Researchers uncovered a new kind of Golang malware that targets Linux-based servers. Malicious actors seem to be beginning to turn to Golang as a malware language since it is not typically picked up by antivirus software. F5 says the malware is hosted on an already compromised Chinese ecommerce website. The attacker uses the online clipboard service pastebin.com to host the spearhead bash script. But along with maintaining persistence, the script looks for process running from the /tmp directory and kills them.”]
Source: https://www.darkreading.com/abtv/cryptominer-delivers-new-kind-of-malware/a/d-id/752582