Dismiss this notice
Kryptel Enterprise Valentines 2020 Giveaway - https://www.geeks.fyi/showthread.php?tid=10090

Dismiss this notice
Revo Uninstaller Pro 4 Valentines 2020 Giveaway - https://www.geeks.fyi/showthread.php?tid=10091

Dismiss this notice
FastPCTools Fast Video Downloader Giveaway - https://www.geeks.fyi/showthread.php?tid=9741

Dismiss this notice
AirVPN MakeUSLaugh 2020 Giveaway - https://www.geeks.fyi/showthread.php?tid=10093

Dismiss this notice
Driver Easy Professional Valentines 2020 Giveaway - https://www.geeks.fyi/showthread.php?tid=10094

Dismiss this notice
AIDA64 Extreme Valentines 2020 Giveaway - https://www.geeks.fyi/showthread.php?tid=10126

Thread Rating:
  • 1 Vote(s) - 5 Average
  • 1
  • 2
  • 3
  • 4
  • 5
GandCrab Ransomware Discovered To Be Embedded in Super Mario Image
#2
Quote:Researchers spotted the ransomware GandCrab embedded into a downloadable Mario image from Super Mario Bros.

Matthew Rowan, a researcher at Bromium discovered the malware and identified the trends and patterns to be of an older method, steganography. This form of malware tends to use obfuscated Microsoft PowerShell commands. Similarly, the hacker uses a PowerShell command in this campaign. The targeted emails are sent to individuals in Italy, with an excel document attached. Labelled, “F.DOC.2019 A 259 SPA.xls” it also contains a Macro. The document prompts users to click ‘enable content,’ effectively deploying the malware. The malware firstly checks the region, usually, relying on the administrative language of the operating system. Here the coding used to determine this consisted of using IF statement with country 39, which was Italy. If the device is not based in Italy, then it will not deploy.

[Image: mario-1558068__340.jpg]
Source

Image courtesy of  : latesthackingnews.com
Reply


Messages In This Thread
GandCrab Ransomware Discovered To Be Embedded in Super Mario Image - by Toligo - 10 February 19, 11:35

Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username:


Password:





[-]
Recent Posts
iOS 13.4.1 and iPadOS 13.4.1 are out wit...
Today, Apple relea...silversurfer — 12:38
Google requires all devices launching wi...
Google added a use...silversurfer — 12:35
Netflix rolls out parental control featu...
On Tuesday, Netfli...silversurfer — 12:32
Edge Dev 83.0.474.0 is out with Edge 84 ...
This week's Edge u...silversurfer — 12:31
Google Chrome Updates
Chrome Stable 81.0....silversurfer — 12:12

[-]
Birthdays
Today's Birthdays
avatar (33)vemedProkbior
Upcoming Birthdays
avatar (39)wapedDow
avatar (43)oapedDow
avatar (36)Sanchowogy
avatar (40)MeighGoask
avatar (32)urumahiz
avatar (38)techlignub
avatar (37)Stevenmam
avatar (44)onlinbah
avatar (44)fuspeukChark
avatar (38)werriewWaiNg
avatar (32)Freemanleo
avatar (37)cdoubapKit
avatar (32)lystraPonia
avatar (45)steakelask
avatar (39)Termoplenka
avatar (37)bycoPaist
avatar (43)pieloKat
avatar (37)ilyagNeexy
avatar (45)donitascene
avatar (45)burntLaw
avatar (35)MrDoorsskibheeds
avatar (45)Toligo
avatar (40)Rodneykak
avatar (43)tradeSmode
avatar (32)RobertUtelt

[-]
Online Staff
silversurfer's profile silversurfer
Administrator

>