamav-users] crypto currency miner > > L, > > minerd is being detected as tool which has been encountered with malicious > usage. This specific tool has been observed being dropped and set up within > honey pots. As with other tools, it has legitimate usage, but makes sense > to flag because it is a valid indicator of compromise when located > unexpectedly.
Exactly, Here was an incident that stung a couple of our customer's at the DC: https://www.pcworld.com/article/2364120/hacked-synology-nas-systems-used-in- highprofit-cryptocurrency-mining-operation.html _______________________________________________ clamav-users mailing list [email protected] http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml
