Sir_Astral
|
|
October 08, 2015, 09:03:18 PM |
|
unbelievable... no new files, one connection to 108.61.103.94 (firewall reports too), virustotal is clean is this superhidden newtech trojan
|
|
|
|
Bitcoininspace
|
|
October 08, 2015, 09:06:08 PM |
|
Secret Feature? That is probably the "all my coins are gone" part.
|
|
|
|
LordCoder
|
|
October 08, 2015, 09:06:18 PM |
|
it's not super hidden, the RAT connects and disconnects whenever the hacker wants, it's simply hidden with another process.
|
|
|
|
Sir_Astral
|
|
October 08, 2015, 09:10:58 PM |
|
it's not super hidden, the RAT connects and disconnects whenever the hacker wants, it's simply hidden with another process.
but how he can skip interactive firewall mode
|
|
|
|
ocminer
Legendary
Offline
Activity: 2688
Merit: 1240
|
|
October 08, 2015, 09:11:47 PM |
|
it's not super hidden, the RAT connects and disconnects whenever the hacker wants, it's simply hidden with another process.
but how he can skip interactive firewall mode Maybe he uses Running Shadow mode
|
suprnova pools - reliable mining pools - #suprnova on freenet https://www.suprnova.cc - FOLLOW us @ Twitter ! twitter.com/SuprnovaPools
|
|
|
Sir_Astral
|
|
October 08, 2015, 09:15:20 PM |
|
it's not super hidden, the RAT connects and disconnects whenever the hacker wants, it's simply hidden with another process.
but how he can skip interactive firewall mode Maybe he uses Running Shadow mode what mode Besides if this true it can be in every new wallet! altcoins are dying
|
|
|
|
kondiomir
Legendary
Offline
Activity: 1568
Merit: 1000
Twitter @Acimirov
|
|
October 08, 2015, 09:17:18 PM |
|
Yeah, it may be in every passing virustotal wallet.
|
|
|
|
Sir_Astral
|
|
October 08, 2015, 09:18:56 PM |
|
going to learn linux...
|
|
|
|
nikl
|
|
October 08, 2015, 09:19:03 PM |
|
Yeah, it may be in every passing virustotal wallet. You can use new wallets only on VM
|
|
|
|
LordCoder
|
|
October 08, 2015, 09:21:44 PM |
|
Well, I don't have firewall. Plus I don't have any AV so yes it's free cash for anyone clever.
|
|
|
|
kondiomir
Legendary
Offline
Activity: 1568
Merit: 1000
Twitter @Acimirov
|
|
October 08, 2015, 09:26:13 PM |
|
So... next time - descent antivirus + firewall.
|
|
|
|
badam
|
|
October 08, 2015, 09:26:26 PM |
|
The Java updater popped up in my AV too after 1 hour of running the wallet, but it seems that as soon as it was trying to activate my antivirus blocked it, i don't see any harm in my end
|
|
|
|
Sir_Astral
|
|
October 08, 2015, 09:27:54 PM |
|
random time activation maybe
|
|
|
|
LordCoder
|
|
October 08, 2015, 09:35:51 PM |
|
The Java updater popped up in my AV too after 1 hour of running the wallet, but it seems that as soon as it was trying to activate my antivirus blocked it, i don't see any harm in my end
That's the malware. Lucky you.
|
|
|
|
seedtrue
Legendary
Offline
Activity: 963
Merit: 1002
|
|
October 08, 2015, 10:37:52 PM |
|
Fucking asshole, infected my computer and stole my Bitcoins!!! DO NOT DOWNLOAD THAT SHIT, I WILL REPORT SCAM NOW!
And fuck also Blockchain because didn't ask for 2FA.
Oops!!! There it goes Looking to confirm this. Wait some minutes. The address that it was sent to is the same address the HIVE scammer used to steal coins. See this post https://bitcointalk.org/index.php?topic=1196413.0
|
|
|
|
|
MrPump
Member
Offline
Activity: 84
Merit: 10
follow me to make money
|
|
October 09, 2015, 01:15:33 AM |
|
|
|
|
|
finder
|
|
October 09, 2015, 02:53:32 AM |
|
I am strange, why every time someone BTC stolen, don't dig new Will his wallet with BTC together? It is obvious that your mind
|
|
|
|
LordCoder
|
|
October 09, 2015, 08:04:27 AM |
|
That's the funny part, I am registered there lol.
|
|
|
|
leonak
|
|
October 09, 2015, 08:09:01 AM |
|
it's not super hidden, the RAT connects and disconnects whenever the hacker wants, it's simply hidden with another process.
but how he can skip interactive firewall mode Maybe he uses Running Shadow mode Nice joke, I see what you did there
|
|
|
|
|