Fatality: 'Mortal Kombat' Ransomware Targets Windows Systems in US
Hackers have decided to incorporate the video game Mortal Kombat into a new ransomware attack that’s been targeting Windows computers in the US.
Since last month, the ransomware has been spotted targeting individual users, small businesses, and large companies, according(Opens in a new window) to a report from Cisco’s Talos cybersecurity division.
Infected computers will generate a ransom note that features a wallpaper image from the game Mortal Kombat 11. The same note will demand victims contact the hackers through an instant messaging app and pay up in Bitcoin to free the computer.
Hackers are currently delivering the ransomware through phishing emails that impersonate the cryptocurrency platform CoinPayments. The email will claim the user’s cryptocurrency payment “timed out” while including a malicious ZIP file in the attachment.
The malicious ZIP file will contain “a filename resembling a transaction ID mentioned in the email body, enticing the recipient to unzip the malicious attachment and view the contents,” Cisco Talos notes. But in reality, the contents of the ZIP can trigger a computer to download the Mortal Kombat ransomware or another malware strain known as Laplas Clipper, which is designed to steal cryptocurrency from a victim’s digital wallet.
The Mortal Kombat ransomware will then encrypt all the files onboard a victim’s computer, including virtual machine files and files in the recycle bin.
“MortalKombat did not show any wiper behavior or delete the volume shadow copies on the victim’s machine. Still, it corrupts Windows Explorer, removes applications and folders from Windows startup, and disables the Run command window on the victim’s machine, making it inoperable,” Cisco Talos says.
Laplas
Read more on pcmag.com
