Symantec Spots Ransomware Threatening with Survey Completion
Symantec the security company is warning of one fresh ransomware, known as Trojan.Shadowlock. This ransomware is different in that it doesn't typically block access to resources and data till the time the victimized computer owner makes an enormous fee payment rather it demands that he fill out a survey on the Internet.
The demand relates to a code that the user would be provided for unlocking once he completes the survey. However, Trojan.Shadowlock pops up a window that if attempted to shut down three times closes the infected computer.
Significantly, Shadowlock's behavior is not harmful to the same degree as observed with more ransom malware which blackmails with criminal prosecutions following false accusations as also thereafter extorts money of nearly any amount. The reason being this new malware that's been designed with the .Net developer software of Microsoft effectively eludes security detection. Its one capability is to douse browsers, like Internet Explorer and Chrome, while another is to consume disk space as well as destabilize Windows' firewall.
The malware is further capable of diverting Web-surfers onto sites containing, say, porn via the browser that's available by default. Besides, acting playful, the threat sometimes even interchanges mouse buttons, alternatively runs fundamental operating system applications like MS Paint else Calculator. At times, it as well ejects the CD container that results in the melodious music of the "Close Encounters of the Third Kind" feature film which gets played.
The fascinating aspect about these functions, notes Symantec, is that most of them aren't at all executed as part of the code. One reason may be its developer possibly discovered certain code and to it incorporated his survey trick. Another reason may be the same developer is experimenting with the malware's functions to be utilized within some future variant.
So far, the Shadowlock ransomware hasn't spread wide. Still, it's advisable that incase an end-user observes his CD tray ejecting followed with listening peculiar theme tunes; it is possible he's in contact with Shadowlock. Further, it's important to maintain one's computer up-to-date with the most recent AV program for keeping at bay this malware, the security company advises.
» SPAMfighter News - 17-07-2013