By now we've all heard of it malicious software Ransomware who is accustomed to encrypting files or locking the victim's computer and asking for money to decrypt or unlock files and systems.
Emsisoft has spotted a new one Malware Ransomware called "Linkup“, and recognizes it as “Trojan-Ransom.Win32.Linkup.” This Malware does not lock down the victim's computer or encrypt the files. Blocks Internet access by modifying the computer's DNS settings, and turns your computer into a robot minings Bitcoin.
Just the Linkup Trojan εγκατασταθεί στο σύστημά του θύματος, δημιουργεί ένα αντίγραφο του εαυτού του και απενεργοποιεί όλα τα επιλεγμένα ασφαλείας των Windows, αλλά και των υπηρεσιών που θα προσπαθήσουν να σταματήσουν τη μόλυνση. Οι DNS που θα προσθέσει στο μολυσμένο σύστημα, θα επιτρέπουν μόνο στο κακόβουλο λογισμικό να επικοινωνεί με το Internet.
It will then display a fake notification on the victim screen, which is supposed to be from the Council of Europe. The notice accuses the victim of "Juvenile Pornography" and will allow Internet access if the victim pays a negligible fine of 10 Euros.
It is still unconfirmed that if the amount requested is claimed, malware will restore access to the Internet or not, but it is probably a lie. To pay the ransom amount you must use your credit card and submit your personal details. (Would you do it from an infected computer?)
In addition to blocking Internet access, Linkup is also trying to download and install other malicious programs. With this, he will convert the victim's computer into a Bitcoin mining tool, linked to a botnet, to combine the computing power of many infected computers and earn more Bitcoins.
Η Emsisoft says about malware:
"If your computer is infected, do not pay a ransom and do not provide any personal information. Install it Emsisoft Anti-Malware remove the malware and reset your system DNS settings. ”