And we have again a new Fake Ann Thread with an Fake Github Account with Malware , this time for KONJUNGATE (KONJ) !The Fake Github Account was just created 4 Hours ago.
Fake Github :
github.com/KonjungatesReal Github :
github.com/KonjungateOn the Website there is another Github Account Linked to
github.com/Marconi1515/KonjungateVirustotal flaggs it as Trojan:
Malicious (high Confidence)
Trojan.NSIS.Runner
Trojan.BAT.bae
New RUN Key Pointing to Suspicious Folder
Use NTFS Short Name in Image
CurrentVersion Autorun Keys Modification
Use NTFS Short Name in Command Line
Source:
https://www.virustotal.com/gui/file/790edc06f3d0f735c6038102507419d7a72c50f28bb4ed14b5f8939def373e08/behaviorAccount : konjungates <--- Please ban or Lock that Account and delete the ThreadThe Account is new and only 1 Day old.
Fake Ann Thread : [ANN] KONJUNGATE (KONJ) Official ThreadKONJUNGATE (KONJ)
https://github.com/Konjungates/Konjungate-Core/releases/tag/V1.1.6.3
Account :
mastrokonjThis post is also a reference for the Github Report !
And another new Fake Ann Thread here for PURN-NETWORK
The Fake Github was just created 40 Min ago !
Fake Github : github.com/PURN-NETWORK
CAPE Sandbox flags this file as: MALWARE
Malicious_Behavior.SB
Malware.SwollenFile!1.E38A (CLASSIC)
Trojan:W32/GenInflated.B
ET MALWARE Remcos 3.x Unencrypted Checkin
ET MALWARE Remcos 3.x Unencrypted Server Response
Source : https://www.virustotal.com/gui/file/c88f1908974c8d5444f34e01ddec9b247710e27f0b7ea8051e25ece3e2675335/detection
Account : Clavulanic <--- Please ban or Lock that Account and delete the Thread
This user recently woke up from a long period of inactivity.
Its an old Account from 2011 , last post was made in August 15, 2021 , Hacked or sold Account.
Fake Ann Thread : [ANN] PURN-NETWORK - Kaspa fork with new features (GPU PoW/ghostDAG)
PURN
https://github.com/PURN-NETWORK/PURN/releases/download/1.0.0/purn-qt-win64.zip
This post is also a reference for the Github Report !