![]() ![]() Once triggered, it displays note.txt Notepad window with a warning message in it. The payload is available as an executable (.exe) or a batch file. ![]() This means that ill-minded ne’er-do-wells can take the readily available code and deliver it to users via spam or bundled freeware installations. A user nicknamed Leurak posted the entirety of this information on his GitHub page a couple of months ago. Similarly to the nefarious case of Hidden Tear and EDA2 ransomware built for educational purposes, the source code for the Memz trojan was made available to the public. Luckily, this feature is not universal and it’s restricted to the most aggressive variant of the pest only. One of the most destructive things that Memz can do to a computer is the overwriting of the first 64 KB of the hard disk, which affects the Master Boot Record and thus requires advanced troubleshooting through bootable recovery media. Some of the nasty effects include random apps popping up, weird web search queries being automatically looked up in the browser, the mouse cursor gradually going nuts, and many more things that the average user will hate to witness on their workstation. There is more to its activity than mere pranks, though. Its name is a leetspeak variant of the term “Memes”, which basically reflects a lot of what it does to a contaminated PC. The Memz trojan was originally designed as a proof-of-concept viewer-made malware. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
December 2022
Categories |