1. Go trace him down
2. Bitcoin mining does more hardware damage than keylogging.
Topic: Confession's of a Bitcoin Botnet coder... - page 2. (Read 20212 times)
1. Go trace him down
2. Bitcoin mining does more hardware damage than keylogging.
It's extra money, everyone loves extra money. Also, he considers it a 'challenge', and I agree that it is one.
It's called anonymity and being careful. Your life is only ruined if you dox yourself and reveal everything to FBI lul
". Your life is only ruined if you dox yourself and reveal everything to FBI lul" What does that even mean, it's highly naive of him to think that he is untraceable.
Zeus is not compatible with Linux, and most malware isn't either, because Windows is fail and idiots use Windows (double fail)
Most malware isn't compatible with linux because the vast majority of users use windows. Creating a botnet with linux bots isn't harder than targeting windows machines but the turn over won't be as great. Also most desktop linux users are poor communists so it's not worth stealing their financial details.Windows users are able to enjoy the largest selection of software, when I buy a new tv card I don't have to spend 10 hours compiling drivers and kernels, I simply pop a disk in and install. Who are the real idiots?
On another note if my machine was compromised I much rather it be used for bitcoin mining than key logging. That doesn't justify his actions though.
1. Go trace him down
2. Bitcoin mining does more hardware damage than keylogging.
It's extra money, everyone loves extra money. Also, he considers it a 'challenge', and I agree that it is one.
It's called anonymity and being careful. Your life is only ruined if you dox yourself and reveal everything to FBI lul
". Your life is only ruined if you dox yourself and reveal everything to FBI lul" What does that even mean, it's highly naive of him to think that he is untraceable.
Zeus is not compatible with Linux, and most malware isn't either, because Windows is fail and idiots use Windows (double fail)
Most malware isn't compatible with linux because the vast majority of users use windows. Creating a botnet with linux bots isn't harder than targeting windows machines but the turn over won't be as great. Also most desktop linux users are poor communists so it's not worth stealing their financial details.Windows users are able to enjoy the largest selection of software, when I buy a new tv card I don't have to spend 10 hours compiling drivers and kernels, I simply pop a disk in and install. Who are the real idiots?
On another note if my machine was compromised I much rather it be used for bitcoin mining than key logging. That doesn't justify his actions though.
I was once using Windows 2000 SP4 without any additional updates and no antivirus.
Nothing happens if you have an organ called "brain"
Using Linux all round now
Too bad you can't game on Linux or read VRM temps using GPU-Z
Nothing happens if you have an organ called "brain"
Using Linux all round now
Too bad you can't game on Linux or read VRM temps using GPU-Z
I play games on Linux all the time.
I was once using Windows 2000 SP4 without any additional updates and no antivirus.
Nothing happens if you have an organ called "brain"
Using Linux all round now
Too bad you can't game on Linux or read VRM temps using GPU-Z
Nothing happens if you have an organ called "brain"
Using Linux all round now
Too bad you can't game on Linux or read VRM temps using GPU-Z
Subscription Levels - MSDN Operating Systems - $699.00 ($499.00 Renewal)
https://msdn.microsoft.com/en-us/subscriptions/buy/buy.aspx
To get Win 7 Ultimate for free you need access to some organization that has paid for a subscription already.
I wonder how much Windows 7 Ultimate would cost in ⊅BTC?
https://msdn.microsoft.com/en-us/subscriptions/buy/buy.aspx
To get Win 7 Ultimate for free you need access to some organization that has paid for a subscription already.
I wonder how much Windows 7 Ultimate would cost in ⊅BTC?
You can buy 'cheap legal' Microsoft keys from various people who own badly designed online stores, make occasional grammar mistakes and have good reputation on various technology forums.
Real computer users don't need antiviruses. AV is completely useless, and is easy to bypass if you have money or you can code.
Malware removal tools (malwarebytes etc.) will be more useful.
Subscription Levels - MSDN Operating Systems - $699.00 ($499.00 Renewal)
https://msdn.microsoft.com/en-us/subscriptions/buy/buy.aspx
To get Win 7 Ultimate for free you need access to some organization that has paid for a subscription already.
https://msdn.microsoft.com/en-us/subscriptions/buy/buy.aspx
To get Win 7 Ultimate for free you need access to some organization that has paid for a subscription already.
...or you need access to the hashes of said ISO files to check if your downloaded copy is the same as you would buy from Microsoft.
Subscription Levels - MSDN Operating Systems - $699.00 ($499.00 Renewal)
https://msdn.microsoft.com/en-us/subscriptions/buy/buy.aspx
To get Win 7 Ultimate for free you need access to some organization that has paid for a subscription already.
I wonder how much Windows 7 Ultimate would cost in ⊅BTC?
https://msdn.microsoft.com/en-us/subscriptions/buy/buy.aspx
To get Win 7 Ultimate for free you need access to some organization that has paid for a subscription already.
I wonder how much Windows 7 Ultimate would cost in ⊅BTC?
Also, won't you be able to detect botnets mining in pools due to a change in mining power equal to people turning on and off their infected computers?
Doubtful, because any one person turning off or on an infected machine would have little effect upon the total hashrate. It would be lost in the general noise.
MSDN ISO + SLP activation = ultimate for free with no malware risk..
I run no AV, just a monthly scan. All keygens and anything else I don't trust gets run in VMware, browsing in another VM as we speak. Only trusted software ever makes it to my main system.
+1 for SLP activation. I run no AV, just a monthly scan. All keygens and anything else I don't trust gets run in VMware, browsing in another VM as we speak. Only trusted software ever makes it to my main system.
MSDN ISO + SLP activation = ultimate for free with no malware risk..
I run no AV, just a monthly scan. All keygens and anything else I don't trust gets run in VMware, browsing in another VM as we speak. Only trusted software ever makes it to my main system.
I run no AV, just a monthly scan. All keygens and anything else I don't trust gets run in VMware, browsing in another VM as we speak. Only trusted software ever makes it to my main system.
He sounds like quite the Prodigy judging from his replies.
I wonder how he is spending his bitcoins?
Also, won't you be able to detect botnets mining in pools due to a change in mining power equal to people turning on and off their infected computers?
I wonder how he is spending his bitcoins?
Also, won't you be able to detect botnets mining in pools due to a change in mining power equal to people turning on and off their infected computers?
Quote from: Gabi
Please avoid this Windows bullshit. Those are Windows boxes because noobs use Windows and not Linux. And, since they are noobs, they keep their computer NOT secure, unprotected and vulnerable to everything
The problem is the user, NOT the operative system.
A skilled person is safe with Windows or with Linux
The problem is the user, NOT the operative system.
A skilled person is safe with Windows or with Linux
A Windows Security Experts advice to Noobs:
Noob:
What can I do to improve my Windows security?
WSE:
Install Windows ($150) latest updates ASAP.
Make sure you are running a good up to date Anti-Virus. ($59.99)
Make sure you have a good Firewall turned on. ($39.99)
Don't click on or install dumb shit. (Priceless)
A Linux Security Experts advice to Noobs:
Noob:
What can I do to improve my Linux security?
LSE:
Install your Linux (Priceless) distro's latest updates and fixes.
Don't click on or install dumb shit. (Priceless)
The cost of being secure on W?ndows? $250
The cost of being secure on Linux? Priceless
Yes i have to pay for the OS but except that nothing more.
Also a noob will get infected even with an antivirus and a firewall, that's why he is a noob
13-20 Ghash/s means his mining botnet earns him approx. $1.100-1.700 per month.
Now, I don't want to condone his actions, but putting myself in his skin, that seems hardly worth it to me. That's less than a cleaning lady earns where I live. Why doesn't he just get a real job? Why risk going to prison for such a modest amount of income?
I assume that selling the CC information is a lot more lucrative than mining, and the mining is just a side project of his.
Either that, or his is doing this for reasons other than money. Prestige? Power?
He seems to think he is invincible, but even Tor is not 100% safe, and all it takes is a second of carelessness and your anonymity is blown, and your life is ruined.
Now, I don't want to condone his actions, but putting myself in his skin, that seems hardly worth it to me. That's less than a cleaning lady earns where I live. Why doesn't he just get a real job? Why risk going to prison for such a modest amount of income?
I assume that selling the CC information is a lot more lucrative than mining, and the mining is just a side project of his.
Either that, or his is doing this for reasons other than money. Prestige? Power?
He seems to think he is invincible, but even Tor is not 100% safe, and all it takes is a second of carelessness and your anonymity is blown, and your life is ruined.
It's extra money, everyone loves extra money. Also, he considers it a 'challenge', and I agree that it is one.
It's called anonymity and being careful. Your life is only ruined if you dox yourself and reveal everything to FBI lul
It might even help the PCs living longer having their fans run nonstop so there is less dust buildup!
+1
I'm tell you guys, this stuff is going to be the end of bitcoin.
I think you have it backward…this stuff is going to be the end of the traditional banking system. At least with Bitcoin you have a fighting chance of securing your assets. With the traditional banking system, the theft just gets subsidized and no one cares or will care until entire companies (or nations that bail them out) start to collapse. Unfortunately, by that time, it will be too late for that system. I find it interesting that these criminals are using a superior (and ultimately less vulnerable) system like bitcoin to exploit an antiquated system that is rife with insecurities. I have to agree with that.
I kinda want my own bitcoin botnet now.
Send me a PM bro, I can work something out for you
Something important for Windows users...Notice in the pics, W7, VS, XP. Every machine listed in the pics are Windows boxes. He also said he binds programs uploaded to usenet.
I wonder if he has compromised any linux boxes?
Quote from: throwaway236236
At the beginning it happened, my crypter got flagged and I had to rearrange the code to re"FUD" it. Now everything is automated, every victim gets a regular update, just for him. And because the polymorphism happens on my side, AV vendors can't get a detection for all modifications, it's game over for them.
I wonder if he has compromised any linux boxes?
Zeus is not compatible with Linux, and most malware isn't either, because Windows is fail and idiots use Windows (double fail)
It might even help the PCs living longer having their fans run nonstop so there is less dust buildup!
Well. Atleast people might realise "omg my gpu is at 100% overnight"
Or "hey my fans slow down when i use my computer"
But ofcourse they wont /facepalm
Most people dont do regular Dust Checks
Or "hey my fans slow down when i use my computer"
But ofcourse they wont /facepalm
Most people dont do regular Dust Checks
13-20 Ghash/s means his mining botnet earns him approx. $1.100-1.700 per month.
Now, I don't want to condone his actions, but putting myself in his skin, that seems hardly worth it to me. That's less than a cleaning lady earns where I live. Why doesn't he just get a real job? Why risk going to prison for such a modest amount of income?
Now, I don't want to condone his actions, but putting myself in his skin, that seems hardly worth it to me. That's less than a cleaning lady earns where I live. Why doesn't he just get a real job? Why risk going to prison for such a modest amount of income?
He indicated he is a student. An $1800/mo part time job which is related to your major ain't that bad of a gig for a student. As you indicated his total compensated is likely more when you include various other forms of revnue. Would I personally do it? No but I imagine a lot of other would if they had the ability.
A Windows Security Experts advice to Noobs:
Noob:
What can I do to improve my Windows security?
WSE:
Install Windows ($150 $0.00) latest updates ASAP. (Already installed on that computer you just bought, service Packs have never cost anything)
Make sure you are running a good up to date Anti-Virus. ($59.99 $0.00) (You said good not expensive right? Avast = Free)
Make sure you have a good Firewall turned on. ($39.99 $0.00) (Windows firewall is fine for 99% of users. For power users there are free alternatives.)
Don't click on or install dumb shit. (Priceless)
Noob:
What can I do to improve my Windows security?
WSE:
Install Windows (
Make sure you are running a good up to date Anti-Virus. (
Make sure you have a good Firewall turned on. (
Don't click on or install dumb shit. (Priceless)
FYPFY
I would add:
Install Windows Defender (there are better anti-malware products but I generally give WD to noobs because it just works).
use a router w/ NAT & SPI. Only forward ports you need.
If someone wants to be completely genuine about anti-virus software, why not ask for a government grant to kickstart a FOSS AV program that users are able to download and compile themselves? Then you can absolutely guarantee that your friendly anti-virus isn't burning up the idle time on your GPU.
http://www.clamav.net/lang/en/download/sources/ <-- not commenting on how good it is, but it's open source.
So do I. Just didn't want to start a discussion that AV's suck, and blah blah blah, hence the part about not commenting
Volume does not mean income... I could sell a single share at 1 BTC and then it gets traded a million times --> volume is 1m BTC, but I still only got this single coin.
About the thread itself - just with the info he posted, as I said, it's not impossible to track his coins down at all for anyone. German speaker, miner at BTCguild (and no, I would NOT ban mining botnets by the way!) with a total of 10+ GH/s (possibly spread on several accounts), most likely has a higher-than-average stale rate, as he'd need to tunnel his getworks through his own proxy + TOR... do I need to go on?
What I find a bit disturbing is that even though he acts like a "total pro", in the end 1-2 years of reading coding tutorials online don't magically transform you in the god of programming. Likely he introduced a few security holes in his botnet software too.
One of the pictures he linked to showed a modified version of https://github.com/cdhowie/Bitcoin-mining-proxy. He also said although he only says he has 10-20gh/s, he suspects that up to 30% of the current hashing power is from botnets.
Jump to: