Monitoring WannaCry hackers' bitcoin addresses in real time - page 6.

deisik

legendary

Activity: 3458

Merit: 1280

English ⬄ Russian Translation Services

Quote from: DoublerHunter on May 15, 2017, 08:54:32 AM

They ransomware seems dominating their victims and they already getting a lot of bitcoins from getting ransom of encrypted files. If this kind of problem will continue then we should be in panic because the risk for the other bitcoin users is the price of bitcoin that can go down and we could lose a lot of money if it ever happen.

In fact, I hope that people do get infected with your panicky attitude and sentiment (since that's what your post is obviously filled up with) and actually start selling their precious coins in an overwhelming, blind panic, so that me as well as other folks could buy back what we sold at recent highs. Other than that, in a wartime people like you are shot on sight

And survivors are shot again

DoublerHunter

hero member

Activity: 2590

Merit: 644

They ransomware seems dominating their victims and they already getting a lot of bitcoins from getting ransom of encrypted files. If this kind of problem will continue then we should be in panic because the risk for the other bitcoin users is the price of bitcoin that can go down and we could lose a lot of money if it ever happen.

unamis76

legendary

Activity: 1512

Merit: 1009

Quote from: aso118 on May 14, 2017, 09:28:37 PM

Hmm... The ransomware would then need to centrally keep track of which transaction ids have been used.
What is somebody just copies the transaction id once the transaction is broadcast and keys it into the ransomware?

That's what I was suggesting.

Quote from: coinits on May 14, 2017, 09:50:31 PM

Quote from: piyo-maru on May 14, 2017, 09:10:25 PM

hi!
Maybe this address is also used.
===
1QAc9S5EmycqjzzWDc1yiWzr9jJLC8sLiY
===

from:
https://twitter.com/malwrhunterteam/status/851687635554848768

Appears so

https://blockchain.info/address/1QAc9S5EmycqjzzWDc1yiWzr9jJLC8sLiY

12 transactions = 3.25249956 BTC as of 01:50 GMT

That's quite an old tweet, unrelated to this.

Quote from: coinits on May 14, 2017, 09:56:31 PM

Looking at the image in the Twitter link above, perhaps once you send the required amount, it is automatically decrypted. They actually let you decrypt some files at no cost to prove it works. Nice of the crooks to give you a free sample.

They re-use addresses. How would they know who sent what for which computer?

Quote from: freebutcaged on May 14, 2017, 10:59:41 PM

Evidence?
Link?
Reference?
Why hospitals?
Stealing what exactly from them?
Are you in the right thread mate?

http://www.bbc.com/news/uk-39916778

deisik

legendary

Activity: 3458

Merit: 1280

English ⬄ Russian Translation Services

Quote from: zend7 on May 15, 2017, 03:09:10 AM

Quote from: Wendigo on May 14, 2017, 12:30:56 AM

Quote from: jaberwock on May 13, 2017, 11:05:51 PM

Now how they will spend their hard earned hacking money, considering the addresses are known and probably are blacklisted everywhere?

Putting the coins through a mixing service most likely.

The well known mixing service like Bitmixer and a few others will not accept mixing money from those addresses but unfortunately the deep web ones will not give a shit from which addresses the money are coming and it will mix their coins and the hackers in cyber crimes will go unpunished as always. Even the FBI admitted yesterday that they are having a hard time tracking the location or different locations of this attack as they believe to be many people from many countries. Good thing is very few bitcoins are collected from an attack of this caliber.

That would do a bad service for these mixers

After all, they are there specifically to cover your steps. Indeed, it could be claimed that some mixing is legitimate while other is not but who is there to judge? If we are to distinguish between "bad" and "good" bitcoins, why not then revert the blockchain after every victim pays the ransom and successfully decrypts their files? Or just block these bitcoins in their wallets for good by demanding from miners not to confirm the transactions outgoing from the offending wallets? These are tough questions

HAARP

full member

Activity: 206

Merit: 100

What is the garbage they've done? What do they exactly do, I mean...

BitcoinHunt3r

legendary

Activity: 2954

Merit: 1155

Leading Crypto Sports Betting & Casino Platform

wonder where they will sell their coins, some big exchanger must verify id right? even in my country some fiat exchanger ask user to verify their ID and must selfie to make sure it is real person

Pursuer

legendary

Activity: 1638

Merit: 1163

Where is my ring of blades...

are we sure all of these are legit payments from victims of this malware?
I mean the hackers could have simply sent some bitcoin to those addresses just to hype things up and show others that other virtual victims are paying the ransom so you (the real victim) should pay it too!

you know like what some businesses do, put some money in to show your business is active and have customers Wink

tosmartak

sr. member

Activity: 630

Merit: 250

Quote from: stripykitteh on May 13, 2017, 06:54:29 PM

That’s a pretty nice payday for not really doing anything all day. I am pretty sure that the hacker might’ve paid for the ransom software so he might be in the negative right now.
What is kind of surprising to me is that these people have Bitcoin already installed or they have already verified their profiles on Bitcoin Exchanges that allowed them to pay the ransom. That was really fast considering how Bitcoin is pretty new to the scene, somebody should fire the tech guy.

Even if you don't know about it before, there are some occasions that will warrant you to be a fast learner by all means and moreover, it doesn't take up to 30 minutes to get a verified bitcoin wallet. With someone firing the tech guy, Grin

it is possible the organisation didn't consider anything regarding cybersecurity which is a huge department on its own but at least the tech guy should have been backing up one way or the other, so I agree with you, he should be fired.

bitbunnny

legendary

Activity: 2912

Merit: 1068

WOLF.BET - Provably Fair Crypto Casino

Quote from: bitcoinvestor on May 15, 2017, 03:10:19 AM

Quote from: BlackPanda on May 14, 2017, 11:10:54 AM

This is one very bad crime. They are washing the data and then forcing it to do a transaction with bitcoin.
This can make bitcoin less trustworthy. Just imagine they use bitcoin for crime.

It is a blow to bitcoin or crypto community. Bitcoin or crypto wil earn negative views from all many people. They will tend to mindset that cyber crimes are related to bitcoin or cryptocurrencies. That's a bad news.

Exactly. Even without attaks like this many people still see Bitcoin as criminal currency and used for criminal activities and things like this only makes situation worse. That is why is necessary to inform people about good sides of Bitcoin and how could be used for good purposes.
And in regard to WannaCry the story isn't over yet.

ecnalubma

sr. member

Activity: 1526

Merit: 420

In the beginning internet is not a safe place for everyone. Click, download, register etc. at your own risk. Grin

bitcoinvestor

hero member

Activity: 812

Merit: 501

Quote from: BlackPanda on May 14, 2017, 11:10:54 AM

This is one very bad crime. They are washing the data and then forcing it to do a transaction with bitcoin.
This can make bitcoin less trustworthy. Just imagine they use bitcoin for crime.

It is a blow to bitcoin or crypto community. Bitcoin or crypto wil earn negative views from all many people. They will tend to mindset that cyber crimes are related to bitcoin or cryptocurrencies. That's a bad news.

zend7

hero member

Activity: 658

Merit: 501

Hackers please hack me .... if you can :)

Quote from: Wendigo on May 14, 2017, 12:30:56 AM

Quote from: jaberwock on May 13, 2017, 11:05:51 PM

Now how they will spend their hard earned hacking money, considering the addresses are known and probably are blacklisted everywhere?

Putting the coins through a mixing service most likely.

The well known mixing service like Bitmixer and a few others will not accept mixing money from those addresses but unfortunately the deep web ones will not give a shit from which addresses the money are coming and it will mix their coins and the hackers in cyber crimes will go unpunished as always. Even the FBI admitted yesterday that they are having a hard time tracking the location or different locations of this attack as they believe to be many people from many countries. Good thing is very few bitcoins are collected from an attack of this caliber.

PuraPuraBego

hero member

Activity: 928

Merit: 531

That's hurt for those who got that shit. Anyone have trying with paying with low cost likely possibly to tranasaction will be rejected / refunded?

worldmobilecoin

member

Activity: 159

Merit: 11

World Mobile Coin

Quote from: btcforall777 on May 14, 2017, 07:22:34 PM

Quote from: coinits on May 14, 2017, 04:17:48 PM

Quote from: btcforall777 on May 14, 2017, 03:42:49 PM

Some of the media are blaming them on the drop in BTC price as they happened simultaneously. Make sense to me. What do you think?

I doubt it. The bulk of people being affected don't control the btc market. The whole market is in a bubble. Bubbles burst...eventually.

Maybe the market is just looking for a reason or reasons. Like you said people are afraid to jump.

Yea, you are right. There must be a reason to move trading market price. Especially when a speculation appear, people will afraid and left the market.

W5k

newbie

Activity: 26

Merit: 0

https://bitinfocharts.com/bitcoin/wallet/WannaCry-wallet
3 addresses (13AM4VW2dhxYgXeQepoHkHSQuy6NgaEb94 12t9YDPgwueZ9NyMgw519p7AA8isjr6SMw 115p7UMMngoj1pMvkpHijcRdfJNXj6LrLn) in one chart
22.89 BTC thus far

Karasugoi

member

Activity: 113

Merit: 20

Quote from: coinits on May 14, 2017, 09:57:32 PM

Quote from: Sadlife on May 14, 2017, 09:50:42 PM

You can actually decrypt the zip file of wannacry ransomware
the password is WNcry@2017.

You can thank me for that if get infected by it. Dont give this hackers bitcoin!

How do you know this?

I'm not about to test your suggestion though LOL

Some people give the hackers coins with a message.

I like this transaction!

96015c757e440554005965b97349234dcae8d4c0f8cc3410a0743cbcc9bacd6c

freebutcaged

hero member

Activity: 588

Merit: 541

Quote from: doedz on May 14, 2017, 10:02:18 PM

Very worried, there are people who want to succeed by stealing. In my country, this becomes a serious attack. 2 hospitals have been attacked. Hope to be resolved as soon as possible.

Evidence?
Link?
Reference?
Why hospitals?
Stealing what exactly from them?
Are you in the right thread mate?

Anyone has any fix for me here?
I upgraded from 7 to 10 by official MicroSoft yet I'm getting the activate Windows notification.

paul gatt

hero member

Activity: 896

Merit: 500

Quote from: coinits on May 14, 2017, 09:57:32 PM

Quote from: Sadlife on May 14, 2017, 09:50:42 PM

You can actually decrypt the zip file of wannacry ransomware
the password is WNcry@2017.

You can thank me for that if get infected by it. Dont give this hackers bitcoin!

How do you know this?

I'm not about to test your suggestion though LOL

We can not check his proposal, however, we can see it as a precautionary measure. I think he was one of those who paid the ransom for hackers.

doedz

hero member

Activity: 1106

Merit: 502

Very worried, there are people who want to succeed by stealing. In my country, this becomes a serious attack. 2 hospitals have been attacked. Hope to be resolved as soon as possible.

coinits

legendary

Activity: 1582

Merit: 1019

011110000110110101110010

Quote from: Sadlife on May 14, 2017, 09:50:42 PM

You can actually decrypt the zip file of wannacry ransomware
the password is WNcry@2017.

You can thank me for that if get infected by it. Dont give this hackers bitcoin!

How do you know this?

I'm not about to test your suggestion though LOL

Topic: Monitoring WannaCry hackers' bitcoin addresses in real time - page 6. (Read 22954 times)