Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/0xlane/minersamplecollection
It's best to inspect in an isolated environment.
https://github.com/0xlane/minersamplecollection
malware malware-analysis malware-samples miner sample-collection
Last synced: 13 days ago
JSON representation
It's best to inspect in an isolated environment.
- Host: GitHub
- URL: https://github.com/0xlane/minersamplecollection
- Owner: 0xlane
- Created: 2021-09-20T06:20:48.000Z (over 3 years ago)
- Default Branch: main
- Last Pushed: 2024-04-30T03:35:19.000Z (9 months ago)
- Last Synced: 2024-11-24T01:37:54.911Z (2 months ago)
- Topics: malware, malware-analysis, malware-samples, miner, sample-collection
- Language: PowerShell
- Homepage:
- Size: 25.7 MB
- Stars: 0
- Watchers: 1
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# MinerSampleCollection
1. moneroocean
- Author: TeamTNT
- Target: Linux(CentOS)
- Entry: [moneroocean/moneroocean_miner.sh](moneroocean/moneroocean_miner.sh)
- Persistence: rc.local, profile, docker, systemd
- Evasion: kernel-module(diamorphine), clean-history, fake-kernel-process-name(bioset)
- Clean: [moneroocean/clean_miner.sh](moneroocean/clean_miner.sh)
2. zzd
- Author: unknown
- Target: Linux
- Entry: [zzd/zzd.sh](zzd/zzd.sh)
- Persistence: unknown
- Evasion: unknown
- Movement: unknown
- Clean: nothing
3. pwnrig
- Author: unknown
- Target: Linux
- Entry: unknown
- Persistence: rc.d, bash_profile, systemd, cron
- Evasion: upx
- Movement: unknown
- Clean: [pwnrig/clean_miner.sh](pwnrig/clean_miner.sh)
4. JSBot
- Author: unknown
- Target: Windows
- Entry: [JSBot/net.xsl](JSBot/net.xsl), [JSBot/networks.xsl](JSBot/networks.xsl)
- Persistence: ScheduledTask, WmiEventSubscription, AppInit_DLLs, Service, ProcessInjection
- Evasion: obfuscation, fileless, lolbin, encryption
- Movement: pth, ms17010
- Clean: nothing