The following conversation was literally copy/pasted from Bluehost's support.
I thought it was pretty interesting how they kept trying to upsell an unnecessary "security" service for $80/month for 20 minutes...
The malware in question is a script from Coinhive (I've linked an article as the main site doesn't seem to load) which I was testing out from a security point of view. Unfortunately their security scanner picked it up quickly and suspended the account, which is expected and good.
During the chat I didn't realise this was the problem though, I later saw it when I went to remove the malware and looked at the scanner log (which said it had found SL-CRYPTOMINER-eu.UNOFFICIAL FOUND
) and immediately thought of Coinhive.