Panchan, a new Golang-based P2P botnet, is targeting Linux servers in the education sector since March 2022. The botnet uses a basic SSH dictionary attack to implement wormable behavior and harvests SSH keys for lateral movement. During runtime, the botnet has been observed deploying and executing two miners, nbhash and XMRig on the host.