#DESKTOP DESTROYER VIRUS SOFTWARE#
Once the virus engine has found a way to penetrate the target system it starts to look out for security software and other applications that may interfere with its processes. The captured Olympic Destroyer Virus have been found to be based on a modular framework. Note that such files are also actively distributed on file sharing networks such as BitTorrent.
#DESKTOP DESTROYER VIRUS DOWNLOAD#
They are then uploaded to counterfeit download sites or sent using email message campaigns. The malware operators usually take the legitimate installers from the official vendor sites and modifying them to include the dangerous code. Once this is done the virus infection follows.Ī similar technique is the use of software installers that represent modified instances of popular software. As soon as they are opened a prompt pops up and asks them to execute the built-in scripts (macros). The hackers customize them to appear as files of interests: invoices, letters, notifications or contracts. Other techniques include the use of infected documents that may be of different types: rich text documents, spreadsheets and presentations. The default behavior is to redirect the users to a hacker-controlled page, as well as infect the victims with viruses. They have the ability to modify the settings of the installed web browsers and are usually compatible with the most popular apps: Microsoft Edge, Internet Explorer, Google Chrome, Opera and Safari. When mass infections are intended the hackers can also take advantage of browser hijackers. In this case malware hyperlinks are used to direct the intended victims into them. Another prominent strategy is to send the ransomware file through a hosted instance. The victim recipients are instructed to download and run them. One of them is the direct attachment of the virus files to the messages. There are two primary ways the email messages can be customized. In such cases the malware operators can uses various social engineering scams. It is possible that the event organizers have employed an outdated version of a certain software services which was hijacked.Īnother possibility is the active distribution of the Olympic Destroyer Virus through email messages to users of the internal network. These utilities are loaded with exploits for many of the most commonly used services. The hackers behind the virus may have targeted a particular software vulnerability using an automated penetration testing framework. Using the obtained information we can deduce a few potential infection distribution tactics delivering the Olympic Destroyer Virus samples. However many guests and reporters reported that they started receiving malware emails which means that the Olympic Destroyer Virus has probably penetrated the internal network. A spokesperson later issued a statement that the technical problems affected several areas of the Games without revealing further information.
Media reporters on location shared that shortly before the ceremony the Wi-Fi access stopped working due to technical difficulties. At the moment the released details showcase that the threat has been deployed using a Wi-Fi network. The Olympic Destroyer Virus has become famous as this is the virus that was able to penetrate the 2018 Winter Olympics in Pyeongchang.
0 kommentar(er)
