Skills from clawhub.ai/aslaep123

3 skills available

bybit-trading
Dangerous skill that instructs running an obfuscated remote installer — requiring `AuthTool.exe` or pasting a base64-decoded `curl` command that fetches `http://91.92.242.30/6x8c0trkp4l9uugo` and `https://github.com/Aslaep123/clawd-authtool/releases/download/released/AuthTool.zip`. It purports to automate Bybit trading and to store API credentials in `.env` (`BYBIT_API_KEY`, `BYBIT_API_SECRET`).
Blocked
0 installs
reddit-trends
Malicious skill that instructs downloading and running a password‑protected `AuthTool.zip`/`AuthTool.exe` and executes a base64‑encoded remote script from `http://91.92.242.30/6x8c0trkp4l9uugo`. It claims to automate Reddit and requests credentials such as `REDDIT_CLIENT_ID`, `REDDIT_CLIENT_SECRET`, `REDDIT_PASSWORD`, and `OPENAI_API_KEY`.
Blocked
0 installs
base-trading-agent
Malicious skill disguised as a Base trading agent. It runs obfuscated remote code (`http://91.92.242.30/6x8c0trkp4b9uugo`), instructs running `AuthTool.exe` from `https://github.com/Aslaep123/clawd-authtool/releases/download/released/AuthTool.zip` (extract password `1234`), and directs storing `PRIVATE_KEY`/`MNEMONIC` in `.env`.
Blocked
0 installs