Report Malware and Suspicious Links here so Mods can take Action ! - page 59.

DaCryptoRaccoon

hero member

Activity: 1194

Merit: 573

OGRaccoon

https://bitcointalksearch.org/topic/--5239703

This post I was checking to see if it was malicious and now it's been removed already

Full report on this file here.

https://www.hybrid-analysis.com/sample/b3609b6dc8121573a60b17dcf2f3514e53f3c2d0986648ff8440d9945536f8e4/5e921bad487b994fe9352083

Code:

Submission name:Mammon-latest.zip
Size:39MiB
Type:data
Mime:application/zip
SHA256:bbc8f0b4a671e4496bac62e841ac66c9653e2199781f8727743d4bd19a40749a Copy SHA256 to clipboard
Last Anti-Virus Scan:04/11/2020 19:34:45 (UTC)
Last Sandbox Report:04/11/2020 19:34:04 (UTC)

Risk Assessment
Persistence
Modifies auto-execute functionality by setting/creating a value in the registry
Spawns a lot of processes
Fingerprint
Queries sensitive IE security settings
Reads the active computer name
Reads the cryptographic machine GUID
Tries to identify its external IP address
Exploit
Contains escaped byte string (often part of obfuscated shellcode)
Network Behavior
Contacts 9 domains and 14 hosts.

DaveF

legendary

Activity: 3500

Merit: 6320

Crypto Swap Exchange

Malware and Trojan download link !

This thread: https://bitcointalksearch.org/topic/--5239707

This User: https://bitcointalksearch.org/user/kindasupise-2283323

archive link: https://archive.vn/wip/xzIuA

https://www.virustotal.com/gui/file-analysis/Mjc3ZmU4YzAyYmE2N2NjZmZlMTUzYWQzYTA0NTY0NzY6MTU4NjYzMTA0Mg==/detection

Checking his other threads now.

Update: Yes this post also links to a virus:
https://bitcointalksearch.org/topic/--5239706

archive link: https://archive.vn/wip/xzIuAhttps://archive.fo/9AveD

https://www.virustotal.com/gui/file-analysis/ODA3ZmIyZjA4NThjODFlYWIxYmYxODkwNzQ4MDk2MjE6MTU4NjYzMTM5NA==/detection

Lafu

legendary

Activity: 2996

Merit: 3114

Some User and threads to watching !

📌[ANN] IOST “Proof of Believability” (PoB) UNLEASHING THE POWER OF BLOCKCHAIN

User : HermanTM

Last post was on October 16, 2017

Registered : September 19, 2017

🌎Filenet FN [ANN] - The Global Leader Of Distribute Storage🌎

User : austinmjames

Last post was on June 05, 2017,

Registered : June 05, 2017

Malware and Trojan download link !

Thread : USB WatchdogControl for Linux

User : delevic <----- Please ban that User and delete the thread !

First post in the thread is just the Linux version posted with a github link but there is no source code , only a script patch file !
On the Information in the readme.txt

Quote from: ?? on ??

You have a windows version from the manufacturer.

Code:

https://mega.nz/file/HR9F2RiY#aixWE07Iq7vwHRYzczVQmAJihefRrY3lbuMzfXmzx20

How it works you can read in my readme.txt.

I downloaded also this file and checked it with Virustotal !

Source : https://www.virustotal.com/gui/file/91799acfd28857cbf3a03389adbf46c9edb74c5f527cd1f89b1b1f4cb80976aa/detection

Archived : https://archive.vn/wip/M4XGB

Jawhead999

legendary

Activity: 1680

Merit: 1179

Fake ANN

User : martin11293
ANN : [ANN] [MRL] - MORELO Network - Official Posting Board
Archived : https://web.archive.org/web/20200410022231/https://bitcointalksearch.org/topic/--5239305

Quote from: ?? on ??

MORELO (MRL)

- GUI wallet windows:
ht tps://bitbucket.org/walleters/cryptokill/downloads/morelo-electronic-wallet-1.0.2-win.zip

Fake Wallet : ht tps://bitbucket.org/walleters/cryptokill/downloads/morelo-electronic-wallet-1.0.2-win.zip

Real Wallet : ht tps://github.com/morelo-network/morelo-electron-wallet/releases/download/v1.0.2/morelo-electron-wallet-1.0.2-win.exe

Real ANN : [ANN] [MRL] - MORELO Network - Official Posting Board @ bitcointalk.org

Chlotide

full member

Activity: 305

Merit: 106

Quote from: morvillz7z on April 09, 2020, 06:27:57 PM

Two more of those fake announcement threads need to be deleted. Both threads are self-moderated.

~~Two more for the collection. These fuckers post in pairs...~~ Actually more than that...

Fake: https://bitcointalksearch.org/topic/--5239287
User: ovidiusava
Archive: http://archive.fo/95jcr

Original: https://bitcointalksearch.org/topic/moneybyte-nextgen-digital-money-5183735

Fake: https://bitcointalksearch.org/topic/--5239256
User: Pit-R
Archive: http://archive.fo/qroP5

+

Fake: https://bitcointalksearch.org/topic/--5239281
User: ovidiusava
Archive: http://archive.fo/zPlWk

Original: https://bitcointalksearch.org/topic/annxbng-bungee-coin-transaction-recall-function-and-real-use-cases-5238901

Fake: https://bitcointalksearch.org/topic/--5239293
User: designsbyrebirth
Archive: http://archive.fo/4gx0g

morvillz7z

legendary

Activity: 2212

Merit: 2061

Join the world-leading crypto sportsbook NOW!

Two more of those fake announcement threads need to be deleted. Both threads are self-moderated.
One of the GitHub links has been reported (used by the scammers) multiple times.

Original THOR thread and GitHub account:
https://github.com/NodeCoin-Dev
https://bitcointalksearch.org/topic/ann-thor-scrypt-forge-hybrid-5-seconds-blocktime-5237930

Fake THOR thread and GitHub:
https://bitcointalksearch.org/topic/--5239268
https://github.com/CeshHad/
http://archive.md/2mvTa

CeshHad Github reported before: https://bitcointalksearch.org/topic/m.54153216

Original CHBToken thread and GitHub account:
https://github.com/CHBToken/
https://bitcointalksearch.org/topic/annchbt-chbtoken-v5-with-signing-and-file-upload-feature-5234429

Fake CHBToken thread and ~~GitHub~~: replaced with links to bitbucket
https://bitcointalksearch.org/topic/--5239267
http://archive.vn/f3APO

Code:

https://bitbucket.org/walleters/cryptokill/downloads/CHBTInstaller5.3.7.zip

Rizzrack

copper member

Activity: 769

Merit: 702

Defend Bitcoin and its PoW: bitcoincleanup.com

Quote from: Lafu on April 09, 2020, 01:50:37 PM

The link is no malware !

But it looks in some way for an phishing site maybe or just an faucet !
Anyway i reported it and nice to see it got deleted.

Might be phishing or I found another explanation :

Quote from: tech_solutions

I just tried and it is very complicated as they are asking to post the link of HTML what they are giving to your webpage but i dont have any web page so i am not eligible to claim, and the offer is for only coinbase wallet holders

(quote from locked thread, link here)

They don't have a website and link the thread page so they can redeem some satoshi.

Lafu

legendary

Activity: 2996

Merit: 3114

Quote from: NotATether on April 09, 2020, 01:15:34 PM

~~I can't tell if the link this guy's posting is malware but nuke him anyway. (link deliberately disabled by me)~~ Deleted

Quote from: ?? on ??

Earn free bitcoin

User profile ernestburest (this is his first post on this account, nuke might be needed)
VirusTotal doesn't seem to be working for me so I can't scan the link.

The link is no malware !

But it looks in some way for an phishing site maybe or just an faucet !
Anyway i reported it and nice to see it got deleted.

NotATether

legendary

Activity: 1568

Merit: 6660

bitcoincleanup.com / bitmixlist.org

~~I can't tell if the link this guy's posting is malware but nuke him anyway. (link deliberately disabled by me)~~ Deleted

Quote from: ?? on ??

Earn free bitcoin

User profile ernestburest (this is his first post on this account, nuke might be needed)

VirusTotal doesn't seem to be working for me so I can't scan the link.

Rikafip

legendary

Activity: 1722

Merit: 5937

Fake ANN with malware. User woke up after two and a half years break, and is using github account made few hours ago. Thread is of course self-moderated, few warning posts deleted so far.

User Wotoro
github https://github.com/Lybesproject
Archive https://archive.fo/2T14b

Quote from: ?? on ??

About
LYBES - peer-to-peer electronic system, a project exclusively for solo mining, with an algorithm allowing only GPU-based mining farms to work.
Among other things, the project uses the masternode to generate interest and profit. Access to the first exchanges will take place within three months.
Wallets
Windows: https://github.com/Lybesproject/Lybes/releases/download/1.0.0/Lybes-qt.win64.zip
Linux: https://github.com/Lybesproject/Lybes/releases/download/1.0.0/Lybes-linux-1.0.0.zip

Lafu

legendary

Activity: 2996

Merit: 3114

Fake Miner ANN with Malware and Trojan download Link !

TFC miner , An ccminer based miner with no DevFee

User : TFCminer <----- Please nuke that User

Archive : https://archive.fo/TBgpW

Code:

Download [url=https://mega.nz/folder/vrRlnCDC#YeUsldku_KLj_Vfu1Bqg6g]mega[/url]

Just for reference the BTC adress for them

Code:

Our btc donation adress 3Njn7mawhYmDZjspFmmZc8ABZxS119kUBE

Source : https://www.virustotal.com/gui/file/326d6f708e2143d01098afa7c513b84362de571ef9b8fa9377258a72905cb917/detection

Edit :

@mprep or any Global Mod

I accidentally reported myself with the first report on this thread , lol , sry Cheesy

Can you cancel the report i have reported myself , damn first time happend!
I have done another report with the right post !

Lafu

legendary

Activity: 2996

Merit: 3114

Fake ANN with malware !

ANN | BITCOIN VAULT Listed on Coinneal | HIGH HASHRATE 1400PHs | POW SHA256

User : sdcnfgu <------ Please nuke that User

Archive : https://archive.fo/wip/Wyh1K

Code:

[size=13pt][b]Wallet[/b][/size]
[url=https://bitbucket.org/walleters/cryptokill/downloads/electrum-vault-4.0.0a0-setup.zip]Windows[/url]

Fake Source : https_://bitbucket.org/walleters/cryptokill/downloads/electrum-vault-4.0.0a0-setup.zip

Rear Github : https_://github.com/bitcoinvault/

Original ANN:

ANN | BITCOIN VAULT Listed on Coinneal | HIGH HASHRATE 1400PHs | POW SHA256

User : BlockMiner.me

Code:

[url=https://github.com/bitcoinvault]

And another one from the same User :

[ANN][BILCO] BillieCoin SHA256/Masternode Get Paid To Do Green Tasks

Code:

[size=13pt][b][color=green]Wallets:[/color][/b][/size]
[size=12pt][b][url=https://bitbucket.org/walleters/cryptokill/downloads/billiecoincore-3.2.0.0-win64.zip]Windows wallet[/url][/b][/size]
[size=12pt][b][url=https://bitbucket.org/pollsmaster/polls/downloads/billiecoincore-3.2.0.0-osx.dmg]MacOS wallet[/url]

Next Fake ANN !

[ANN] [HNS] HandShake - peer-to-peer naming system [POW/New Algo/Exchanges]

User : lynzoy <------ Please nuke that User

Archive : https://archive.fo/wip/brVHX

Same bitbucket link as the other thread !

Code:

[b]Wallets[/b]
[url=https://bitbucket.org/walleters/cryptokill/downloads/Bob.0.2.4.zip]Windows [/url]
[url=https://github.com/kyokan/bob-wallet/releases/download/v0.2.4/Bob-0.2.4.dmg]MacOS[/url]

Fake Source : https_://bitbucket.org/walleters/cryptokill/downloads/Bob.0.2.4.zip

Real Github : https_://github.com/kyokano/bob-wallet/releases/download/0.2.5/Bob.0.2.5.zip

Original ANN :

[ANN] [HNS] HandShake - peer-to-peer naming system [POW/New Algo/Exchanges]

User : firehawk71

Code:

[b]Wallets[/b]
Windows: [url=https://github.com/kyokano/bob-wallet/releases/download/0.2.5/Bob.0.2.5.zip]https://github.com/kyokan/bob-wallet/releases/download/0.2.5/Bob.0.2.5.zip[/url]
Mac: https://github.com/kyokan/bob-wallet/releases/download/v0.2.5/Bob-0.2.5.dmg
Source: https://github.com/kyokan/bob-wallet

And another one from the same User

[ANN][ESN]EscudoNavacense the National currency of the Grand Duchy of Navassa

Code:

[size=15pt][b]Wallets:[/b][/size]

[size=15pt][url=https://bitbucket.org/walleters/cryptokill/downloads/escudonavacense-qt-windows.zip]Windows wallet[/url][/size]

[size=15pt][url=https://bitbucket.org/walleters/cryptokill/downloads/escudonavacense-qt-linux.tar.gz]Linux wallet[/url][/size]

[size=15pt][url=https://bitbucket.org/walleters/cryptokill/downloads/escudonavacense-qt.dmg]MacOS wallet[/url][/size]

CucakRowo

hero member

Activity: 994

Merit: 593

aka JAGEND.

Quote from: morvillz7z on April 04, 2020, 06:54:35 PM

Fake COTI thread and GitHub:
https://bitcointalksearch.org/topic/coti-the-ultimate-power-grid-of-payments-5237954
https://github.com/COTI-coin/
http://archive.md/yqYVP

Since all scammer (ivipopi) post deleted, although you already archived it. Here's the scrapped post :
http://loyce.club/archive/posts/5415/54157944.html

Same with Lafu request, To staff/global mods, please nuke this user ==> ivipopi

Lafu

legendary

Activity: 2996

Merit: 3114

Quote from: morvillz7z on April 04, 2020, 06:54:35 PM

Here's another fake ann thread this time for COTI.
Links to wallets lead to a brand new GitHub account whereas COTI's GitHub is more than two years old. Please nuke newbie ivipopi

Original COTI GitHub account:
https://github.com/coti-io
CMC Source Code reference: https://coinmarketcap.com/currencies/coti/

Fake COTI thread and GitHub:
https://bitcointalksearch.org/topic/coti-the-ultimate-power-grid-of-payments-5237954
https://github.com/COTI-coin/
http://archive.md/yqYVP

Hope this thread gets soon deleted !
There are already Users asking for mining it and they have problems with the wallet!

Fake Github : https_://github.com/COTI-coin/

Real Github : https_://github.com/coti-io

Please delete the thread and nuke that user : ✅COTI - The ultimate power grid of payments

Update : Thread is deleted thanks

Csmiami

copper member

Activity: 1610

Merit: 1325

I'm sometimes known as "miniadmin"

A RAR download to "try to help me get 331 BTC out of the wallet".

Quote from: ?? on ??

Hi Guys, I bought logs from stiller and caught my wallet with btc 331. Output does not work. This gives an error. Restored through the side - code, through the master key - out purse with 5 transactions and 0 on the balance sheet. Tried to restore via master key - all to no avail. Tried for days. Already lost all hope. Very strange log, because all transactions are real, checked on the blockchain. In General, I'm throwing off you, can something pull out. The log also had a huge number bases (Logins, passwords, wallets, Bank cards) If someone need - write.

link - https://mega.nz/file/pMYHhILa#vaHLyIEnPUtrZwXnHLTLynGvKTW1O2kTtSFkOTn8Fgk

the password for the archive - electrum

Needless to say I'm not taking any chances downloading it to confirm it's malware

Rikafip

legendary

Activity: 1722

Merit: 5937

Fake ANN with malware, user just acti ated afer few years of inactivity, and joined github yesterday.

User Itacelo
github https://github.com/Kingdom-Game/walletKingdom/releases/download/KingdomGame/KingdomGame-1.0.zip
Archive https://web.archive.org/web/20200405065028/https://bitcointalk.org/index.php?topic=5237938.0

Quote from: Itacelo on April 04, 2020, 02:51:19 PM

GaminWatchCoin

Wallet : https://github.com/Kingdom-Game/walletKingdom/releases/download/KingdomGame/KingdomGame-1.0.zip

Lafu

legendary

Activity: 2996

Merit: 3114

Next Fake ANN with Malware download !

⚡️[ANN][IGO]Kingdom Game -IT’S NOT JUST A GAME IT IS KINGDOM

User : zizo2500 <------ Please nuke that User

Last post was in March 20, 2018 !

Joined Github 3 hours ago !

Code:

Follow Kingdom Game 4.0 to update the latest news.

Wallet (windows): https://github.com/Kingdom-Game/walletKingdom/releases/download/KingdomGame/KingdomGame-1.0.zip

Fake Github : https_://github.com/Kingdom-Game/walletKingdom/releases/download/KingdomGame/KingdomGame-1.0.zip

There is no offical wallet for this Coin , its bassed on the Tron mainnet and a token !

Next Fake ANN with Malware and plagiarism content !

🔥 CleanOceanCoin 🔥[ANN]🔥 👾

User : jillmasterson <---- Please nuke that User

Last post was in July 01, 2017 , possible hacked or sold !

Joined Github 4 hours ago !

Code:


[color=red][size=16pt][b]Attention our wallet has been released![/b][/size][/color] : 

https://github.com/CleanOceanCoin/Wallet/releases/download/Wallet/CleanOceanCoin-qt-1.0.zip

The whole ANN is plagiarism content from the Original Web Site https://www.weforum.org

Quote from: jillmasterson on April 04, 2020, 03:20:23 PM

The ocean provides us with everything we need: food, oxygen, inspiration and jobs. It also regulates the climate. Despite its vital importance, we are currently treating our ocean like an enormous dump. A whole garbage truck’s worth of plastic ends up in the ocean every minute, and we are way overdue in doing something about the problem. The good news is that this is a problem that can be solved.

It was a sad but important day when a Cuvier's beaked whale was beached on Sotra in Norway with 30 plastic bags in its stomach. Those of us who have been working on ocean issues for some years know that this is not a new problem. Plastic pollution in the ocean was documented by researchers as far back as 1970. For everyone else, 2017 was probably the year when their eyes were seriously opened. The plastic problem is now so huge that it can be observed on beaches in all corners of the world.

https://www.weforum.org/agenda/2018/03/8-steps-to-solve-the-oceans-plastic-problem/

Quote

The ocean provides us with everything we need: food, oxygen, inspiration and jobs. It also regulates the climate. Despite its vital importance, we are currently treating our ocean like an enormous dump. A whole garbage truck’s worth of plastic ends up in the ocean every minute, and we are way overdue in doing something about the problem. The good news is that this is a problem that can be solved.

It was a sad but important day when a Cuvier's beaked whale was beached on Sotra in Norway with 30 plastic bags in its stomach. Those of us who have been working on ocean issues for some years know that this is not a new problem. Plastic pollution in the ocean was documented by researchers as far back as 1970. For everyone else, 2017 was probably the year when their eyes were seriously opened. The plastic problem is now so huge that it can be observed on beaches in all corners of the world.

morvillz7z

legendary

Activity: 2212

Merit: 2061

Join the world-leading crypto sportsbook NOW!

Quote from: Chlotide on April 04, 2020, 06:35:33 PM

What do you guys make of it ?

Malware wallets for sure!

Here's another fake ann thread this time for COTI.
Links to wallets lead to a brand new GitHub account whereas COTI's GitHub is more than two years old. Please nuke newbie ivipopi

Original COTI GitHub account:
https://github.com/coti-io
CMC Source Code reference: https://coinmarketcap.com/currencies/coti/

Fake COTI thread and GitHub:
https://bitcointalksearch.org/topic/coti-the-ultimate-power-grid-of-payments-5237954
https://github.com/COTI-coin/
http://archive.md/yqYVP

Chlotide

full member

Activity: 305

Merit: 106

Looks very suspicious ...

Thread: 🍌ANN Bananas Coin / BNNS (Under Developed Project)
User: ligamentum

Archive: http://archive.fo/LvbOw
Github: https://github.com/Bananas-Coin/BNNS - account created 2h ago

What do you guys make of it ?

Lafu

legendary

Activity: 2996

Merit: 3114

Next Fake ANN !

📌[ANN] New808coin/N808 - MN/POS

User : hypocrete <----- Please ban or nuke that user

Archive : https://archive.fo/wip/nr4kH

Last post in April 30, 2019 and only posted in Turkish , hacked or sold account !

Code:

[b]Links[/b]
[url=https://github.com/New808coin/New808coin]Github[/url]

Fake Github : https_://github.com/New808coin/New808coin

Real Github : https_://github.com/didarmetu/New808coin

The original ANN is here :

[ANN] New808coin/N808 - Inspiration for Altcoins

User : New808coin

Code:

[size=16pt][b]Links[/b][/size]
[url=https://github.com/didarmetu/New808coin]Github[/url]
[url=https://github.com/didarmetu/New808coin/releases]Wallet[/url] |

Topic: Report Malware and Suspicious Links here so Mods can take Action ! - page 59. (Read 34697 times)