[WARNING] be careful about Electron Cash or the fork of Electrum for BCC

jackg

copper member

Activity: 2856

Merit: 3071

https://bit.ly/387FXHi lightning theory

Quote from: BitcoinNewsMagazine on August 12, 2017, 03:05:21 PM

No offense but with both Trezor and Ledger Nano S both supporting BCH now I think you have to be nuts to use Electron Cash. If you can't afford a hardware wallet you probably should not be in the game. At minimum just run your own Bitcoin ABC client.

I think you need to reassess those.

There have been quite a few security risks in relation to trezor especially and the unencrypted data it loads on startup. Look here
Ledger's have less dangers with them though however.

Quote from: Lionel on August 13, 2017, 08:58:33 PM

Quote from: BitcoinNewsMagazine on August 12, 2017, 03:05:21 PM

No offense but with both Trezor and Ledger Nano S both supporting BCH now I think you have to be nuts to use Electron Cash. If you can't afford a hardware wallet you probably should not be in the game. At minimum just run your own Bitcoin ABC client.

With Trezor or Ledger, can you claim your BCC with your seed as you do with Electron Cash?

And yes, they do suport quite a few altcoins, BCC being one of them.

Lionel

sr. member

Activity: 613

Merit: 305

Quote from: BitcoinNewsMagazine on August 12, 2017, 03:05:21 PM

No offense but with both Trezor and Ledger Nano S both supporting BCH now I think you have to be nuts to use Electron Cash. If you can't afford a hardware wallet you probably should not be in the game. At minimum just run your own Bitcoin ABC client.

With Trezor or Ledger, can you claim your BCC with your seed as you do with Electron Cash?

HCP

legendary

Activity: 2086

Merit: 4314

Quote from: BitcoinNewsMagazine on August 12, 2017, 03:05:21 PM

At minimum just run your own Bitcoin ABC client.

Can I ask why you consider Bitcoin ABC to be OK, but Electron Cash to be potentially "risky"? I don't really see any solid evidence that either of these wallet is "safer" than the other... especially when it comes to using binaries.

NOTE: I don't really see anything wrong with the ElectronCash sources... the modifications after the fork from Electrum look "OK"... however I can't comment on the "trustworthiness" of the binaries though.

pooya87

legendary

Activity: 3444

Merit: 10558

Quote from: ?? on ??

download it only from trusted sources!
h t tps://github . com/ electroncash / windows-linux

"trusted"?
where did you even get that link from? that is not the trusted link. you are probably knowingly or unknowingly spreading malicious wallet.

the link to the source which is known and also listed on http://www.electroncash.org/ is the following:
https://github.com/fyookball/electrum

BitcoinNewsMagazine

legendary

Activity: 1806

Merit: 1164

No offense but with both Trezor and Ledger Nano S both supporting BCH now I think you have to be nuts to use Electron Cash. If you can't afford a hardware wallet you probably should not be in the game. At minimum just run your own Bitcoin ABC client.

jackg

copper member

Activity: 2856

Merit: 3071

https://bit.ly/387FXHi lightning theory

Quote from: thantos on August 07, 2017, 10:24:23 AM

Quote from: kolloh on August 02, 2017, 12:49:58 PM

Quote from: jackg on August 02, 2017, 10:47:00 AM

Quote from: Niya on August 02, 2017, 10:34:54 AM

Quote from: jackg on July 31, 2017, 06:03:22 PM

It is definitely a piece of malware:
https://virustotal.com/en/file/66fc16d1d9782f32d0f73bd5cd109a3a9b89003b2eb70daa18d4205235d7f40a/analysis/1501537953/

I'd suggest, if you're going to use this, to use it on a computer you're happy completely wiping immediately after it has been used.
(this is a test of the windows binaries).

Try to test the official Electrum wallet for BTC on virustotal and you'll get the same warnings about malware, etc.

I just tried: https://virustotal.com/en/file/98dbe16fefd472b3fb68e2f6e491954cc21ef06cc489588d435b09ab15418f52/analysis/1501684402/
Try on your own if you don't trust me!

So stop spreading FUD and relate to serious stuff.

Yes it is probably harmless then.
It got flagged by the same AV as electrocash and for the same reason as well. So it's probably safe. Caution is still advisable though.

Yeah, it is likely just a false positive and isn't malware. I'd still advise running in a VM or a separate PC to keep it isolated from your primary Electrum wallets just as a good general security precaution.

Two things can come up false-positive for entirely different reasons unless you have taken out the suspect variable and determined that that is the only one causing false-positives? I don't know anything about AVs but if it reports the specific lines of code that are raising malware flags on both....

It is strange that one was only flagged on both though?
There were about 5/6 for the other electrum malware and this only has one. So there must have been those parts that were edited as well (that's probably part of the issue stated on other threads about having to manually find servers and datafiles whereas, the other electrum seeks them out automatically - there may be other features missing too - that are just perks to the software).

thantos

newbie

Activity: 23

Merit: 0

Quote from: kolloh on August 02, 2017, 12:49:58 PM

Quote from: jackg on August 02, 2017, 10:47:00 AM

Quote from: Niya on August 02, 2017, 10:34:54 AM

Quote from: jackg on July 31, 2017, 06:03:22 PM

It is definitely a piece of malware:
https://virustotal.com/en/file/66fc16d1d9782f32d0f73bd5cd109a3a9b89003b2eb70daa18d4205235d7f40a/analysis/1501537953/

I'd suggest, if you're going to use this, to use it on a computer you're happy completely wiping immediately after it has been used.
(this is a test of the windows binaries).

Try to test the official Electrum wallet for BTC on virustotal and you'll get the same warnings about malware, etc.

I just tried: https://virustotal.com/en/file/98dbe16fefd472b3fb68e2f6e491954cc21ef06cc489588d435b09ab15418f52/analysis/1501684402/
Try on your own if you don't trust me!

So stop spreading FUD and relate to serious stuff.

Yes it is probably harmless then.
It got flagged by the same AV as electrocash and for the same reason as well. So it's probably safe. Caution is still advisable though.

Yeah, it is likely just a false positive and isn't malware. I'd still advise running in a VM or a separate PC to keep it isolated from your primary Electrum wallets just as a good general security precaution.

Two things can come up false-positive for entirely different reasons unless you have taken out the suspect variable and determined that that is the only one causing false-positives? I don't know anything about AVs but if it reports the specific lines of code that are raising malware flags on both....

kolloh

legendary

Activity: 1736

Merit: 1023

Quote from: jackg on August 02, 2017, 10:47:00 AM

Quote from: Niya on August 02, 2017, 10:34:54 AM

Quote from: jackg on July 31, 2017, 06:03:22 PM

It is definitely a piece of malware:
https://virustotal.com/en/file/66fc16d1d9782f32d0f73bd5cd109a3a9b89003b2eb70daa18d4205235d7f40a/analysis/1501537953/

I'd suggest, if you're going to use this, to use it on a computer you're happy completely wiping immediately after it has been used.
(this is a test of the windows binaries).

Try to test the official Electrum wallet for BTC on virustotal and you'll get the same warnings about malware, etc.

I just tried: https://virustotal.com/en/file/98dbe16fefd472b3fb68e2f6e491954cc21ef06cc489588d435b09ab15418f52/analysis/1501684402/
Try on your own if you don't trust me!

So stop spreading FUD and relate to serious stuff.

Yes it is probably harmless then.
It got flagged by the same AV as electrocash and for the same reason as well. So it's probably safe. Caution is still advisable though.

Yeah, it is likely just a false positive and isn't malware. I'd still advise running in a VM or a separate PC to keep it isolated from your primary Electrum wallets just as a good general security precaution.

jackg

copper member

Activity: 2856

Merit: 3071

https://bit.ly/387FXHi lightning theory

Quote from: Niya on August 02, 2017, 10:34:54 AM

Quote from: jackg on July 31, 2017, 06:03:22 PM

It is definitely a piece of malware:
https://virustotal.com/en/file/66fc16d1d9782f32d0f73bd5cd109a3a9b89003b2eb70daa18d4205235d7f40a/analysis/1501537953/

I'd suggest, if you're going to use this, to use it on a computer you're happy completely wiping immediately after it has been used.
(this is a test of the windows binaries).

Try to test the official Electrum wallet for BTC on virustotal and you'll get the same warnings about malware, etc.

I just tried: https://virustotal.com/en/file/98dbe16fefd472b3fb68e2f6e491954cc21ef06cc489588d435b09ab15418f52/analysis/1501684402/
Try on your own if you don't trust me!

So stop spreading FUD and relate to serious stuff.

Yes it is probably harmless then.
It got flagged by the same AV as electrocash and for the same reason as well. So it's probably safe. Caution is still advisable though.

Niya

hero member

Activity: 811

Merit: 512

Enhalo Mining

Quote from: jackg on July 31, 2017, 06:03:22 PM

It is definitely a piece of malware:
https://virustotal.com/en/file/66fc16d1d9782f32d0f73bd5cd109a3a9b89003b2eb70daa18d4205235d7f40a/analysis/1501537953/

I'd suggest, if you're going to use this, to use it on a computer you're happy completely wiping immediately after it has been used.
(this is a test of the windows binaries).

Try to test the official Electrum wallet for BTC on virustotal and you'll get the same warnings about malware, etc.

I just tried: https://virustotal.com/en/file/98dbe16fefd472b3fb68e2f6e491954cc21ef06cc489588d435b09ab15418f52/analysis/1501684402/
Try on your own if you don't trust me!

So stop spreading FUD and relate to serious stuff.

pooya87

legendary

Activity: 3444

Merit: 10558

Quote from: jackg on July 31, 2017, 06:03:22 PM

It is definitely a piece of malware:
https://virustotal.com/en/file/66fc16d1d9782f32d0f73bd5cd109a3a9b89003b2eb70daa18d4205235d7f40a/analysis/1501537953/

I'd suggest, if you're going to use this, to use it on a computer you're happy completely wiping immediately after it has been used.
(this is a test of the windows binaries).

i agree with HCP.
this most probably is the same false positive that people have been reporting about Electrum for ages on different releases. and virustotal is known to have these types of false positive about any binary.

malware is the last thing you should worry about. the Electron Cash client is an anonymously signed binary that you are willingly giving your private keys (seed or wallet file) to. stealing your coins is going to be easy and anonymous without needing a malware.

HCP

legendary

Activity: 2086

Merit: 4314

Quote from: jackg on July 31, 2017, 06:03:22 PM

It is definitely a piece of malware:

So ONE detection (by an AntiVirus app that I've never heard of... 9th result on google for WhiteArmor Antivirus??!?) while 61 others come up clean = "definitely"? Huh

Don't get me wrong... I'm not endorsing nor claiming that this software is legit... but it may not be time for the torches and pitchforks just yet...

jackg

copper member

Activity: 2856

Merit: 3071

https://bit.ly/387FXHi lightning theory

It is definitely a piece of malware:
https://virustotal.com/en/file/66fc16d1d9782f32d0f73bd5cd109a3a9b89003b2eb70daa18d4205235d7f40a/analysis/1501537953/

I'd suggest, if you're going to use this, to use it on a computer you're happy completely wiping immediately after it has been used.
(this is a test of the windows binaries).

pooya87

legendary

Activity: 3444

Merit: 10558

the http://www.electroncash.org/ website which is being blocked now by my Antivirus as a malicious site (Eset Smart Security 10.1) so i can not and will not check and see if the GitHub repository that people advertise is also listed there or not (don't have a sandbox to check).

but i see people advertise this as their repository: https://github.com/fyookball/electrum
this is the same person: https://bitcointalksearch.org/user/jonaldfyookball-261027

and there is a Warning issued by ThomasV (the creator and maintainer of the original Electrum repository) which i will share here:

Quote from: https://twitter.com/electrumwallet/status/891935330235973633

WARNING: "Electron Cash" will copy all your Electrum wallets to its own directory, and their binaries are anonymous:

this is the linked commit: https://github.com/fyookball/electrum/commit/0fc02cceee9d3465849dcecb2c1126de7cf65550

Note: the BCC version was renamed to "Electron cash" instead of "Electrum cash". and it is just a rename. so don't be confused.

Plain English aka Newbie friendly
do two things:
1. if you wanted to use Electron Cash, download and compile from source code NOT the binaries.
2. follow https://electrum.org/bcc2.txt you can use a live linux for your "another machine"

Topic: [WARNING] be careful about Electron Cash or the fork of Electrum for BCC (Read 2951 times)