Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11Warning: The new Facebook virus, a malicious code that is spreading rapidly through Messenger
From yesterday (December 18, 2017), a new type of malicious code has appeared and raged in Vietnam. This malicious code is not too sophisticated but is spreading very fast through Facebook Messenger because it is sent from the friends in the friend list.
- How to remove the code as a video format on Facebook Messenger
- How to fix when Facebook is infected with virus
This new malicious code spreads by automatically sending a zip file inside containing a disguised video file via Facebook Messenger with the name 'video_' + 4 random numbers.
According to a malware analyst, this new type of malicious code is written in AutoIT language with the main functions being tampered with:
How the code works
When entering the computer, the malicious code will retrieve and send information to the computer to the hxxp: //ojoku.bigih.bid/api/cherry/login.php address.
The malicious code then downloads and installs a malicious extension to the user's browser. This extension continues to spread the malicious files in video format to friends on the Facebook of the infected person. Then, this malicious code loads the other extension into folders such as desktop, taskbar, program . by writing the chrome shortcut file.
Finally, the malicious code will restart chrome for the extension to work and spread another type of malicious code used to dig the crypto currency as 'coin minner'. This is why your device is always in a state of lag without understanding why.
How to prevent this new malicious code?
If you receive such a file, and have missed the click, download, don't worry too much, the dynamic code hasn't spread to your computer. Because this new malware is only really spread if you open the file.
To prevent this malicious code from spreading on your computer if you accidentally click open the file, open the hosts file and add the following lines:
127.0.0.1 ojoku.bigih.bid
127.0.0.1 plugin.ojoku.bigih.bid
This measure is only temporary. Attackers can easily distribute malicious code other than other domains. Therefore, to avoid this new malicious code, you should not open strange files from Facebook Messenger. Also, use antivirus software to make sure your computer is safe.
See more:
- The new DNS service Quad9 helps block malicious domains
- Detect and prevent Ransomware with CyberSight RansomStopper
Jessica TannerYou should read it
- Warning: New malicious code is infecting about 500,000 router devices
- 14 games on the App Store contain malicious code, iPhone users be careful
- Find bug in Emotet malware, prevent it from spreading for 6 months
- Appearing dangerous Android malicious code specializing in stealing chat content on Facebook Messenger, Skype ...
- Malicious code is growing up
- Warning: new code of virtual money digging is available via Facebook Messenger
- How to prevent .SVG images containing new malware on Facebook
- Malware sneaks into iOS through Apple's official distribution channels
May be interested
- Warning: Dangerous new malicious code spills over to Vietnam
on the afternoon of february 14, bkav's virus surveillance system issued a warning about a w32.weakpass extortion encryption code-targeting campaign targeting vietnamese public servers of foreign hackers. - How to prevent .SVG images containing new malware on Facebookthere is a new virus on facebook now that contains malicious code in the .svg format. when users accidentally click on, facebook accounts can be hacked, even spread malicious code to computers and phones.
- Warning: New malware can hijack Vietnamese users' access to Facebook and Gmaila new line of malicious code using plugx rat is attacking vietnamese users.
- Trend of virus overwriting the file systembach khoa network security center (bkis) issued a warning to users of a new trend of virus originating from china overriding malicious code on standard windows file.
- The first warning about malicious code hidden in the .zip filesecurity researchers have discovered vulnerabilities in common file formats, including .zip.
- Warning: New variants of malicious code digging on Facebook threaten users in Vietnambkav has issued a warning about the emergence of a new variant of the virtual money code spread via facebook, w32.fbcoinminer that is threatening users in vietnam.
- Find bug in Emotet malware, prevent it from spreading for 6 monthsaccording to researcher james quinn of the security firm binary defense, like other software, malicious code also has vulnerabilities, error codes. hackers can exploit software vulnerabilities to cause harm, security experts can also decompile the source code of malicious code to find the vulnerability to exploit and defeat the malicious code.
- Bkav software is mistakenly recognized as malicious codea vnexpress reader received a warning from the avast anti-virus tool developed by alwil software (czech) that the bkav2006 version contained a dangerous code.
- 1.6 million computers in Vietnam were erased by the virus, losing nearly 15,000 billion in 2018according to the survey results from network security company bkav, in 2018, vietnamese users lost 14,900 billion dong, up 21% compared to the damage of 2017.
- New malware using web application has turned into a source of attack, very difficult to detectrecently, researchers from talos (microsoft) and cisco have discovered a new type of malicious code that is very complex and has an extremely fast spreading speed.
Attack the network
- Detecting new malware on Android can damage phones
- Warning: a new variant of the virus that fills virtual money via Facebook Messenger will appear every 10 minutes
- Hundreds of thousands of IoT devices are likely to be attacked by vulnerabilities on the server
- VNCERT warns Internet users in Vietnam to change their email and Facebook passwords immediately
- The handler for hackers attacking the corporate network is the company's employees
- Check email with password leaked by the Information Security website
Detecting new malware on Android can damage phones
Warning: a new variant of the virus that fills virtual money via Facebook Messenger will appear every 10 minutes
Hundreds of thousands of IoT devices are likely to be attacked by vulnerabilities on the server
VNCERT warns Internet users in Vietnam to change their email and Facebook passwords immediately
The handler for hackers attacking the corporate network is the company's employees
Check email with password leaked by the Information Security website