New Ransomware has "beautifully designed GUI"
Posted by: Timothy Weaver on 03/28/2016 10:28 AM
[
Comments
]
Malwarebytes researchers have found what they are calling a "beautifully designed GUI", but there is no doubt about how serious this new ransomware can be.
The malware has been dubbed Maktub Locker which targets victim computers via a spam campaign disguised as a terms-of-service update. As with most spam email that are a malicious nature, it has an attachment whose name spoofs that of an actual document and it includes a document-like icon.
In a new trick, the attachment, in fact, displays a document, a fake TOS update in .rtf format. While the victim is perusing the document, the malware is fast at work in the background and begins encrypting the users files.
The code is executed to evade tools intended to recognize malicious behavior. It is then overwritten by fresh code to further disguise itself.
Malwarebytes researchers conclude that this new bit of ransomware has been written by seasoned pros.
Source: SCMagazine
The malware has been dubbed Maktub Locker which targets victim computers via a spam campaign disguised as a terms-of-service update. As with most spam email that are a malicious nature, it has an attachment whose name spoofs that of an actual document and it includes a document-like icon.In a new trick, the attachment, in fact, displays a document, a fake TOS update in .rtf format. While the victim is perusing the document, the malware is fast at work in the background and begins encrypting the users files.
The code is executed to evade tools intended to recognize malicious behavior. It is then overwritten by fresh code to further disguise itself.
Malwarebytes researchers conclude that this new bit of ransomware has been written by seasoned pros.
Source: SCMagazine
Comments
