Sir_Astral
|
![](https://bitcointalk.org/Themes/custom1/images/post/xx.gif) |
October 08, 2015, 09:03:18 PM |
|
unbelievable... no new files, one connection to 108.61.103.94 (firewall reports too), virustotal is clean is this superhidden newtech trojan ![Huh](https://bitcointalk.org/Smileys/default/huh.gif)
|
|
|
|
Bitcoininspace
|
![](https://bitcointalk.org/Themes/custom1/images/post/xx.gif) |
October 08, 2015, 09:06:08 PM |
|
Secret Feature? ![Roll Eyes](https://bitcointalk.org/Smileys/default/rolleyes.gif) That is probably the "all my coins are gone" part. ![Smiley](https://bitcointalk.org/Smileys/default/smiley.gif)
|
|
|
|
LordCoder
|
![](https://bitcointalk.org/Themes/custom1/images/post/xx.gif) |
October 08, 2015, 09:06:18 PM |
|
it's not super hidden, the RAT connects and disconnects whenever the hacker wants, it's simply hidden with another process.
|
|
|
|
Sir_Astral
|
![](https://bitcointalk.org/Themes/custom1/images/post/xx.gif) |
October 08, 2015, 09:10:58 PM |
|
it's not super hidden, the RAT connects and disconnects whenever the hacker wants, it's simply hidden with another process.
but how he can skip interactive firewall mode ![Huh](https://bitcointalk.org/Smileys/default/huh.gif)
|
|
|
|
ocminer
Legendary
Offline
Activity: 2660
Merit: 1240
|
![](https://bitcointalk.org/Themes/custom1/images/post/xx.gif) |
October 08, 2015, 09:11:47 PM |
|
it's not super hidden, the RAT connects and disconnects whenever the hacker wants, it's simply hidden with another process.
but how he can skip interactive firewall mode ![Huh](https://bitcointalk.org/Smileys/default/huh.gif) Maybe he uses Running Shadow mode
|
suprnova pools - reliable mining pools - #suprnova on freenet https://www.suprnova.cc - FOLLOW us @ Twitter ! twitter.com/SuprnovaPools
|
|
|
Sir_Astral
|
![](https://bitcointalk.org/Themes/custom1/images/post/xx.gif) |
October 08, 2015, 09:15:20 PM |
|
it's not super hidden, the RAT connects and disconnects whenever the hacker wants, it's simply hidden with another process.
but how he can skip interactive firewall mode ![Huh](https://bitcointalk.org/Smileys/default/huh.gif) Maybe he uses Running Shadow mode ![Huh](https://bitcointalk.org/Smileys/default/huh.gif) what mode Besides if this true it can be in every new wallet! altcoins are dying ![Sad](https://bitcointalk.org/Smileys/default/sad.gif)
|
|
|
|
kondiomir
Legendary
Offline
Activity: 1568
Merit: 1000
Twitter @Acimirov
|
![](https://bitcointalk.org/Themes/custom1/images/post/xx.gif) |
October 08, 2015, 09:17:18 PM |
|
Yeah, it may be in every passing virustotal wallet. ![Undecided](https://bitcointalk.org/Smileys/default/undecided.gif)
|
|
|
|
Sir_Astral
|
![](https://bitcointalk.org/Themes/custom1/images/post/xx.gif) |
October 08, 2015, 09:18:56 PM |
|
going to learn linux...
|
|
|
|
nikl
|
![](https://bitcointalk.org/Themes/custom1/images/post/xx.gif) |
October 08, 2015, 09:19:03 PM |
|
Yeah, it may be in every passing virustotal wallet. ![Undecided](https://bitcointalk.org/Smileys/default/undecided.gif) You can use new wallets only on VM
|
|
|
|
LordCoder
|
![](https://bitcointalk.org/Themes/custom1/images/post/xx.gif) |
October 08, 2015, 09:21:44 PM |
|
Well, I don't have firewall. Plus I don't have any AV so yes it's free cash for anyone clever.
|
|
|
|
kondiomir
Legendary
Offline
Activity: 1568
Merit: 1000
Twitter @Acimirov
|
![](https://bitcointalk.org/Themes/custom1/images/post/xx.gif) |
October 08, 2015, 09:26:13 PM |
|
So... next time - descent antivirus + firewall.
|
|
|
|
badam
|
![](https://bitcointalk.org/Themes/custom1/images/post/xx.gif) |
October 08, 2015, 09:26:26 PM |
|
The Java updater popped up in my AV too after 1 hour of running the wallet, but it seems that as soon as it was trying to activate my antivirus blocked it, i don't see any harm in my end
|
|
|
|
Sir_Astral
|
![](https://bitcointalk.org/Themes/custom1/images/post/xx.gif) |
October 08, 2015, 09:27:54 PM |
|
random time activation maybe ![Huh](https://bitcointalk.org/Smileys/default/huh.gif)
|
|
|
|
LordCoder
|
![](https://bitcointalk.org/Themes/custom1/images/post/xx.gif) |
October 08, 2015, 09:35:51 PM |
|
The Java updater popped up in my AV too after 1 hour of running the wallet, but it seems that as soon as it was trying to activate my antivirus blocked it, i don't see any harm in my end
That's the malware. Lucky you.
|
|
|
|
seedtrue
Legendary
Offline
Activity: 963
Merit: 1002
|
![](https://bitcointalk.org/Themes/custom1/images/post/xx.gif) |
October 08, 2015, 10:37:52 PM |
|
Fucking asshole, infected my computer and stole my Bitcoins!!! DO NOT DOWNLOAD THAT SHIT, I WILL REPORT SCAM NOW!
And fuck also Blockchain because didn't ask for 2FA.
Oops!!! There it goes ![Shocked](https://bitcointalk.org/Smileys/default/shocked.gif) Looking to confirm this. Wait some minutes. ![](https://ip.bitcointalk.org/?u=http%3A%2F%2Fs25.postimg.org%2Fvj2obkf1r%2Fscreenshot_337.png&t=663&c=PYpeEsoYiQkLwQ) The address that it was sent to is the same address the HIVE scammer used to steal coins. See this post https://bitcointalk.org/index.php?topic=1196413.0
|
|
|
|
|
MrPump
Member
![*](https://bitcointalk.org/Themes/custom1/images/star.gif)
Offline
Activity: 84
Merit: 10
follow me to make money
|
![](https://bitcointalk.org/Themes/custom1/images/post/xx.gif) |
October 09, 2015, 01:15:33 AM |
|
|
|
|
|
finder
|
![](https://bitcointalk.org/Themes/custom1/images/post/xx.gif) |
October 09, 2015, 02:53:32 AM |
|
I am strange, why every time someone BTC stolen, don't dig new Will his wallet with BTC together? It is obvious that your mind
|
|
|
|
LordCoder
|
![](https://bitcointalk.org/Themes/custom1/images/post/xx.gif) |
October 09, 2015, 08:04:27 AM |
|
That's the funny part, I am registered there lol.
|
|
|
|
leonak
|
![](https://bitcointalk.org/Themes/custom1/images/post/xx.gif) |
October 09, 2015, 08:09:01 AM |
|
it's not super hidden, the RAT connects and disconnects whenever the hacker wants, it's simply hidden with another process.
but how he can skip interactive firewall mode ![Huh](https://bitcointalk.org/Smileys/default/huh.gif) Maybe he uses Running Shadow mode Nice joke, I see what you did there ![Cheesy](https://bitcointalk.org/Smileys/default/cheesy.gif)
|
|
|
|
|