Bitcoin Forum>Alternate cryptocurrencies>Altcoin Discussion
Author

Topic: Malicious proces on Ubuntu via crypto wallets: Rpigdnos (Read 1097 times)

MbccompanyX
full member
Activity: 182
Merit: 100
★YoBit.Net★ 350+ Coins Exchange & Dice
Malicious proces on Ubuntu via crypto wallets: Rpigdnos
November 17, 2015, 03:09:20 AM
#11
Quote from: samspaces on November 16, 2015, 08:49:58 PM
Quote from: MbccompanyX on November 16, 2015, 09:15:06 AM
Quote from: samspaces on November 16, 2015, 09:03:22 AM
I skipped 1337 so haven't used that one. Rublebit was one of the last wallets I installed. Could also be the 'Blurry' wallet or the 'Digitalcredits' wallet.

If possible try to make a virtual machine and see if launching those wallets on different VM one of those shows the malicious process

I have, a few hours ago. None of the suspected wallets triggered the program.

Then close the whole thread and go in the rublebit thread telling sorry for raising such thing against the dev, and anyway next time check better what you download from websites you don't know....
samspaces
legendary
Activity: 1453
Merit: 1030
Re: Malicious proces on Ubuntu via crypto wallets: Rpigdnos
November 16, 2015, 08:49:58 PM
#10
Quote from: MbccompanyX on November 16, 2015, 09:15:06 AM
Quote from: samspaces on November 16, 2015, 09:03:22 AM
I skipped 1337 so haven't used that one. Rublebit was one of the last wallets I installed. Could also be the 'Blurry' wallet or the 'Digitalcredits' wallet.

If possible try to make a virtual machine and see if launching those wallets on different VM one of those shows the malicious process

I have, a few hours ago. None of the suspected wallets triggered the program.
MbccompanyX
full member
Activity: 182
Merit: 100
★YoBit.Net★ 350+ Coins Exchange & Dice
Re: Malicious proces on Ubuntu via crypto wallets: Rpigdnos
November 16, 2015, 11:30:22 AM
#9
Quote from: HeroCat on November 16, 2015, 11:23:45 AM
Yes, that's true. In Linux you can never be safe from viruses  Wink Only in Windows, you can have protection through anti virus software  Grin

There are antiviruses even on linux but aren't so know like windows antivirus, But even mac os isn't safe from viruses at the end too
HeroCat
hero member
Activity: 658
Merit: 500
Re: Malicious proces on Ubuntu via crypto wallets: Rpigdnos
November 16, 2015, 11:23:45 AM
#8
Yes, that's true. In Linux you can never be safe from viruses  Wink Only in Windows, you can have protection through anti virus software  Grin
MbccompanyX
full member
Activity: 182
Merit: 100
★YoBit.Net★ 350+ Coins Exchange & Dice
Re: Malicious proces on Ubuntu via crypto wallets: Rpigdnos
November 16, 2015, 09:15:06 AM
#7
Quote from: samspaces on November 16, 2015, 09:03:22 AM
I skipped 1337 so haven't used that one. Rublebit was one of the last wallets I installed. Could also be the 'Blurry' wallet or the 'Digitalcredits' wallet.

If possible try to make a virtual machine and see if launching those wallets on different VM one of those shows the malicious process
samspaces
legendary
Activity: 1453
Merit: 1030
Re: Malicious proces on Ubuntu via crypto wallets: Rpigdnos
November 16, 2015, 09:03:22 AM
#6
I skipped 1337 so haven't used that one. Rublebit was one of the last wallets I installed. Could also be the 'Blurry' wallet or the 'Digitalcredits' wallet.
MbccompanyX
full member
Activity: 182
Merit: 100
★YoBit.Net★ 350+ Coins Exchange & Dice
Re: Malicious proces on Ubuntu via crypto wallets: Rpigdnos
November 16, 2015, 02:59:32 AM
#5
Quote from: LucyLovesCrypto on November 15, 2015, 10:00:39 PM
Quote from: notabeliever on November 15, 2015, 09:52:42 PM
Might be 1337 too. My cpu has been throttling for awhile and trying to isolate the issue. Rubit had too many flagged virus from virustotal so I used an exchange instead. I only install  99% of the wallets that are clean from virustotal.

I don't have the answer but want to say that virustotal can miss things. Use a VM unless you trust the software 100%

Or use sandbox with process explorer, sometimes is even better then using a virtual machine (some viruses have part of the code made for stop the execution if launched in a virtual machine)
LucyLovesCrypto
sr. member
Activity: 414
Merit: 251
Re: Malicious proces on Ubuntu via crypto wallets: Rpigdnos
November 15, 2015, 10:00:39 PM
#4
Quote from: notabeliever on November 15, 2015, 09:52:42 PM
Might be 1337 too. My cpu has been throttling for awhile and trying to isolate the issue. Rubit had too many flagged virus from virustotal so I used an exchange instead. I only install  99% of the wallets that are clean from virustotal.

I don't have the answer but want to say that virustotal can miss things. Use a VM unless you trust the software 100%
notabeliever
hero member
Activity: 721
Merit: 504
Re: Malicious proces on Ubuntu via crypto wallets: Rpigdnos
November 15, 2015, 09:52:42 PM
#3
Might be 1337 too. My cpu has been throttling for awhile and trying to isolate the issue. Rubit had too many flagged virus from virustotal so I used an exchange instead. I only install  99% of the wallets that are clean from virustotal.
MbccompanyX
full member
Activity: 182
Merit: 100
★YoBit.Net★ 350+ Coins Exchange & Dice
Re: Malicious proces on Ubuntu via crypto wallets: Rpigdnos
November 15, 2015, 05:13:53 PM
#2
Which other wallets you have on the machine? and what let you think that rublebit is the source of the malicious process?
samspaces
legendary
Activity: 1453
Merit: 1030
Re: Malicious proces on Ubuntu via crypto wallets: Rpigdnos
November 14, 2015, 01:14:36 PM
#1
I've managed to clear my digital ocean droplet of this little bastard program that eats up 100% cpu and restarts itself through parent process 1:

I created another older droplet, copied the /sbin/init to the infected droplet, removed the init file, deleted the program Rpigdnos in /bin, overwrote /sbin/init with the clean version and rebooted.

Likely wallet is Rublebit. Not sure though.

17-11 Update: not a crypto wallet issue, probably.
Bitcoin Forum>Alternate cryptocurrencies>Altcoin Discussion
Jump to: