Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
SystemThe owner of extortionist Lockey is a big fan of Game of Thrones
This is a group of fans that Georgle RR Martin might not want to be in the line of kingship - a group of ransomware Locky authors.
According to what researchers at PhishMe recently discovered, the hacker group behind malicious code Locky is a fan of HBO's hit series, so much so that they include script names of movie characters and lots of information. other.
The researchers found this information in Visual Basic scripts, part of a ZIP or RAR file attached to a spam email. When the user opens the mail, download the file and run this script, the file will download and install Locky.
Names related to Game of Thrones can be found in VB scripts such as Aria, SansaStark, RobertBaration, JohnSnow and HoldTheDoor (or Hodor). The word Throne is also used 70 times.
Many names related to Game of Throne can be found in the script of malicious code
The runtime environment of this script does not matter how variable names are. The variable name would be fine, although it was a random combination of letters and numbers, 'said researcher Victor Cornell at PhishMe. 'The people behind this malicious code choose their own themes for their variables, thus revealing their interests'.
According to an independent researcher at MalwareHunter, this scenario has been exploited for several weeks. Below is IOC information.
File name: SCNMSG00001018.vbs
MD5: 170ae05fb405e9f2b2a4474739b75a66
SHA256: fc89d30e245a8b166af2e17b2d7b6835ff15999d746b91214edcfdc7b9c5db35
- HBO hacked, leaked episodes with the Game of Thrones script
- After the Game of Thrones, 'Khal Drogo' and 'Dwarfs' invited each other to film a Vampire
- HBO is about to turn George RR Martin's worst ... book into the Game of Thrones pre-series
- Covid-19 gave writer George RR Martin more free time to write the novel version of Game of Thrones
- The Witcher and Game of Thrones stars are positive for coronavirus
- The 'father' of Game of Thrones wanted to die with the Stark family during The Red Wedding event
- List of the 3 most dangerous and scary Ransomware viruses
- Instructions for using HitmanPro.Kickstart to boot the infected computer
- Is Ransomware Annabelle scary with Annabelle movies?
- How do hackers turn thousands of bitcoin virtual currencies after stealing into cash?
- MongoDB malicious code attacks more than 26,000 victims in a week
- Lukitus Guide to preventing extortion malicious code
- Ryuk Ransomware has added 'selective' encryption capabilities.
- Shade ransomware, the nightmare of 5 years ago is showing signs of returning
- Ransomware (ransomware) is showing signs of explosion worldwide, paying is no longer the most effective option.
- Appearing dangerous Android malicious code specializing in stealing chat content on Facebook Messenger, Skype ...
How to Delete Duplicate Records in Oracle 
7 common mistakes to avoid when naming applications 
Full Moon facts - Full moon you may not know yet 
Learn about .io domain names 
7 rules to remember when naming hardware devices 
Stories behind .unicorn, .ninja and other strange domain names 
Technology story
Technology comments
Quiz technology
New technology
British talent technology
Attack the network
Artificial intelligence
Mac OS X
Hardware
Game