The latest variants of the Golang cryptomining malware exploit known web server bugs and add efficiency to the mining process. In this latest campaign however, the binaries have been modified to improve efficiency. In a switch-up of tactics, the payload binaries are capable of speeding up mining process by 15 percent. The worm uses the go-bindata package to embed off-the-shelf XMRig cryptominer inside itself. In all, the Uptycs team identified seven similar samples.
Source: https://threatpost.com/golang-cryptomining-worm-speed-boost/168456/