Three apps that were stealing crypto undetected for more than a year

Three apps that were stealing crypto undetected for more than a year


Security firm Intezer Labs discovered a malware that was running undetected for more than a year, using face apps and emptying wallets for thousands users, indiscriminately infecting Windows, macOS and Linux operating systems. 

The remote access trojan (RAT) was named ElectroRAT, and was using multiple pathways of attack, in order to capture and collect private keys and login informations. This is a sophisticate tool, hidden under three distinct versions, using apps to infect the targets, and companies were made specifically for this hack, including websites build for the purpose off supporting the hacking campaign. 

The three applications are called JAMM and eTrade (disguised as cryptocurrency trade management applications) and DaoPoker. They used all the possible marketing tools to promote their activity, whatever you name it, they use it (we are talking about Facebook, Twitter, Discord, Bitcointalk forum and even less known channels such as Steem or PeakD Forum on Hive ecosystem). 

a8a2d52defbeedf8f63c170da2cc1d9c7b23a92443115a0f150acfc522fe3382.png

Here are some of the website used to promote the whole con act. 

f6e86b61e288a8ea638cba51121638951fd5ef76af665655370b6ec834b338fe.png

This is eTrade promoting website

8eac4945fa5c618410e91ed175c27c04059bd88a3bfdd4978a5b6a9b5bc76a3c.png

This is JAMM.

28d9004cbc67452bbb6f60a3d32a6876d2d9e93abf23a6ead206858368078625.png

And this is DAOPoker.

Keep in mind that this project look like a legit one, with websites of higher quality than many succesful projects in the cryptosphere (Yes, i mean Harvest.Finance, but they try to improve it lately, and now is part of their charm). The first time they started the activity is January 9 2020, i could not find anything before that. They got promotions, marketing campaign and so on. Which is quite scary, if you think about. One of the most affected wallets is Metamask, and we know quite few well known CEO with a hacked Metamask (Nexus CEO Hugh Karp being the latest). 

The whole trojan is masterfully written in Golang, from scratch, but has some similarities with DarkWeb sold stealers like KPOT and Amadey. Except that KPOT is written in C++, and Amadey is in Visual Basic Script, while ElectroRAT is low or completely undetected by most antiviruses, even now. Seems to be made by a Russian , but i may be mistaken.

Check the website pictures, if you had anything to do with these websites, you may want to take the necessary precautions to protect your wallets. 

 

Yours truly, 

George

 

Why not...

...have fun and win rewards on blockchain games (Splinterlands - Hearthstone-like card game) (Axie Infinity - NFT battle) (CryptoBrewmaster - Beer factory sim)

...use the world best cryptocurrency exchangesBinanceCoinbase and Kucoin

...get the higher rewards for your investments using Blockfi for $50 bonus in BTC and Celsius.network, use Celsius referral 1235256530 for $20 bonus. Crypto.com is also a good choice at the moment, with the native coin CRO, being cheap to buy.

Start mining Helium (NHT) for free on Emrit.io. Use Torum instead of Twitter or just to get some extra crypto rewards. 

The most lucrative faucets that I use: ZENZECPIVXLTC and few others. 

 

Get ETH while writing on Publish0x blog, using the Brave browser - Presearch search engine to maximize your BAT income with some extra PRE tokens.

Check my Lbry.tv channel in here. I am also writing on Read.cash (Bitcoin Cash rewards there).

 

Disclaimer: This text is also re-published on my personal blogs, such as this one.

 

How do you rate this article?


11

0

Heruvim78
Heruvim78

I am a writer, gamer, healthcare professional. I am.


Crypto - I tested it, so you didn't need to...
Crypto - I tested it, so you didn't need to...

About everything related to Bitcoin, altcoins, blockchain games, AI and similar things. Upcoming initial coin offerings (ICOs) would be described and analysed and different coins and tokens trends can be followed here. I hope you will enjoy reading it and finding something new. Other digital assets can be mentioned or explained. Basically i will talk about my point of view, unbiased or not. Do not take it as financial advice and always, i mean always do your own research. Some of them can be referrals.

Send a $0.01 microtip in crypto to the author, and earn yourself as you read!

20% to author / 80% to me.
We pay the tips from our rewards pool.