🚀 CloudSEK has raised $19M Series B1 Round – Powering the Future of Predictive Cybersecurity
Read More
Advisory |
Malware Intelligence |
Target |
Docker/Linux |
Type |
Xanthe Cryptominer |
Agent String |
Functionality |
xanthe-start/<version> | Download of killer modules |
xanthecheck-$PROC.$MEM | Initialization Process |
filegetgo/1.5 | Download of miner modules |
xanthe-running/1.2 | Post infection logging |
hostcheck/1.5 | SSH spreading command line |
qi/1.1 | Docker spreading command line |
fczyo-cron/1.5 | Cron scheduled job command line |
goteeeem/1.4 | Post Docker infection download main module |
shell-success/1.4 | Post Docker download logging |
xesacheck-running/1.4 | Post infection check logging |
wemusthavegotkilled/1.4 | Report miner not running |