Attachments
(420 KiB) Downloaded 48 times
ikolor wrote:next..
https://www.virustotal.com/en/file/8465 ... 466968433/
It is used in a malware campaign on Facebook. It tags your friends on a comment and downloads a file.
I am attaching the files that it downloads. I had a quick look, it seems like a ransomware written in Autoit.As you can see in the javascript file, it has some variables in the turkish language. Familiar infection ways have been used by this group in the past (they were putting malicious code inside legit chrome extensions).
