Ransomware Now Comes With Live Chat
Posted by: Timothy Weaver on 06/13/2016 11:46 AM
[
Comments
]
Got hit by the Jigsaw ransomware? Not sure how to proceed with the demands. No problem, you can now chat with the cybercriminals.
According to a new report by Trend Micro, the ability to chat with the criminals is not so farfetched. “The attackers actually have people standing by to answer questions,” Trend Micro said.
One of the researchers from Trend Micro pretended to be a victim of Jigsaw and used the live chat link provided in the ransom note. The conversation used the publicly available chat tool onWebChat. Here is the conversation with Trend Micro's responses:
How can I help you
can you really decrypt my files?
yes
its automatic
once payment is received all you have to do is click that you made payment
and the system will verify instantly
why are you guys doing this to us?
I am here to help you get your files back.
Let me know if you need any other instructions or help
im doomed!
my boss gonna fired me
all you have to do is pay $150. New york has Bitcoin atms
or you can visit www.localbitcoins.com
thats too much for me
sorry. depending on the amount of files encrypted it doubles to $300 after 24 hours and $450 after 72
it doesnt happen to all computers it depends on the file size encryption
is there a way to lower na payment?
We can do $125
that the minimum
and that is within 24 hours
let me see if i can work this with my boss
just send a message if we are not online we will come back online within 10 minutes
And we do decrypt all you files
100%
you have to message me when you make the payment so I can accept the $125 into the system if not it will tell you you haven't payed enough. Each wallet is unique to the computer so I can verify instantly
“Interestingly, the cybercriminal on the other end of the chat conversation doesn't actually know when the user was infected. The “timer” is only based on a cookie set on the affected machine–if this cookie is deleted, the countdown resets to 24 hours. As a result, the cybercriminals are actually reliant on the user's honesty when it comes to finding out how much ransom should be paid!” the company said.
Trend Micro speculates that the use of a live chat will help push the victim into paying the ransom.
Source: SCMagazine
According to a new report by Trend Micro, the ability to chat with the criminals is not so farfetched. “The attackers actually have people standing by to answer questions,” Trend Micro said.
One of the researchers from Trend Micro pretended to be a victim of Jigsaw and used the live chat link provided in the ransom note. The conversation used the publicly available chat tool onWebChat. Here is the conversation with Trend Micro's responses:
How can I help you
can you really decrypt my files?
yes
its automatic
once payment is received all you have to do is click that you made payment
and the system will verify instantly
why are you guys doing this to us?
I am here to help you get your files back.
Let me know if you need any other instructions or help
im doomed!
my boss gonna fired me
all you have to do is pay $150. New york has Bitcoin atms
or you can visit www.localbitcoins.com
thats too much for me
sorry. depending on the amount of files encrypted it doubles to $300 after 24 hours and $450 after 72
it doesnt happen to all computers it depends on the file size encryption
is there a way to lower na payment?
We can do $125
that the minimum
and that is within 24 hours
let me see if i can work this with my boss
just send a message if we are not online we will come back online within 10 minutes
And we do decrypt all you files
100%
you have to message me when you make the payment so I can accept the $125 into the system if not it will tell you you haven't payed enough. Each wallet is unique to the computer so I can verify instantly
“Interestingly, the cybercriminal on the other end of the chat conversation doesn't actually know when the user was infected. The “timer” is only based on a cookie set on the affected machine–if this cookie is deleted, the countdown resets to 24 hours. As a result, the cybercriminals are actually reliant on the user's honesty when it comes to finding out how much ransom should be paid!” the company said.
Trend Micro speculates that the use of a live chat will help push the victim into paying the ransom.
Source: SCMagazine
Comments
