Bitcoin Forum

Bitcoin => Bitcoin Discussion => Topic started by: PatsTB12 on February 08, 2018, 04:59:21 AM



Title: Deleted
Post by: PatsTB12 on February 08, 2018, 04:59:21 AM
Deleted


Title: Re: Be Careful! Confirmed malware theft from fork clients
Post by: Kakmakr on February 08, 2018, 05:20:23 AM
What I find remarkable is that this Malware evolved to create a Vanity address that looks very similar to the victims original address. I think the reason those funds has not moved yet, is because the creator of this Malware has to sort between 1000s of newly created addresses to grab those funds.

This might be a automated process, but I think these guys are manually doing this. The "Man in the middle" attack is more popular than usual, now that a exploit in Ledger was identified.

Thank you for posting this, from now on I will take closer attention to the whole address. ^hmmmmmm^


Title: Re: Be Careful! Confirmed malware theft from fork clients
Post by: pooya87 on February 08, 2018, 05:24:58 AM
Paste: 1JwdKyvy1xTGUNV7ypPBi9eUGYoFGwo31h

this is not a valid bitcoin address because of invalid checksum. you can not send bitcoin to this address.

Quote
my funds haven't been moved, they're just sitting there.

how? are you sure you pasted the address which currently has your funds here correctly?

I've synced half a dozen clients and light wallets before learning to use the claimer.py script.

it is my guess but maybe it is a bug in that script that is making new and possibly invalid addresses like this.


Title: Re: Be Careful! Confirmed malware theft from fork clients
Post by: diatamariono on February 08, 2018, 05:29:15 AM
Thanks for the suggestion, I try to be more careful in the future.