A recent surge in phishing campaigns has been observed, exploiting fake viral videos to lure users into downloading malware. These attacks employ social engineering tactics, redirecting victims through various malicious sites to deliver the payload. Users are drawn in by promises of exclusive content, ultimately leading them to fraudulent pages with misleading download links. Affected: phishing campaigns, users, cybersecurity sector
Keypoints :
- Increased phishing attacks using fake viral video links.
- Social engineering techniques employed to deceive users.
- Victims are redirected through multiple malicious domains.
- Deceptive webpages displaying fake video content and ads.
- Malicious URLs lead to downloads of malware packaged in ZIP files.
- McAfee Labs monitoring indicates significant user encounters with these scams.
- Recommendations include avoiding suspicious links and verifying file sources.
MITRE Techniques :
- Phishing (T1566) – Users are deceived into clicking fake video links leading to malicious downloads.
- Initial Access (T1071.001) – Attackers funnel users through multiple fraudulent sites before malware delivery.
- Execution (T1203) – Executable files are run after users download the malware.
- Persistence (T1547) – Malicious files install into %Roaming% directory to maintain access.
- Exfiltration (T1041) – Potentially sensitive information may be transmitted back to the attackers via established malware channels.
Indicator of Compromise :
- [URL] hxxps[:]//gitb.org/watch-click/?=archive
- [URL] hxxps[:]//purecopperapp.monster/indexind.php?flow_id=107&aff_click_id=D-21356743-1737975550-34G123G137G124-AITLS2195&keyword=Yourfile&ip=115.118.240.109&sub=22697121&source=157764
- [URL] hxxps[:]//savetitaniumapp.monster/?t=d6ebff4d554677320244f60589926b97
- [SHA256] 00001c98e08fa4d7f4924bd1c375149104bd4f1981cef604755d34ca225f2ce1
- [SHA256] 000e75287631a93264d11fc2b773c61992664277386f45fa19897a095e6a7c81
Views: 25
简体中文
Nederlands
Français
Bahasa Indonesia
日本語
Português