javascript contador Saltar al contenido

An attachment within another attachment, so this virus hides

An attachment within another attachment, so this virus hides

An attachment within another attachment, so this virus hides

East ransomware It has reinvented methods to infect computers.

The technique of hiding a virus inside a file is very typical. He has been with us for many years and has turned on alarms many times. Since the Internet and email exploded, it has infected not thousands, but millions of computers. And even today this technique continues to be used. But, what had not been seen yet was to hide a virus inside a file that in turn is hidden inside another file.

Antiviruses are alert with attachments and email downloadsThey know that it is the first virus entry, but this method has skipped all the filters. The recommended thing to avoid being infected by this method is, or use a anti-malware or directly not enter or download things from emails that we do not know.

It’s about a ransomware hidden in a WORD file which in turn is hidden in a PDF. When analyzing the PDF, it is only obtained that a WORD is attached, but this in turn is not analyzed. Once we open the PDF, behind will go WORD, and when giving editing permissions is when the virus will unfreeze and will act.

computer-hijacked-ransomware

Specifically it is Locky, a ransomware that was apparently first discovered in 2016, during the past year. Its distribution is by email, precisely through a hidden PDF. Once we open it we ask permission to run macros; that’s when we will get infected.

Act just like any other malware of this type: encrypts our data and to recover them we will have to pay $ 1,000. The best thing in this type of case is to forget about the information and format both our computer and all those USB sticks that have been connected while the ransomware It has been running.