Analytic for process injection via ld.so.preload

[ForensicITGuy]

Analytic to detect process injection via ld.so.preload file modification. This technique was observed during Rocke and Pancha Group cryptojacking campaigns.