Wannalocker: Android Users Wanna'Cry'

Wannalocker: Android Users Wanna'Cry'. After the terror we saw with the dangerous Wannacry ransomware, another ransomware is on play. Unlike the wannacry, those ransomware is specialized for infecting android phones. Although, now the attack is spread only among Chinese users.



Connection to Wannacry


When it infects, the message screen coming by may scare you. Because it has a most familiar look we all saw presently. That’s why it is called as a Copycat of Wannacry Ransomware. Also the security company Avast named it as “wannalocker”. But the point is, the ransomware could spread havoc among the infected people and it can easily get famous. Only the name is enough, WANNACRY. We can understand that the attacker expects a quicker transfer of money. That might be the reason why the attacker decided to design the message screen display to look alike wannacry.




[caption id="attachment_3655" align="aligncenter" width="422"] wannalocker display photo: avast[/caption]

The ransomware was first reported by the Chinese security company Qihoo 360. Wannalocker have spread through the Chinese gaming forums. It tricked the users to download the ransomware as they were downloading a plugin of the popular Chinese game “King of Glory”. When infected, the icon of the app first changes and then then the wallpaper.




[caption id="attachment_3653" align="aligncenter" width="680"] Wannalocker Disguises as "King of Glory" Plug-in[/caption]

Another thing is, the ransomware is designed to infect the external storage of the phone. It has a powerful AES encryption while the previously spreader android ransomwares were just showing the lock screens. So it is very dangerous. The attackers asks the victims a ransom of 40 Chinese yuan which will be equivalent to almost 5-6 US Dollars and 380 Indian Rupee.






Read More: Good News for Wannacry Victims: Your Files Are Easy to Recover!


The ransomware put some exceptions on the infection. That is, it does not affect files staring with “.”(dot) and does not affect the words “download”, ”DCIM”, “COM.”, “miad” included files and path bigger than 10kb. The cyber team from avast also explained that the ransomware adds a long weird extension which includes Chinese and Latin characters.




[caption id="attachment_3651" align="aligncenter" width="499"] Wannalocker Extension Photo: Avast[/caption]

Payment Not With CryptoCurrencies


The most interesting thing is that the ransom money is not asked in the form of any cryptocurrencies like bitcoins.  They asked the victims to pay using Chinese local transfer methods like QQ, AliPay and weChat through QR code. The police can easily trace that accounts when the transfer occurs. That too in a country, where the authorities has a deep access into the data of technological firms. It really confuses the tech world. They doubt that how the same hackers who created a sold encryption methods to lock the files could do such a foolishness. However, the assumptions are that the attackers might be Amateurs.




[caption id="attachment_3652" align="aligncenter" width="680"] Payment Through QR Codes[/caption]

Solution:


The cyber team of Qihoo 360 has already released a decryption tool.


[button color="" size="" type="square" target="" link="https://22a2b2.lt.yunpan.cn/lk/cGVCamBZgR4fG"]Download[/button] [Code to download:0778]






Read More: 20 Best Hacking Apps For Android – Part 4




  • Try not to download anything from untrusted sources.

  • Keep an antivirus up-to date in each of your device.


The avast team has something for you,


To protect your phone and valuable photos, videos, contacts stored on it from ransomware, make sure you frequently backup your data and install antivirus on all of your devices.

Comments

Post a Comment

Popular posts from this blog

Remove Unused Media From WordPress

Image
Remove Unused Media From WordPress Remove Unused Media From WordPress Clean your Media Library from the media which aren’t used in any of your posts, gallery and so on. It features an internal trash, moving the files in there temporarily for you to make sure the files aren’t actually in used; once checked, you can trash them permanently. Before using this plugin, make sure you have a proper backup of your files and database. This is the most important step on the usage of this plugin as you can’t trust any file deletion tools. The Pro version of this plugin brings also scanning to the /uploads folder and will detect which files aren’t registered in the Media Library, not used in your content and so on. Retina images are also detected and supported, shortcodes, HTML in sidebars and of course your posts, pages and all post types. Read More From My Site:  [TopAdd] Social Locker Premium Plugin For WordPress Launch Taskbar Programs With Keyboard How To Downgrade WordPress To A
Keep reading

Download YouTube Videos Using TubeMate

Image
Download YouTube Videos Using TubeMate Download YouTube Videos Using TubeMate  Many YouTube video downloading apps available in Google Play Store but today TubeMate is much better & fastest way to  download videos  from YouTube and other websites. TubeMate  not available on Android Market but you can download it manually and install it. "YouTube is an American video-sharing website headquartered in San Bruno, California. The service was created by three former PayPal employees – Chad Hurley, Steve Chen, and Jawed Karim – in February 2005. Wikipedia " Read More From My Site Wanna locker : Android Users Wanna'Cry' 20 Best Hacking Apps For Android - Part 4 How To Block Ad Blocker Extension In Browser Social Locker Premium Plugin For WordPress DroidSQLi Hack Website Using SQL Injection How To Remove System App From Android Without Root What Is SEO Why SEO Important [caption id="" align="aligncenter" width="600"] Down
Keep reading

How To Send Plain Text Mail Using PHP Mail Function

How To Send Plain Text Mail Using PHP Mail Function PHP makes use of mail() function to send an email. This function requires three mandatory arguments that specify the recipient's email address, the subject of the the message and the actual message additionally there are other two optional parameters. Here is the description for each parameters. Sr.No Parameter & Description 1 to Required. Specifies the receiver / receivers of the email 2 subject Required. Specifies the subject of the email. This parameter cannot contain any newline characters 3 message Required. Defines the message to be sent. Each line should be separated with a LF (\n). Lines should not exceed 70 characters 4 headers Optional. Specifies additional headers, like From, Cc, and Bcc. The additional headers should be separated with a CRLF (\r\n) 5 parameters Optional. Specifies an additional parameter to the send mail program As soon as the mail function is called PHP will attempt to send the email then it will
Keep reading