Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
SystemWarning: The new Facebook virus, a malicious code that is spreading rapidly through Messenger
From yesterday (December 18, 2017), a new type of malicious code has appeared and raged in Vietnam. This malicious code is not too sophisticated but is spreading very fast through Facebook Messenger because it is sent from the friends in the friend list.
From yesterday (December 18, 2017), a new type of malicious code has appeared and raged in Vietnam. This malicious code is not too sophisticated but is spreading very fast through Facebook Messenger because it is sent from the friends in the friend list.
- How to remove the code as a video format on Facebook Messenger
- How to fix when Facebook is infected with virus
This new malicious code spreads by automatically sending a zip file inside containing a disguised video file via Facebook Messenger with the name 'video_' + 4 random numbers.
According to a malware analyst, this new type of malicious code is written in AutoIT language with the main functions being tampered with:
How the code works
When entering the computer, the malicious code will retrieve and send information to the computer to the hxxp: //ojoku.bigih.bid/api/cherry/login.php address.
The malicious code then downloads and installs a malicious extension to the user's browser. This extension continues to spread the malicious files in video format to friends on the Facebook of the infected person. Then, this malicious code loads the other extension into folders such as desktop, taskbar, program . by writing the chrome shortcut file.
Finally, the malicious code will restart chrome for the extension to work and spread another type of malicious code used to dig the crypto currency as 'coin minner'. This is why your device is always in a state of lag without understanding why.
How to prevent this new malicious code?
If you receive such a file, and have missed the click, download, don't worry too much, the dynamic code hasn't spread to your computer. Because this new malware is only really spread if you open the file.
To prevent this malicious code from spreading on your computer if you accidentally click open the file, open the hosts file and add the following lines:
127.0.0.1 ojoku.bigih.bid
127.0.0.1 plugin.ojoku.bigih.bid
This measure is only temporary. Attackers can easily distribute malicious code other than other domains. Therefore, to avoid this new malicious code, you should not open strange files from Facebook Messenger. Also, use antivirus software to make sure your computer is safe.
See more:
- The new DNS service Quad9 helps block malicious domains
- Detect and prevent Ransomware with CyberSight RansomStopper
- Warning: new code of virtual money digging is available via Facebook Messenger
- Warning: New malicious code is infecting about 500,000 router devices
- Watch out for the risk of spreading the virus from Facebook Messenger on Windows, MacOS and Linux
- How to prevent malicious blackmail JPG code via Facebook Messenger
- Warning of new malware appear like Wannacry, capable of deleting Vietnamese percussion on computer
- Appearing dangerous Android malicious code specializing in stealing chat content on Facebook Messenger, Skype ...
- Discover a software stealing Facebook account on the phone developed by Vietnamese hackers
- Warning: new code of virtual money digging is available via Facebook Messenger
- New malware using web application has turned into a source of attack, very difficult to detect
- Appearing dangerous Android malicious code specializing in stealing chat content on Facebook Messenger, Skype ...
- Discovered a group of hackers who use secret code to spy on 21 countries
- Warning: A new code of virtual money training is spreading strongly in Vietnam
- Warning: New malicious code is infecting about 500,000 router devices
- Discovered a new line of malicious Android code that steals user data on the electronic application market
- Bad Rabbit - Petya's new ransomware spreads throughout Eastern Europe
- Warning: GandCrab extortionist code is attacking Vietnam
-
CD Key CS versions, CD Key CS 1.1, Key CS 1.3, Key CS 1.6 - Panasonic air conditioner error code, air conditioner: How to check and diagnose
- Instructions on how to diagnose errors Toshiba washing machine and how to handle
- How to find the Adorable Home code and enter the code
- Samsung Air Conditioning, Air Conditioning Code: How to check and diagnose
- Postal / Zip Code postal code list in Vietnam
CD Key CS versions, CD Key CS 1.1, Key CS 1.3, Key CS 1.6 
Panasonic air conditioner error code, air conditioner: How to check and diagnose 
Instructions on how to diagnose errors Toshiba washing machine and how to handle 
How to find the Adorable Home code and enter the code 
Samsung Air Conditioning, Air Conditioning Code: How to check and diagnose 
Postal / Zip Code postal code list in Vietnam 
Technology story
Technology comments
Quiz technology
New technology
British talent technology
Attack the network
Artificial intelligence
Mac OS X
Hardware
Game