Bitcoin Forum
June 16, 2024, 06:26:22 PM *
News: Voting for pizza day contest
 
   Home   Help Search Login Register More  
Pages: [1] 2 3 »  All
  Print  
Author Topic: Latest investigation about coins stolen  (Read 3894 times)
freee101 (OP)
Full Member
***
Offline Offline

Activity: 154
Merit: 100


View Profile
August 13, 2014, 03:29:30 PM
 #1

A few days ago, my friend has lost 1.23BTC and 325LTC. after several days of investigation, we have found some important thing, and decide to publich our result.
My friend has an infinitecoin wallet at the same computer. When he found the thief has stolen BTC and LTC, then he quickly transfer infinitecoin to another wallet, but the transaction is unconfirmed. and a few days later, coins go back. and even more, he found he receive more infinitecoins (but don't happy, hacker can send coins to you, he should take back again). actually,  today, 13, Aug, 2014, hacker stole all of infinitecoins.
When we reinstall the OS again, and only run infinitecoin wallet, we can detect virus warning by tool. So, it's clear that the  infinitecoin wallet is malware, but my friend download from infinitecoin official website http://www.infinitecoin.com/ifc-wallet-download.
the result is:  thief is in the infinitecoin team. He/they have control inifitecoin, they can launch 51% attacking. they can unconfirm any inifitecoin transaction, they can transfer your inifitecoin to any wallet address.
the infinitecoin wallet has become the thief tool to steal password and BTC and LTC, and they even send some IFC to you to prevent you from removing the software.

Though I have recomended the IFC, but now, it's dead. thief has gone into its team.
I hope other expert can seize the thief from infinte team, the hacker is thief, thief is very cheap.
from:https://bitcointalk.org/index.php?topic=737420.msg8332327#msg8332327
balanghai
Sr. Member
****
Offline Offline

Activity: 364
Merit: 253


View Profile
August 13, 2014, 03:31:44 PM
 #2

This seems to be something need to be looked at. Any blogpost about your full result/findings?
LiteCoinGuy
Legendary
*
Offline Offline

Activity: 1148
Merit: 1011


In Satoshi I Trust


View Profile WWW
August 13, 2014, 03:34:12 PM
 #3

stopped reading at "infinitecoin wallet".

most of the alts are scam or maleware. just use bitcoin and litecoin and you are fine but thx for the info.

Aswan
Legendary
*
Offline Offline

Activity: 1734
Merit: 1015



View Profile
August 13, 2014, 03:34:36 PM
 #4

Thats why you should use a separate virtual system for each altcoin client you run
freee101 (OP)
Full Member
***
Offline Offline

Activity: 154
Merit: 100


View Profile
August 14, 2014, 12:23:38 PM
 #5

This seems to be something need to be looked at. Any blogpost about your full result/findings?

http://www.3-coin.com/2014-08-13/5732/
bitsmichel
Sr. Member
****
Offline Offline

Activity: 518
Merit: 250



View Profile
August 14, 2014, 12:30:27 PM
 #6

Thats why you should use a separate virtual system for each altcoin client you run
This is much better in terms of security. You can use vmware or a similar program and multiple images - or use an offline wallet. Many alt coins are scam or virus.

ShameOnYou
Full Member
***
Offline Offline

Activity: 238
Merit: 100



View Profile
August 14, 2014, 12:33:35 PM
 #7

This is why all altcoins sources would be vetted properly by professionals.
oceans
Sr. Member
****
Offline Offline

Activity: 406
Merit: 250



View Profile
August 14, 2014, 01:11:00 PM
 #8

I have all alt coins installed in Virtualbox except for mutidoge. I think it is probably the safest way to go at the moment. I also keep my BTC on my main pc in a watch only electrum wallet and sign transactions on a laptop that has never been connected to the net.
freee101 (OP)
Full Member
***
Offline Offline

Activity: 154
Merit: 100


View Profile
August 15, 2014, 02:35:08 AM
 #9

I have all alt coins installed in Virtualbox except for mutidoge. I think it is probably the safest way to go at the moment. I also keep my BTC on my main pc in a watch only electrum wallet and sign transactions on a laptop that has never been connected to the net.

is electrum wallet is a distribution wallet?  main program is in PC, the send box is in laptop.
Spoetnik
Legendary
*
Offline Offline

Activity: 1540
Merit: 1011


FUD Philanthropist™


View Profile
August 15, 2014, 03:12:05 AM
 #10

This is why all altcoins sources would be vetted properly by professionals.

that does not mean a lick of shit.. i can post any source code i want and any binary i want.

and to the other guy about "i stopped reading at"
that is dumb IFC is fucking old school and not some random clone coin..
IFC has had a very large following and was the most popular coin in crypto besides Bitcoin last year.
that shows me you don't know anything about altcoins.. or at least older ones.

@OP
I will see what i can do to look into for you if you want..
I just got  new version of IDA hours ago actually and have plenty of tools for reversing Malware such as OllyDBG etc.
BUT i need you to upload the exact files from your wallet though so i can make sure they are the same as the servers files.
I don't think adding the Block chain and wallet data is needed so don't upload your "roaming folder"
and if you don't know what i mean by roaming folder let me know before you uploading anything.

So please .zip or .rar up the wallet .exe files and any .dll's it came with and upload them somewhere like a file locker service.
This is a quick and easy service for file hosting and you can remove the link after easy too..
www.datafilehost.com/

I can't make any guarantees about finding anything but i do have a LOT of experience at finding Malware first on the internet all over the web including here.

FUD first & ask questions later™
Spoetnik
Legendary
*
Offline Offline

Activity: 1540
Merit: 1011


FUD Philanthropist™


View Profile
August 15, 2014, 03:20:00 AM
 #11

I have all alt coins installed in Virtualbox except for mutidoge. I think it is probably the safest way to go at the moment. I also keep my BTC on my main pc in a watch only electrum wallet and sign transactions on a laptop that has never been connected to the net.

putting all your altcoin wallets in a virtualbox will not do anything to protect you.
at least not with Sandboxie (Which is what i use specifically for testing files)
you see what will happen is when all these various wallets are launched they create a roaming coin folder..
and that will ALSO reside in your sandbox.
So think about it..
You run 1 sandbox and then run 5 wallets in it then all 5 wallets will have a wallet.dat file in the 1 sandbox
and if any one of the 5 wallet .exe's has a keylogger etc or other malware like a wallet stealer
it then has complete access to ALL your other wallet files to copy and upload to a remote destination.
In this case using a sandbox is probably making it easier actually than it is helping anything.

FUD first & ask questions later™
lemfuture
Hero Member
*****
Offline Offline

Activity: 686
Merit: 500


View Profile
August 15, 2014, 03:22:32 AM
 #12

happened to my bro too, the pawncoin wallet had malware and he lost 7 btc. that's why i  stopped downloading new altcoin wallets

1ADLcfwTofFXb95pKhebpeRkJ4WTWsvQXB
Spoetnik
Legendary
*
Offline Offline

Activity: 1540
Merit: 1011


FUD Philanthropist™


View Profile
August 15, 2014, 04:29:17 AM
 #13

not seeing anything fishy with the windows wallet yet..

i have an old block chain still but no matter how many seed nodes i find none of them are working

new topic = https://bitcointalk.org/index.php?topic=356065.0
old = https://bitcointalk.org/index.php?topic=225891.msg3816575#msg3816575

i guess TECSHARE took over for fisheater at some point in the past..
not surprising TECHSHARE was always fanatical about IFC i recall back on Cryptsy chat and here.
i never see him around though so i dunno..
Also the IFC forums is bombed with spammers fro Viagra etc so it seems like no one is administrating it,
such as the guy i just mentioned who posted a non working seed node.

and no i did NOT look at the source code..


@OP
Please provide as much info as possible and files !

Also you should contact this guy ..he runs the coin !
TECSHARE =  https://bitcointalk.org/index.php?action=profile;u=15728

and since he has legendary status it should mean he is hanging around here 24/7 everyday LOL
Last Active:    Today at 07:17:38 PM

edit:
also i am curious do you have RPC allow ip in your conf file ?

FUD first & ask questions later™
Spoetnik
Legendary
*
Offline Offline

Activity: 1540
Merit: 1011


FUD Philanthropist™


View Profile
August 15, 2014, 07:30:37 AM
Last edit: August 15, 2014, 02:37:06 PM by Spoetnik
 #14

OP vanished and i can't do anything with out more files and info..

and saying only using coins 3+ years old is not too helpful LOL

FUD first & ask questions later™
Lucky Cris
Sr. Member
****
Offline Offline

Activity: 280
Merit: 250


View Profile
August 15, 2014, 08:42:30 AM
 #15

What harm can this do? Isn't this supposedly required... At least when you solo mine?

also i am curious do you have RPC allow ip in your conf file ?

Okay... Now you really scaring the fuck out of me.
putting all your altcoin wallets in a virtualbox will not do anything to protect you.

You gotta comprehensive list of approved coins? I need that link.

schnötzel
Legendary
*
Offline Offline

Activity: 1316
Merit: 1041

Bitcoin is a bit**


View Profile
August 15, 2014, 08:55:11 AM
 #16

@freee101

you said: "the infinitecoin wallet has become the thief tool to steal password"

Means the wallet was encrypted?
Litesire
Sr. Member
****
Offline Offline

Activity: 458
Merit: 500


View Profile
August 15, 2014, 09:17:30 AM
 #17

stopped reading at "infinitecoin wallet".

most of the alts are scam or maleware. just use bitcoin and litecoin and you are fine but thx for the info.

+1 here.

I only have btc/ltc and Guldencoin(NLG) , I really just don't trust any other coins.

Mt. Gox
Full Member
***
Offline Offline

Activity: 350
Merit: 118



View Profile
August 15, 2014, 10:04:10 AM
 #18

Infinitecoin is one of the older established minor alts. I would be very surprised if it turned out to contain malware.

Dear GOD/GODS and/or anyone else who can HELP ME (e.g. MEMBERS OF SUPER-INTELLIGENT ALIEN CIVILIZATIONS): The next time I wake up, please change my physical form to that of FINN MCMILLAN of SOUTH NEW BRIGHTON at 8 YEARS OLD and keep it that way FOREVER. I am so sick of this chubby Asian man body! Thank you! - CHAUL JHIN KIM (a.k.a. A DESPERATE SOUL) P.S. If anyone is reading this then please pray for me! [ www.chauljhin.com ]
chaosknight
Hero Member
*****
Offline Offline

Activity: 868
Merit: 1000



View Profile
August 15, 2014, 10:33:38 AM
 #19

You sure you download the right infinity coin wallet?
MajidBC
Full Member
***
Offline Offline

Activity: 182
Merit: 100

KryptKoin is one of the best!!!


View Profile
August 15, 2014, 01:01:23 PM
 #20

stopped reading at "infinitecoin wallet".

most of the alts are scam or maleware. just use bitcoin and litecoin and you are fine but thx for the info.
Considering some altcoins bring good advantages over bitcoin, I suggest to find a solution, not just erasing the problem.
Pages: [1] 2 3 »  All
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!