If they've been login attacks, would not be more likely that they were trying to steal BCHs from accounts with weak passwords (brute force attack) than actually DDoS?
Correct, it was more of a brute force attack. However, requests we're coming from many different IPs. So a distributed brute force attack :P
