상세 컨텐츠

본문 제목

악성코드 감염 내용으로 사용자를 협박하여 비트코인을 요구하는 혹스(Hoax)메일 주의!

악성코드 분석 리포트

by 알약(Alyac) 2018. 10. 29. 10:33

본문



안녕하세요 이스트시큐리티 시큐리티대응센터(ESRC)입니다.


악성코드 감염 내용으로 사용자를 협박하여 비트코인을 요구하는 혹스(Hoax)메일이 유포되고 있어 사용자들의 주의가 필요합니다. 





이번에 유포된 혹스메일은 '사용자 이메일주소 is compromised. password must be changed'라는 제목으로 유포되고 있습니다. 


내용은 유출된 사용자의 계정정보를 통하여 사용자 PC에 악성코드 감염시켰으며, 사용자의 은밀한 행위를 캡쳐화면으로 저장해 놓고 있다고 밝히고 있습니다. 또한 이 캡쳐화면을 사용자 지인들에게 유포할 것이라고 협박하고 있습니다. 


다음은 혹스메일 전문입니다. 


Hello!


I'm a programmer who cracked your email account and device about half year ago.

You entered a password on one of the insecure site you visited, and I catched it.


Of course you can will change your password, or already made it.

But it doesn't matter, my rat software update it every time.


Please don't try to contact me or find me, it is impossible, since I sent you an email from your email account.


Through your e-mail, I uploaded malicious code to your Operation System.

I saved all of your contacts with friends, colleagues, relatives and a complete history of visits to the Internet resources.

Also I installed a rat software on your device and long tome spying for you.


You are not my only victim, I usually lock devices and ask for a ransom.

But I was struck by the sites of intimate content that you very often visit.


I am in shock of your reach fantasies! Wow! I've never seen anything like this!

I did not even know that SUCH content could be so exciting!


So, when you had fun on intime sites (you know what I mean!)

I made screenshot with using my program from your camera of yours device.

After that, I jointed them to the content of the currently viewed site.


Will be funny when I send these photos to your contacts! And if your relatives see it?

BUT I'm sure you don't want it. I definitely would not want to ...


I will not do this if you pay me a little amount.

I think $852 is a nice price for it!


I accept only Bitcoins.

My BTC wallet: 17XHRucfd4kx3W5ty7ySLGiKHqmPUUdpus


If you have difficulty with this - Ask Google "how to make a payment on a bitcoin wallet". It's easy.

After receiving the above amount, all your data will be immediately removed automatically.

My virus will also will be destroy itself from your operating system.


My Trojan have auto alert, after this email is looked, I will be know it!


You have 2 days (48 hours) for make a payment.

If this does not happen - all your contacts will get crazy shots with your dirty life!

And so that you do not obstruct me, your device will be locked (also after 48 hours)


Do not take this frivolously! This is the last warning!

Various security services or antiviruses won't help you for sure (I have already collected all your data).


Here are the recommendations of a professional:

Antiviruses do not help against modern malicious code. Just do not enter your passwords on unsafe sites!


I hope you will be prudent.

Bye.



이번 혹스 메일은 영문으로 유포되었지만, 이미 유사한 내용의 한글 이메일로 유포된 적이 있었던 만큼, 사용자여러분들께서는 섣불리 금전을 결제하지 않도록 주의하시기 바랍니다. 


감사합니다. 




관련글 더보기

댓글 영역