Detects process connections to a Monero crypto mining pool

Detects command line parameters or strings often used by crypto miners

Detects suspicious DNS queries to Monero mining pools

Identifies clients that may be performing DNS lookups associated with common currency mining pools.