Microsoft has identified a new set of other crimes, cyber, called the Moonstone Sleet, who use various techniques to carry out attacks against the company for the purposes of a financial or espionage cyber space. The members are the koreans-veriorë, use the versions of the infected to be the means of legitimate, spread the ransomware in the FakePenny and ask for millions of rewards.
The techniques used in the Moonstone Sleet
Moonstone Sleet, initially used the code developed by another group, the koreans-north (Diamond Sleet). Then he created the infrastructure in order to carry out attacks in different techniques. The main objectives are to homes and companies in the software sector, in the aerospace, mostly those who work with the governments of the west.
During one of the attacks, cyber criminals cyber uses a version of the virus to the PuTTY. The victims, who do not suspect they are contacted by the application of the message, or the platform for the independent. In the ZIP archive to be sent to has the file executable putty.exe a file is a text (url.txt), by IP address, and the password to be used in the vehicle.
After the release of the data, the information, the version of the virus, the PuTTY exercises SplitLoader. This malware is distributed through a package npm to steal the credentials of the Windows. More recently, it was used in a game of infected (DeTankWar), of which, after the start of the use of the malware in the YouieLoad, which is used to scan the network and steal information from your browser.
The most recent occurred in April, 2024. Cyber criminals cyber installed ransomware FakePenny on the computers of the company. After the operation of the file, the malware copies of a document and the text in the array with the instructions that should be followed to pay for the reward. The total amount was 100 of Bitcoin, or about 6.4 million, with the value of the current.
Discussion about this post