How to Fix a Crypto Coin Miner

VMware released a knowledge base article stating that it's security product carbon plaque may cause blue screens and reboots on some Windows systems. The update fixes a remote command execution via the GitLab import but I saw this first I figured hey GitLab import doesn't really sound anything that you would use without authentication. Well I was wrong it doesn't require any authentication. It is a elf binary so only on Linux at this point and it runs commands like wham I machine ID also kills a competing crypto miners which is another reason why this is likely a crypto miner.