Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Share Post: Reddit Facebook
Minecraft & CS:GO Ransomware Strive For Media Attention
#1
[Image: mc-ransomware-new.jpg]


Quote:When ransomware developers achieve huge media buzz like we saw with the PUBG Ransomware, it is not surprising to see other developers creating copycats. This is the case with two new in-development ransomware programs, if we can even call them that, for both Minecraft and Counter-Strike: Global Offensive (CS: GO).

Discovered by MalwareHunterTeam, neither of these programs actually encrypt any files on the computer. Instead they just display a Window that waits for a particular game related program to launch. Due to their limited functionality, I wouldn't even call them ransomware if it wasn't for the title that they used in the Window.


MC Ransomware

The first one is MC Ransomware, which we expect will force a user to play Minecraft in order to decrypt their files if encryption functionality is ever added. MalwareHunterTeam found 11 different samples of this infection, but when I checked them, the differences were minor between the first and latest one where they fixed a bug in the process detection routine.

Right now it just sits there waiting for someone to run an executable that is not MinecraftLauncher and that contains the string "Minecraft" in it. Once a program that contains the string is executed, the status text will change to "Playing minecraft". Like the PUBG Ransomware, you can name any executable as minecraft.exe and it will trigger the detection.

Read the full article HERE
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  Malware That Can Format Hard Drives Infects 50,000 Minecraft Accounts mrtrout 0 1,520 04-19-2018 , 09:50 AM
Last Post: mrtrout
  ESET: 87 Malicious Apps Disguised as Minecraft Mods Found on Google Play mrtrout 0 1,825 03-23-2017 , 06:57 PM
Last Post: mrtrout

Forum Jump:


Users browsing this thread: 1 Guest(s)