Page 1 of 1

code for coin mining not detected

Posted: 27 Aug 2017, 02:58
by mindnetcombr
Hello,

I dont know how to report code not detected by CXS, so this is my contribution:

I found this today: a process running on my server, mining bitcoin or something like this.

The process: https://pastebin.com/igXZ3L1e

The code I found on file: https://pastebin.com/K9qtMqTP

So, this code download a binary and run on the server.

Hope CXS team can add this to be detected, because the CXS 6.39 (running as daemon cxswatch) dont detected today.

Thank

Re: code for coin mining not detected

Posted: 27 Aug 2017, 08:22
by ForumAdmin
If you want to submit an exploit to us for consideration (as explained in the documentation) then use the following:

Code: Select all

cxs --wttw /path/to/exploit.ext