Bitcoin Forum
April 10, 2020, 01:40:36 PM *
News: Latest Bitcoin Core release: 0.19.1 [Torrent]
 
   Home   Help Search Login Register More  
Pages: « 1 2 3 4 5 6 7 8 [9]  All
  Print  
Author Topic: [INFO] Informasi Phishing, Malware, Virus Dst (WAJIB BACA)  (Read 3997 times)
This is a self-moderated topic. If you do not want to be moderated by the person who started this topic, create a new topic. (7 posts by 5 users with 1 merit deleted.)
CucakRowo
Hero Member
*****
Offline Offline

Activity: 700
Merit: 531


Indonesia Is Beauty. https://youtu.be/ojQbArbuN4E


View Profile WWW
March 24, 2020, 02:25:46 PM
 #161

Ledger Live Fake Chrome Extension.
Sumber Thread : https://bitcointalk.org/index.php?topic=5234767.msg54080137#msg54080137

Extensions:

Code:
https://chrome.google.com/webstore/detail/ledger-live/pedoikjokpjgkpmideineekfbclpnfjg
Code:
https://chrome.google.com/webstore/detail/ledger-live/bhkcgfbaokmhglgipbppoobmoblcomhh
Code:
https://chrome.google.com/webstore/detail/ledger-live/dehindejipifeaikcgbkdijgkbjliojc
Code:
https://chrome.google.com/webstore/detail/ledger-live/lfaahmcgahoalphllknbfcckggddoffj
Code:
https://chrome.google.com/webstore/detail/ledger-wallet/pbilbjpkfbfbackdcejdmhdfgeldakkn



Link : https://zeldacoin.club/
Thread : https://bitcointalk.org/index.php?topic=5234739.msg54079254#msg54079254
Sudah di cek oleh :
I just installed it (didn't run it) and I noticed that at the last step, you are asked to run a file called null.exe (which is not inside the installed folder)



I searched for the file and found it in the following paths:

Code:
%AppData%/WinUpdate/
%AppData%/WinUpdate/ZLCWallet/4/

Scanning results: https://www.virustotal.com/gui/file/c8425cf994f02784d3f8eeb570b6ac1edc5876908b64b40b532e2534a84a19ad/detection



So as OP said, this will allow the attacker to take control over your computer.



███████████████████████████
█████████▀▄▄▄▄▄██▀▀████████
█████▀▄█▀▀▄▄▄▄▄▄▄▀▀▄▄▀█████
████ █▀▄███████████▄▀██████
███▄█ ███████▀ ██████ █ ███
██▀█ ███  ▀▀█  ▀██████ █ ██
██ █ ████▄▄      ▀▀▀██ █ ██
██ █ █████▌        ▄██ ████
███▄█ █████▄▄   ▄▄███ █▀███

████▀█▄▀█████▌  ▀██▀▄█ ████

█████▄▀▀▄▄▀▀▀▀   ▄▄█▀▄█████
████████▄██▀▀▀▀▀▀██████████

███████████████████████████
IIII★ ‎
‎ ★
.
█▀▀ █▀█ █▀█  ▄  ▄▀▀ █   ▄▀█ ▀█▀ ▄▀▀  ▄███▄
▀▀█ █ █ █ █ ▀█▀ ▀▀█ █   █ █  █  ▀▀█  ▀███▀
▄▄█ █▄█ █▄█     ▄▄▀ ▀▄▄ █▄▀  █  ▄▄▀   
                                       █

████████████████████████████████████
███▀▀▀▀▀▀██████▀▀▀▀▀▀██████▀▀▀▀▀▀███
█▀▄██▀███▄▀██▀▄██▀███▄▀██▀▄██▀███▄▀████▄
█ █ ▀ ▀███ ██ █ ▀ ▀███ ██ █ ▀ ▀███ █████
█ ██    ▄█ ██ ██    ▄█ ██ ██    ▄█ █████
█▄▀██  ▀█▀▄██▄▀██  ▀█▀▄██▄▀██  ▀█▀▄████▀
███▄▄▄▄▄▄██████▄▄▄▄▄▄██████▄▄▄▄▄▄███
████████████████████████████████████

‎ ★
UP
TO
15%...CASH BACK
EVERY SPIN
IIII..PLAY NOW..
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
CucakRowo
Hero Member
*****
Offline Offline

Activity: 700
Merit: 531


Indonesia Is Beauty. https://youtu.be/ojQbArbuN4E


View Profile WWW
March 24, 2020, 07:40:05 PM
 #162

Pishing website & telegram :
Website : https://bloomextra.com/
Telegram : https://t.me/ExtraEth

Code:
NameNAMECHEAP INC
Whois Serverwhois.namecheap.com
Referral URLhttp://www.namecheap.com
Expires On2021-03-02
Registered On2020-03-02
Updated On0001-01-01


Original Link :
Website : https://bloom.co/
Telegram : https://t.me/bloomprotocol
Code:
Registrar Info
Name : eNom, LLC
Whois Server : whois.enom.com
Referral URL : whois.enom.com
Status : clientTransferProhibited https://icann.org/epp#clientTransferProhibited

Important Dates
Expires On : 2020-07-19
Registered On : 2010-07-20
Updated On : 2020-03-05

Thread :
https://bitcointalk.org/index.php?topic=5235147.msg54088735#msg54088735


███████████████████████████
█████████▀▄▄▄▄▄██▀▀████████
█████▀▄█▀▀▄▄▄▄▄▄▄▀▀▄▄▀█████
████ █▀▄███████████▄▀██████
███▄█ ███████▀ ██████ █ ███
██▀█ ███  ▀▀█  ▀██████ █ ██
██ █ ████▄▄      ▀▀▀██ █ ██
██ █ █████▌        ▄██ ████
███▄█ █████▄▄   ▄▄███ █▀███

████▀█▄▀█████▌  ▀██▀▄█ ████

█████▄▀▀▄▄▀▀▀▀   ▄▄█▀▄█████
████████▄██▀▀▀▀▀▀██████████

███████████████████████████
IIII★ ‎
‎ ★
.
█▀▀ █▀█ █▀█  ▄  ▄▀▀ █   ▄▀█ ▀█▀ ▄▀▀  ▄███▄
▀▀█ █ █ █ █ ▀█▀ ▀▀█ █   █ █  █  ▀▀█  ▀███▀
▄▄█ █▄█ █▄█     ▄▄▀ ▀▄▄ █▄▀  █  ▄▄▀   
                                       █

████████████████████████████████████
███▀▀▀▀▀▀██████▀▀▀▀▀▀██████▀▀▀▀▀▀███
█▀▄██▀███▄▀██▀▄██▀███▄▀██▀▄██▀███▄▀████▄
█ █ ▀ ▀███ ██ █ ▀ ▀███ ██ █ ▀ ▀███ █████
█ ██    ▄█ ██ ██    ▄█ ██ ██    ▄█ █████
█▄▀██  ▀█▀▄██▄▀██  ▀█▀▄██▄▀██  ▀█▀▄████▀
███▄▄▄▄▄▄██████▄▄▄▄▄▄██████▄▄▄▄▄▄███
████████████████████████████████████

‎ ★
UP
TO
15%...CASH BACK
EVERY SPIN
IIII..PLAY NOW..
CucakRowo
Hero Member
*****
Offline Offline

Activity: 700
Merit: 531


Indonesia Is Beauty. https://youtu.be/ojQbArbuN4E


View Profile WWW
March 26, 2020, 09:51:12 AM
 #163

MALWARE

Fake Corona AntiVirus
Website :
Code:
http://antivirus-covid19.site/

Slogan :
"Download Our AI Corona Antivirus For The Best Possible Protection Against The Corona COVID-19 Virus" (BULLSHIT)

Status :
Sudah diblock oleh Firefox dan Google.

Info lengkap :
https://blog.malwarebytes.com/threat-analysis/2020/03/fake-corona-antivirus-distributes-blacknet-remote-administration-tool/



███████████████████████████
█████████▀▄▄▄▄▄██▀▀████████
█████▀▄█▀▀▄▄▄▄▄▄▄▀▀▄▄▀█████
████ █▀▄███████████▄▀██████
███▄█ ███████▀ ██████ █ ███
██▀█ ███  ▀▀█  ▀██████ █ ██
██ █ ████▄▄      ▀▀▀██ █ ██
██ █ █████▌        ▄██ ████
███▄█ █████▄▄   ▄▄███ █▀███

████▀█▄▀█████▌  ▀██▀▄█ ████

█████▄▀▀▄▄▀▀▀▀   ▄▄█▀▄█████
████████▄██▀▀▀▀▀▀██████████

███████████████████████████
IIII★ ‎
‎ ★
.
█▀▀ █▀█ █▀█  ▄  ▄▀▀ █   ▄▀█ ▀█▀ ▄▀▀  ▄███▄
▀▀█ █ █ █ █ ▀█▀ ▀▀█ █   █ █  █  ▀▀█  ▀███▀
▄▄█ █▄█ █▄█     ▄▄▀ ▀▄▄ █▄▀  █  ▄▄▀   
                                       █

████████████████████████████████████
███▀▀▀▀▀▀██████▀▀▀▀▀▀██████▀▀▀▀▀▀███
█▀▄██▀███▄▀██▀▄██▀███▄▀██▀▄██▀███▄▀████▄
█ █ ▀ ▀███ ██ █ ▀ ▀███ ██ █ ▀ ▀███ █████
█ ██    ▄█ ██ ██    ▄█ ██ ██    ▄█ █████
█▄▀██  ▀█▀▄██▄▀██  ▀█▀▄██▄▀██  ▀█▀▄████▀
███▄▄▄▄▄▄██████▄▄▄▄▄▄██████▄▄▄▄▄▄███
████████████████████████████████████

‎ ★
UP
TO
15%...CASH BACK
EVERY SPIN
IIII..PLAY NOW..
joniboini
Legendary
*
Offline Offline

Activity: 896
Merit: 1358


Exchange Bitcoin quickly-https://blockchain.com.do


View Profile WWW
March 31, 2020, 05:40:29 AM
 #164

Buat yang pada mau install Zoom hati-hati. Ada banyak apps bermalware yang bertebaran di internet yang bisa mengakibatkan banyak hal, mulai dari intercept data browser, sampai nyuri data-data[1]. Pemakai web wallet atau yang masih pake file json sebaiknya segera berganti ke wallet yang risiko serangannya lebih kecil.

[1] https://www.bleepingcomputer.com/news/security/hackers-take-advantage-of-zooms-popularity-to-push-malware/

CucakRowo
Hero Member
*****
Offline Offline

Activity: 700
Merit: 531


Indonesia Is Beauty. https://youtu.be/ojQbArbuN4E


View Profile WWW
March 31, 2020, 12:46:57 PM
Merited by AakZaki (1)
 #165

Malware Website.

Untuk menghindari resiko, tolong website berikut jangan diakses :

1. coronavirus-map[.]com
Code:
https://coronavirus-map[.]com/

Virus Total :

Link : https://www.virustotal.com/gui/url/6b6f44786ae2bc3669d6953555a1bc70c6e92380ef01f944793d9f12232102bd/detection

Tampilan Site :


Detil Informasi :
1. https://krebsonsecurity.com/2020/03/live-coronavirus-map-used-to-spread-malware/
2. https://www.scmagazine.com/home/security-news/news-archive/coronavirus/malicious-coronavirus-map-hides-azorult-info-stealing-malware/


2. corona-virus[.]healthcare
Code:
http://corona-virus[.]healthcare/

Virus Total :

Link : https://www.virustotal.com/gui/url/800595c5f2bd18a2be7d5ca7d01de0bd124dbf9cd0483012dd8cc779b2af2f4b/detection

Tampilan Site :


Detil Informasi :
https://www.forbes.com/sites/thomasbrewster/2020/03/12/coronavirus-scam-alert-watch-out-for-these-risky-covid-19-websites-and-emails/#1be38151099f



███████████████████████████
█████████▀▄▄▄▄▄██▀▀████████
█████▀▄█▀▀▄▄▄▄▄▄▄▀▀▄▄▀█████
████ █▀▄███████████▄▀██████
███▄█ ███████▀ ██████ █ ███
██▀█ ███  ▀▀█  ▀██████ █ ██
██ █ ████▄▄      ▀▀▀██ █ ██
██ █ █████▌        ▄██ ████
███▄█ █████▄▄   ▄▄███ █▀███

████▀█▄▀█████▌  ▀██▀▄█ ████

█████▄▀▀▄▄▀▀▀▀   ▄▄█▀▄█████
████████▄██▀▀▀▀▀▀██████████

███████████████████████████
IIII★ ‎
‎ ★
.
█▀▀ █▀█ █▀█  ▄  ▄▀▀ █   ▄▀█ ▀█▀ ▄▀▀  ▄███▄
▀▀█ █ █ █ █ ▀█▀ ▀▀█ █   █ █  █  ▀▀█  ▀███▀
▄▄█ █▄█ █▄█     ▄▄▀ ▀▄▄ █▄▀  █  ▄▄▀   
                                       █

████████████████████████████████████
███▀▀▀▀▀▀██████▀▀▀▀▀▀██████▀▀▀▀▀▀███
█▀▄██▀███▄▀██▀▄██▀███▄▀██▀▄██▀███▄▀████▄
█ █ ▀ ▀███ ██ █ ▀ ▀███ ██ █ ▀ ▀███ █████
█ ██    ▄█ ██ ██    ▄█ ██ ██    ▄█ █████
█▄▀██  ▀█▀▄██▄▀██  ▀█▀▄██▄▀██  ▀█▀▄████▀
███▄▄▄▄▄▄██████▄▄▄▄▄▄██████▄▄▄▄▄▄███
████████████████████████████████████

‎ ★
UP
TO
15%...CASH BACK
EVERY SPIN
IIII..PLAY NOW..
cissrawk
Sr. Member
****
Offline Offline

Activity: 1092
Merit: 399


Video Creation Services https://goo.gl/QN55ZH


View Profile WWW
April 01, 2020, 02:03:22 PM
 #166

Phising website & fake facebook fanspage
Fake fanspage facebook :
Code:
https://www.facebook.com/TRON-Foundations-100120004912421
Phising website :
Code:
https://tron-network-bounty-program.site

Di facebook, foto profil kalian akan di share ke fanspage tersebut dengan detail bahwa mendapatkan sejumlah tron. Saya sarankan laporkan ke pihak facebook. Fanspage asli punya Tron Foundation ada centang birunya.

Untuk websitenya, kalian disuruh masukin private key/keystore file untuk menclaim hadiahnya.

Banyak foto profil yang sudah di share oleh itu fanspage, jika kalian salah satunya, silahkan report , lalu blokir fanspagenya agar foto kalian tidak muncul disana lagi.



Yang asli ada centang birunya.

ryzaadit
Hero Member
*****
Offline Offline

Activity: 980
Merit: 851


A Cruel Angel's Thesis


View Profile
April 03, 2020, 06:09:53 PM
 #167

Percobaan Phising Harap Berhati-hati.
Website :
Code:
https://tokenspay.net/

Berhubung saat ini sudah ramai orang-orang yang melakukan sharing mengenai airdrop dari "Tokenspay" yang memberikan 500 TEN mulai dari social media - telegram. Pihak dari tokenomy telah mengkonfirmasi bahwa tidak berkeja sama / membuat airdrop yang dilakukan oleh "Tokenspay". Terlebih lagi interface halaman login "tokenspay" menggunakan logo & nama dari tokenomy dan pihak tokenomy telah mengkonfirmasi bahwa tidak ada kerja sama sekali maka hal ini masuk ke katagori phising.


Bagi yang sudah mendaftar, harap berhati-hati apabila menggunakan email atau data yang sama baik dari exchange Indodax & Tokenomy harap segera diganti untuk menghindari hal yang tidak diinginkan.

HARAP HATI-HATI

Tokenomy saat ini sedang tidak mengadakan airdrop atau event lain dengan hadiah berupa token TEN. Harap hati-hati dengan penipuan yang mengatasnamakan Tokenomy!

Mohon untuk selalu waspada terhadap email, pesan, channel, akun telegram PALSU yang mengatasnamakan Tokenomy. Kami tidak bertanggung jawab atas kerugian yang disebabkan oleh penipuan tersebut.

Follow akun resmi kami untuk mengetahui update terbaru:
@tokenomy (group)
@tokenomyinfo (channel)
@tokenomy (https://www.instagram.com/tokenomy/) (instagram)
@tokenomy (https://twitter.com/tokenomy) (twitter)
Tokenomy (https://www.facebook.com/tokenomy) (facebook)

Jika Anda memiliki pertanyaan lebih lanjut, silakan hubungi customer support Tokenomy: support@tokenomy.com

Terima kasih,
Tim Tokenomy

Source : https://t.me/tokenomyinfo/769

.freebitcoin.       ▄▄▄█▀▀██▄▄▄
   ▄▄██████▄▄█  █▀▀█▄▄
  ███  █▀▀███████▄▄██▀
   ▀▀▀██▄▄█  ████▀▀  ▄██
▄███▄▄  ▀▀▀▀▀▀▀  ▄▄██████
██▀▀█████▄     ▄██▀█ ▀▀██
██▄▄███▀▀██   ███▀ ▄▄  ▀█
███████▄▄███ ███▄▄ ▀▀▄  █
██▀▀████████ █████  █▀▄██
 █▄▄████████ █████   ███
  ▀████  ███ ████▄▄███▀
     ▀▀████   ████▀▀
BITCOIN
DICE
EVENT
BETTING
WIN A LAMBO !

.
            ▄▄▄▄▄▄▄▄▄▄███████████▄▄▄▄▄
▄▄▄▄▄██████████████████████████████████▄▄▄▄
▀██████████████████████████████████████████████▄▄▄
▄▄████▄█████▄████████████████████████████▄█████▄████▄▄
▀████████▀▀▀████████████████████████████████▀▀▀██████████▄
  ▀▀▀████▄▄▄███████████████████████████████▄▄▄██████████
       ▀█████▀  ▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀  ▀█████▀▀▀▀▀▀▀▀▀▀
▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀
.PLAY NOW.
CucakRowo
Hero Member
*****
Offline Offline

Activity: 700
Merit: 531


Indonesia Is Beauty. https://youtu.be/ojQbArbuN4E


View Profile WWW
April 07, 2020, 06:13:11 AM
 #168

Fake MEW, Electrum Dan Metamask Extension.

Disadur dari thread yang dibuat oleh : TravelMug
Thread : Fake Electrum, MEW and Meta Mask

Fake Extension :
1. Electrum
Code:
https://chrome.google.com/webstore/detail/electrum/gpffceikmehgifkjjginoibpceadefih

2. Metamask
Code:
https://chrome.google.com/webstore/detail/meta%C2%AD%C2%ADmask-wallet/jbfponbaiamgjmfpfghcjjhddjdjdpna

3. MEW (My Ether Wallet)
Code:
https://chrome.google.com/webstore/detail/mew%C2%AD%C2%AD-wallet/njhfmnfcoffkdjbgpannpgifnbgdihkl



███████████████████████████
█████████▀▄▄▄▄▄██▀▀████████
█████▀▄█▀▀▄▄▄▄▄▄▄▀▀▄▄▀█████
████ █▀▄███████████▄▀██████
███▄█ ███████▀ ██████ █ ███
██▀█ ███  ▀▀█  ▀██████ █ ██
██ █ ████▄▄      ▀▀▀██ █ ██
██ █ █████▌        ▄██ ████
███▄█ █████▄▄   ▄▄███ █▀███

████▀█▄▀█████▌  ▀██▀▄█ ████

█████▄▀▀▄▄▀▀▀▀   ▄▄█▀▄█████
████████▄██▀▀▀▀▀▀██████████

███████████████████████████
IIII★ ‎
‎ ★
.
█▀▀ █▀█ █▀█  ▄  ▄▀▀ █   ▄▀█ ▀█▀ ▄▀▀  ▄███▄
▀▀█ █ █ █ █ ▀█▀ ▀▀█ █   █ █  █  ▀▀█  ▀███▀
▄▄█ █▄█ █▄█     ▄▄▀ ▀▄▄ █▄▀  █  ▄▄▀   
                                       █

████████████████████████████████████
███▀▀▀▀▀▀██████▀▀▀▀▀▀██████▀▀▀▀▀▀███
█▀▄██▀███▄▀██▀▄██▀███▄▀██▀▄██▀███▄▀████▄
█ █ ▀ ▀███ ██ █ ▀ ▀███ ██ █ ▀ ▀███ █████
█ ██    ▄█ ██ ██    ▄█ ██ ██    ▄█ █████
█▄▀██  ▀█▀▄██▄▀██  ▀█▀▄██▄▀██  ▀█▀▄████▀
███▄▄▄▄▄▄██████▄▄▄▄▄▄██████▄▄▄▄▄▄███
████████████████████████████████████

‎ ★
UP
TO
15%...CASH BACK
EVERY SPIN
IIII..PLAY NOW..
Pages: « 1 2 3 4 5 6 7 8 [9]  All
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!