Bitcoin Forum>Other>Meta
Pages:
Author

Topic: Report Malware and Suspicious Links here so Mods can take Action ! - page 12. (Read 36997 times)

Lafu
legendary
Activity: 3136
Merit: 3213
Re: Report Malware and Suspicious Links here so Mods can take Action !
September 28, 2023, 09:45:05 AM
#1367
In this case you are not right BABY SHOES !

The Github you have posted is no Fake one and what you see in the Virustotal scan detection here
https://www.virustotal.com/gui/file/e5fd4a1d67f8366c67117a3a0a64385b4177adf4b66e45ae622d5e34a579c466?nocache=1 is a false postive detection one for miners.

This one here is fine and original Ann Thread:
SquishyCoin
Code:
https://github.com/sqcndev/SquishyCoin/releases/tag/v0.7.2
[ANN] Squishy Coin (SQCN) PoW / PoS | Equihash 200,9 --- June 23, 2023

Quote from: BABY SHOES on September 28, 2023, 07:33:53 AM
Account name
ReactiveBitcoin Create Today
[Re-ANN] [SQCN] SquishyCoin - rework and update coin [Equihash 200,9]
This one here is for sure a Fake one and i guess soon there will be an fake github link edited in there.
BABY SHOES
sr. member
Activity: 294
Merit: 433
HODL - BTC
Re: Report Malware and Suspicious Links here so Mods can take Action !
September 28, 2023, 07:33:53 AM
#1366
There is an old thread in June still not reported, because their site is active and also the shitcoin is traded on the Xeggex exchange after making a deeper search by checking the downloaded wallet and then checking in Virustotal detected Malware.
Even worse, they tried to create a new ANN with a new account to spread it, fortunately now we are reporting them.

Account name
ReactiveBitcoin Create Today
SquishyCoin 

ANN
[Re-ANN] [SQCN] SquishyCoin - rework and update coin [Equihash 200,9]
[ANN] Squishy Coin (SQCN) PoW / PoS | Equihash 200,9 --- June 23, 2023

Fake GitHub
Code:
https://github.com/sqcndev/SquishyCoin/releases/tag/v0.7.2

Detected
Code:
https://www.virustotal.com/gui/file/e5fd4a1d67f8366c67117a3a0a64385b4177adf4b66e45ae622d5e34a579c466?nocache=1

Lafu
legendary
Activity: 3136
Merit: 3213
Re: Report Malware and Suspicious Links here so Mods can take Action !
September 27, 2023, 08:38:37 PM
#1365
Quote from: BABY SHOES on September 27, 2023, 05:20:45 PM
Another one with a newbie account makes malware spread by continuing to create ANNs that are locked. I will not get tired of reporting them.
Yes you are right with the last Fake Ann , the Fake Github github.com/SirkonaCoin was just created 4 Hours ago.
Nice to hear that you dont get tired of reporting them , thats for sure a big help fighting against this things.
Looks like they got not anymore hacked Accounts that they can use as the last ones new Accounts.
BABY SHOES
sr. member
Activity: 294
Merit: 433
HODL - BTC
Re: Report Malware and Suspicious Links here so Mods can take Action !
September 27, 2023, 05:20:45 PM
#1364
Quote from: Lafu on September 27, 2023, 10:22:10 AM
Yes you are right as i have written a post earlier its always helpfull to collect the Fake Threads and there Links.
Its good to have some help against the Hackers and Malware spreading hacked User Accounts .
Yes we must continue to report in every thread that is suspicious of spreading malware here, most of what I find are newbie accounts that have just been registered.
Another one with a newbie account makes malware spread by continuing to create ANNs that are locked. I will not get tired of reporting them.

Account name: SirkonaMoment
ANN: [ANN] [KRS] Sirkona - safety communication [ProgPow]

Don't click
Code:
https://github.com/SirkonaCoin/Sirkona/releases/download/1.0.0/SirkonaProject-win-v1.0.0.zip
Lafu
legendary
Activity: 3136
Merit: 3213
Re: Report Malware and Suspicious Links here so Mods can take Action !
September 27, 2023, 10:22:10 AM
#1363
Quote from: BABY SHOES on September 26, 2023, 08:58:00 PM
~~~~~~
Thanks afor keeping your eyes open and that reported the threads and things , i was just on the mobile earlier when i tagged the Account.
Yes you are right as i have written a post earlier its always helpfull to collect the Fake Threads and there Links.
Its good to have some help against the Hackers and Malware spreading hacked User Accounts .
BABY SHOES
sr. member
Activity: 294
Merit: 433
HODL - BTC
Re: Report Malware and Suspicious Links here so Mods can take Action !
September 26, 2023, 08:58:00 PM
#1362
Spreading Malware with fake ANN Although it has been tagged by @Lafu today but I think it is necessary to report here and action,

Account name SirenaMoon - ban
Thread: [ANN] [SRN] SirenaProject - collective help for profit [FiroPOW/Mineable now] & [ANN] [SRN] SirenaProject - collective help for profit [Mineable now]

Code:
https://github.com/SirenaProject/SirenaCoin/blob/main/SirenaProject-main.zip

Check on Virustotal which detected Malware


Additional edits
Malware spreading fraudsters have created new accounts by creating the same thread and with the thread locked.

Account name CoronelsN

ANN
[ANN] [NSR] SIR - crypto messenger for communication (FiroPOW/Fast start)
BABY SHOES
sr. member
Activity: 294
Merit: 433
HODL - BTC
Re: Report Malware and Suspicious Links here so Mods can take Action !
September 23, 2023, 06:38:52 PM
#1361
It seems that these gangs are not tired of continuing to spread malware by spreading it in self-moderated threads.
With accounts created in 2021 created simultaneously and now waking up again to spread it.

Account name:
Fatendisto - Create October 01, 2021, 06:38:54 PM
vikolkolpet - Create October 01, 2021, 06:40:37 PM
hafuterkina - Create October 01, 2021, 06:42:27 PM
jugujikolesad - Create October 01, 2021, 06:49:15 PM
Kerikostaw - Create October 01, 2021, 06:53:15 PM
ANN
Berto Coin - Your Very Own 3D Printed Bitcoin
Alfalah Coin - The Ultimate Crypto Innovation for Charity & Local Businesses
PID Coin - Empowering Internet Users with Personal Data Ownership
Modic Coin (MODIC) - Your Modern Investment Coin
StefanCoin - Your Politically Correct, Decentralized Coin
Fake Github
Code:
https://github.com/berto-coin/berto-coin/releases/tag/v1.2.0
https://github.com/Alfalah-Coin/Core/releases/tag/v1.1.3
https://github.com/Pid-Coin/Core/releases/tag/v1.1.1
https://github.com/Modic-Coin/modic-coin/releases/tag/v1.3.3
https://github.com/Stefan-Coin/Core/releases/tag/v1.0.2
The file size is the same as yesterday above
Checking on Virustotal detected a trojan virus/malware
Code:
https://www.virustotal.com/gui/file/1d5a517283b717ceb309b1a524de9e34d3ae9553f5111ba4b87be1c907e7e9a3
https://www.virustotal.com/gui/file/c47fde0015a1f5f3d39ffb4522b54f37c3528833ccca7b24e2839c9077388b3a?nocache=1
https://www.virustotal.com/gui/file/1362f6dd1a93d80b8134512f2848890b812326feb3c55b0cd95e1f6a4b38653c?nocache=1
https://www.virustotal.com/gui/file/a512218aa9ce5b4dd1619679d34ed8d944c08348ed5009840ac2721f37f4b088?nocache=1
https://www.virustotal.com/gui/file/4810f16c9f6dec19a9fe38405634a893cf12cbb1f78dfa84232356a84591a6df?nocache=1
BABY SHOES
sr. member
Activity: 294
Merit: 433
HODL - BTC
Re: Report Malware and Suspicious Links here so Mods can take Action !
September 22, 2023, 08:03:07 PM
#1360
Found fake threads by spreading viruses from apps downloaded from fake GitHub,

ANN: https://bitcointalksearch.org/topic/--5467770
Account: tawaresder

Fake GitHub: (Created 41 minutes ago)
Code:
https://github.com/bitxor-coin/bitxor-coin/releases/tag/v1.0.3


Virustotal: https://www.virustotal.com/gui/file/545d03832a26a05559d378c2669c97e5af0a84303c3830b701afad496dc88559


ANN: https://bitcointalksearch.org/topic/--5467768
Account: Ujetanokilk

Fake GitHub: (Made a few hours ago)
Code:
https://github.com/thewebers-coin/thewebers-coin/releases/tag/v1.0.1
Virustotal: https://www.virustotal.com/gui/file/24e7c50efa47ecbd08a1e556b5c3e034b5e6f4d5c09fa7146865021bb12052ef



ANN: https://bitcointalksearch.org/topic/--5467764
Account: ikopreditero

Fake GitHub:
Code:
https://github.com/Scrooge-Coin/Scrooge-Coin/releases/tag/v1.2.1


Virustotal: https://www.virustotal.com/gui/file/c625324960a6c20b41472c901c6521a9bc92d75edaf0f42a45c93892fe1f5b11


ANN: https://bitcointalksearch.org/topic/--5467771
Account: gattokoter

Fake GitHub:
Code:
https://github.com/Capy-Coin/Core/releases/tag/v1.2.2


Virustotal: https://www.virustotal.com/gui/file/bf3e4c13e6f965d38d88087e8ef861d9acf2d8eb9398178e679c19d28214d2b7?nocache=1


ANN: https://bitcointalksearch.org/topic/--5467759
Account: likkosader

Fake GitHub:
Code:
https://github.com/Shmingus-Coin/Core/releases/tag/v1.1.0


Virustotal: https://www.virustotal.com/gui/file/c6bf52a2d0904e1ec337401ddebd782885e505ffc126f4a8838678d6ef2793bf
Lafu
legendary
Activity: 3136
Merit: 3213
Re: Report Malware and Suspicious Links here so Mods can take Action !
September 22, 2023, 10:05:10 AM
#1359
Quote from: light_warrior on September 21, 2023, 01:53:49 PM
I discovered a fake topic here with a link to github. And there I downloaded and checked the file that this comrade advertises.
To Lafu, is that right?
Awesome light_warrior , nice catch on all that fake links and fake topics and thanks for keep your eyes open and reporting them and write in here.
Yes it is right how you have posted in here the last one and it helps a lot if i or the moderators or anybody else searching for.
Its easier to hunt the hackers down with that records in the future.
light_warrior
copper member
Activity: 588
Merit: 926
Re: Report Malware and Suspicious Links here so Mods can take Action !
September 21, 2023, 01:53:49 PM
#1358
I discovered a fake topic here with a link to github. And there I downloaded and checked the file that this comrade advertises. Virustotal shows that this file is not safe. There's a trojan in there.

Link to topic - Litecoin Core integration/staging tree

The comrade who posted the topic - lafotihgyt Banned

Link to github

Code:
https://github.com/lite-coin/lite-coin/releases/tag/v1.3.3

Link to Virustotal

To Lafu, is that right?

UPD

I also found several other topics with the same content. The file names are different, but the content is the same

1. Commie Coin - Your Ticket to Financial Equality

Code:
https://github.com/commie-coin/commie-coin/releases/tag/v1.3.3

2. ServicesCoin - Empowering Small Businesses

Code:
https://github.com/services-coin/core/releases/tag/v1.1.3

3. CryptoNote Cryptocurrency Protocol Reference

Code:
https://github.com/medical-coin/core/releases/tag/v1.1.0
Lafu
legendary
Activity: 3136
Merit: 3213
Re: Report Malware and Suspicious Links here so Mods can take Action !
September 21, 2023, 07:28:09 AM
#1357
And we have a new Fake Ann Thread with a new Fake Github Account download link with Malware for Luckcoin!

Fake Github : github.com/luck-network

Account : CoinQuest  <--- Please ban or Lock that Account and delete the Thread
Last post from that Account was back in January 12, 2021 , hacked or sold Account

Fake Ann Thread : [ANN][2POW] Luck - A new consensus algorithm to eliminate large mining pools

Quote from: ?? on ??
Wallet
Code:
https://github.com/luck-network/LUCKcoin/releases

Original Ann Thread : [ANN][2POW] Luck - A new consensus algorithm to eliminate large mining pools

Account : Sherlock.Holmes

This post is also a reference for the Github Report !
Lafu
legendary
Activity: 3136
Merit: 3213
Re: Report Malware and Suspicious Links here so Mods can take Action !
September 19, 2023, 01:01:40 PM
#1356
Quote from: Bitcoin_Arena on September 19, 2023, 08:38:41 AM
These people trying to spread malware are now becoming crafty. This particular one posted a link to a Telegram channel where the malware is uploaded. Previous posts in the channel indicated that they used to post GitHub links of accounts that have since been deleted/banned because of trying to spread malicious files.
Nice catch Bitcoin_Arena , and yes this hackers never sleeping and have new ideas how to spread there Malware shit download links.
But as long we or a few keep there eyes open and searching for them they have no chance in the long term.
Its easy to get them if you know where and how to search.


And we have already a new Fake Ann with the Fake Github download link for perfixcoin !

Fake Github : github.com/perfix-coin

Account : Pumapipa  <--- Please ban or Lock that Account and delete the Thread
The last post of this Account was back in July 11, 2019 , hacked or sold Account

Fake Ann Thread :  [ANN] PerFix - Trusted & Secure Crypto Project (POW+POS)

Quote from: ?? on ??
Code:
https://github.com/perfix-coin/Perfix/releases/download/1.15/PerFix.zip

This post is also a reference for the Github Report ! 
Bitcoin_Arena
copper member
Activity: 2114
Merit: 1814
฿itcoin for all, All for ฿itcoin.
Re: Report Malware and Suspicious Links here so Mods can take Action !
September 19, 2023, 08:38:41 AM
#1355
These people trying to spread malware are now becoming crafty. This particular one posted a link to a Telegram channel where the malware is uploaded. Previous posts in the channel indicated that they used to post GitHub links of accounts that have since been deleted/banned because of trying to spread malicious files.

The account is fairly old, so probably hacked.

Here is another one

Hachiman  Ban or lock

ANN: Good news for KS0 owners ! https://ninjastic.space/post/62863058

Virustotal results: https://www.virustotal.com/gui/file/0aea26ef40526c8f352e09e9d14a7fe7a0663046f08090b6877b5d63bb0b4bc3 (21 security vendors flagged the file as malicious)

Fake Telegram Channel Link
Code:
https://t.me/RocketMinerBest

The zipped file uploaded there contains an executable file that is malicious
Code:
ICERIVER_UPD_FWARE.exe
Lafu
legendary
Activity: 3136
Merit: 3213
Re: Report Malware and Suspicious Links here so Mods can take Action !
September 18, 2023, 01:09:00 PM
#1354
Quote from: light_warrior on September 18, 2023, 08:09:27 AM
Here one comrade (most likely a hacked account) posted a thread with a phishing link to download the wallet. Please ban this comrade. I think he deserves it. So that he will not continue to spread such nasty things.

zaharalaqila

Nice catch light_warrior , and yes you was right with the Fake download link and that the Account is hacked !
Maybe next time you catch something like that you can write more information in a quote with the Github made in code format in your post like the following.

Quote

Download links:
Code:
https_://github.com/perfix-coin/Gminer
Source : https://ninjastic.space/search?author=zaharalaqila

With that its easier for the Moderators and me to find out if the Link was already posted here on the forum.
This also helps in future if you searching for Fake Github Accounts.
light_warrior
copper member
Activity: 588
Merit: 926
Re: Report Malware and Suspicious Links here so Mods can take Action !
September 18, 2023, 08:09:27 AM
#1353
Here one comrade (most likely a hacked account) posted a thread with a phishing link to download the wallet. Please ban this comrade. I think he deserves it. So that he will not continue to spread such nasty things.

zaharalaqila Banned

Proof

https://bitcointalksearch.org/topic/--5467208
Lafu
legendary
Activity: 3136
Merit: 3213
Re: Report Malware and Suspicious Links here so Mods can take Action !
September 16, 2023, 07:45:46 PM
#1352
We have new Fake Ann Threads with Fake Github Accounts for Azzure Core and Hlux !

Fake Github : github.com/Azzure-Network

Account : Niterionaz  <--- Please ban or Lock that Account and delete the Thread
This user recently woke up from a long period of inactivity.
Registered since September 30, 2021 , hacked or sold Account

Fake Ann Thread :  Azzure Core Integration/Staging Repository

Quote from: ?? on ??
Azzure Core Integration/Staging Repository
Code:
https://github.com/Azzure-Network/Azzure/releases/tag/v1.0.0


Fake Github : github.com/Hilux-Cryptocurrency
Real Github : github.com/swatchie-1/hilux

Account : Reikxopsaa  <--- Please ban or Lock that Account and delete the Thread
This user recently woke up from a long period of inactivity.
Registered since September 30, 2021 , hacked or sold Account

Fake Ann Thread : Hlux Cryptocurrency

Quote from: ?? on ??
HILUX
Code:
https://github.com/Hilux-Cryptocurrency/Hilux/releases/tag/v1.2.1

Original Ann Thread :  [ANN] HILUX (HLX) | Since 2018 | Decentralized


This post is also a reference for the Github Report ! 
Lafu
legendary
Activity: 3136
Merit: 3213
Re: Report Malware and Suspicious Links here so Mods can take Action !
September 11, 2023, 06:42:29 PM
#1351
We have again some Fake Miner Thread with a Fake Github with Malware download Link for Miner Health Check Script !

Fake Github was just created 40 Minutes ago

Fake Github : github.com/miner-healthcheck
Real Github : github.com/soar/miner-healthcheck

Account : BIUKLENOJ  <--- Please ban or Lock that Account and delete the Thread
This user recently woke up from a long period of inactivity.
Registered since September 30, 2021 , hacked or sold Account

Fake Miner Thread : Miner Health Check Script

Quote from: ?? on ??
Download the Miner Health Check Script today and enjoy uninterrupted mining!
Code:
https://github.com/miner-healthcheck/software/releases/tag/v1.4.0


And another 2 Fake Ann Threads !

Fake Github : github.com/btdex-network
Real Github : github.com/btdex

Account : atykioder  <--- Please ban or Lock that Account and delete the Thread
This user recently woke up from a long period of inactivity.
Registered since September 30, 2021 , hacked or sold Account

Fake Ann Thread : BTDEX: A Decentralized Exchange on the Signum Blockchain

Quote from: ?? on ??
Code:
https://github.com/btdex-network/btdex/releases/tag/v0.6.7

And the other one from the same Account here:

Fake Github : github.com/shiba-blockchain

Fake Ann Thread : 公告】ShibaCoin - 开采获取,不是 ShibaToken!


Next Fake Ann Thread is now posted for Angelcoin !

Fake Github : github.com/angel-coin
Real Github : github.com/angelcoinmoney/angelcoin

Account : Xafterdipo  <--- Please ban or Lock that Account and delete the Thread
This user recently woke up from a long period of inactivity.
Registered since September 30, 2021 , hacked or sold Account

Fake Ann Thread : Angelcoin - Your Gateway to Cryptocurrency Investment

Quote from: ?? on ??
Code:
https://github.com/angel-coin/angel/releases/tag/v1.0.0

Original Ann : [ANN] Crypto with 2 types of investment;10% referral for good;GUI vanitygen plus

This post is also a reference for the Github Report !  
Bitcoin_Arena
copper member
Activity: 2114
Merit: 1814
฿itcoin for all, All for ฿itcoin.
Re: Report Malware and Suspicious Links here so Mods can take Action !
September 10, 2023, 06:21:46 PM
#1350
I think Blur network has become a target of this malware creators

Here is another one

Ikaretinol  Banned!

ANN: Salad - Earn Rewards from Your PC

Virustotal results: https://www.virustotal.com/gui/file/a2cf79e11ada1cf92c4841383a5b1bdda9891bc1a443bd047fcc9555dbd78ea7?nocache=1 (22 security vendors flagged the file as malicious)

Fake Github Link
Code:
https://github.com/salad-technologies/salad/releases/tag/v1.2.4

The Read.md file is pretty much a copy and paste of that of Blur network

Real - https://github.com/blur-network/blur#readme
Fake - https://github.com/salad-technologies/salad#readme
Lafu
legendary
Activity: 3136
Merit: 3213
Re: Report Malware and Suspicious Links here so Mods can take Action !
September 10, 2023, 01:32:23 PM
#1349
And there is another new Fake Miner Topic with Malware download Link !

Fake Github : github.com/Silent-Crypto-Miner
Real Github : github.com/UnamSanctam/SilentCryptoMiner

Account : batabaskots  <--- Please ban or Lock that Account and delete the Thread
This user recently woke up from a long period of inactivity.
Registered since September 30, 2021 , hacked or sold Account

Fake Thread : SilentCryptoMiner - Miner for ETC, RVN, XMR, RTM & many more

Quote from: ?? on ??
Downloads:
Code:
https://github.com/Silent-Crypto-Miner/Miner/releases/tag/v3.3.1


And another Fake Ann with an Fake github for Benchmark Mining !

Fake Github : github.com/GPU-Benchmark-Mining


Account : arkimonter  <--- Please ban or Lock that Account and delete the Thread
This user recently woke up from a long period of inactivity.
Registered since September 30, 2021 , hacked or sold Account

Quote from: ?? on ??
**GPUBenchmarkMining**
Code:
https://github.com/GPU-Benchmark-Mining/Miner/releases/tag/v1.4.0


And the next Fake Ann with Malware download Link !

Fake Github : github.com/BlurNetwork
Real Github : github.com/blur-network

Account : Poosveltiz  <--- Please ban or Lock that Account and delete the Thread
This user recently woke up from a long period of inactivity.
Registered since September 30, 2021 , hacked or sold Account

Fake Thread : Blur Network - Privacy and Decentralization in Harmony

Quote from: ?? on ??
Code:
https://github.com/BlurNetwork/Blur/releases/tag/v0.1.9.9.7


And another Fake Ann here for , Twitch Drops Miner

Fake Github : github.com/TwitchDropsMiner
Real Github : github.com/DevilXD/TwitchDropsMiner

Account : SaulGarciapo  <--- Please ban or Lock that Account and delete the Thread
This user recently woke up from a long period of inactivity.
Registered since September 30, 2021 , hacked or sold Account

Fake Ann Thread : Twitch Drops Miner - Streamlined Twitch Drop Collection

Quote from: ?? on ??
Code:
https://github.com/TwitchDropsMiner/Miner


And here is the next one !

Fake Github : github.com/salad-technologies
Real Github : github.com/SaladTechnologies

Account : Ikaretinol  <--- Please ban or Lock that Account and delete the Thread

Quote from: ?? on ??
Code:
https://github.com/salad-technologies/salad/releases/tag/v1.2.4

And the next one !


Fake Github : github.com/Gupax
Real Github : github.com/hinto-janai/gupax

Account : Baibenhugg  <--- Please ban or Lock that Account and delete the Thread

Quote from: ?? on ??
Code:
https://github.com/Gupax/Gupax/releases/tag/v1.3.1

This post is also a reference for the Github Report !
Lafu
legendary
Activity: 3136
Merit: 3213
Re: Report Malware and Suspicious Links here so Mods can take Action !
September 10, 2023, 01:07:24 AM
#1348
We have 2 new Fake Miner Threads with Fake Github Accounts and Malware download Links , Rana Miner and Nano Miner !
Both Threads are selfmoderated as always from the Hackers.

Fake Github : github.com/Rana-Miner
Real Github : github.com/grunch/rana

Account : ladavitodot  <--- Please ban or Lock that Account and delete the Thread
This user recently woke up from a long period of inactivity.
Registered since September 30, 2021 , hacked or sold Account

Quote from: ?? on ??
Rana 🐸
Code:
https://github.com/Rana-Miner/Miner


Fake Github : github.com/Nano-Network
Real Github : github.com/nanopool/nanominer

Account : zikqueropiqo  <--- Please ban or Lock that Account and delete the Thread
This user recently woke up from a long period of inactivity.
Registered since September 30, 2021 , hacked or sold Account

Quote from: ?? on ??
Code:
https://github.com/Nano-Network/Nano-Miner/releases/tag/v3.8.5

This is also a reference for the Github Report and the Fake Github Accounts already reported and deleted !
Pages:
Bitcoin Forum>Other>Meta
Jump to: