Oracle Analytics Cloud and Server

Welcome to the Oracle Analytics Community: Please complete your User Profile and upload your Profile Picture

OBIEE 11G - "sourplum" command?

Received Response
11
Views
1
Comments
Rank 6 - Analytics Lead

I am seeing something very peculiar in my OBIEE 11g installation

We recently had a power outage at work, and were in the midst of restarting our servers.

I noticed in our production server that the processes that are running are as follows

pastedImage_0.png

The process or command I have in question is "sourplum"

Its really sucking up all the server resources, and when comparing to my DEV and QA enviroments I do not recognize this at all.

Looking at the start logs (/obiee-start.log) I also see this error popping out

pastedImage_1.png

Can not run program power shell.

When I quickly googled what is sourplum I am seeing malware warnings.

Does anyone know what this could be? Is it a virus of some sort?

Answers

  • Rank 1 - Community Starter

    Yes, this is malware. There isn't much out there in terms of info, but what little there is, it's being tagged as a crypto currency/bitcoin miner.  You'll need to clean and apply Oct. 2017 CPU.

Welcome!

It looks like you're new here. Sign in or register to get started.