FYI, my hosting provider (A Small Orange) sent me a note saying that malware was detected on my site involving file: /wp-content/plugins/fetch-tweets/include/library/admin-page-framework/fetch-tweets-admin-page-framework.min.php
It was allegedly {HEX}php.nested.jpexp.531
This was after I updated to version 2.3.5 today.
I contacted them and they analyzed the file and confirmed it was a false positive, and restored the file. This might be something you want to look into to ensure it doesn't trigger problems for other users.