Symantec Finds Fresh Ransomware Strain
As ransomware attacks get more-and-more common from cyber-criminals, one more new ransomware Trojan has come in the notice of investigators at Symantec the security company. This malware has been identified as Trojan.Ransomlock.K that exchanges messages with a central C&C (command-and-control) server that issues it commands.
A medium through which the malware's perpetrators exchange messages with the Trojan is known as Silent Locker Control Panel. This interface somewhat resembles control panels of other types that are used in the case of malicious programs namely SpyEye and ZeuS.
Security researchers at Symantec state that they found the Silent Locker Control Panel (SLCP) in Russian version also that provides several options. First, the Panel traces the date and location of the contaminated PC, details which can be utilized to prepare billing documents.
Further, using the location detail, it becomes possible for the cyber-crook to select the most-convenient image from those the ransomware exhibits after the malware compromises any PC. To take an example, a victim, suppose within UK, can be extorted via using the country's Metropolitan Police's image, the researchers remark. Softpedia.com reported this on April 20, 2012.
Incase the cyber-crook loads his own image onto the victim's computer, the former will lure the latter with area-related social engineering to demand off him a payment supposedly to give him back his control over the PC. An exactly same code is used for the image that lets the victim pay the ransom via one e-commerce payment mechanism that the SLCP subsequently traces.
Cyber-criminals frequently use phishing and malware toolkits utilizing control panels for websites. No Trojan-builder has been found for Trojan.Ransomlock.K as of now, however, incase there's one and it has any similarity with other crimeware toolkits available for sale on illegal online platforms then it'll have a builder as well as control panel just like for the notorious SpyEye or ZeuS toolkits for crimeware, Symantec's researchers remark.
Like every time the researchers advise Internauts for remaining watchful if they find any security warnings as well as make sure that their anti-virus software is maintained up-to-date for keeping the above types of threats at bay.
» SPAMfighter News - 27-04-2012