Fake Movie File Infects PC to Steal Cryptocurrency, Poison Google Results

LASER_oneXM

Level 37
Thread author
Verified
Top Poster
Well-known
Feb 4, 2016
2,520
A malicious Windows shortcut file posing as a movie via The Pirate Bay torrent tracker can trigger a chain of mischievous activities on your computer, like injecting content from the attacker into high-profile web sites such as Wikipedia, Google and Yandex Search or by stealing cryptocurrency.

Malware on TPB is not a new thing, but the method used to infect a victim's computer and the large amount of varied malicious activities discovered by BleepingComputer are quite interesting.
 

Der.Reisende

Level 45
Honorary Member
Top Poster
Content Creator
Malware Hunter
Dec 27, 2014
3,423
Never use torrent sites.:)
+1
Stay away from everything advertising cracks, keygens,...
Will not only get you in legal trouble...

I have seen them on HybridAnalysis regularly, they use to have the word "Torrent" in their name, in order to trick users into executing the scriptor.
It takes time for them getting detected by the majority of vendors, makes them more dangerous than .exe IMO.

Here's a current one:
Special Samples - Malware Mix #10 (13/01/2019)
https://www.hybrid-analysis.com/sam...d2cb2e3537a42cbc666b/5c3ae8f47ca3e15a152bbfbc
VirusTotal
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top