malware_mailの日記

個人メールアドレスに届いたマルウェアメールを記録

◎12/4~11

どうも連日同じ英文メールが、ウォレットIDを変えて届きます。

そろそろ無視することにしましょうか。

 

件名:Toアドレスローカル部

From:Toアドレス (を偽装)

本文:

 

Hello,

I am a spyware software developer. Your account has been hacked by me in the
summer of 2018.

I understand that it is hard to believe, but here is my evidence (I sent you
this email from your account).

The hacking was carried out using a hardware vulnerability through which you
went online (Cisco router, vulnerability CVE-2018-0296).

I went around the security system in the router, installed an exploit there.
When you went online, my exploit downloaded my malicious code (rootkit) to your
device. This is driver software, I constantly updated it, so your antivirus is
silent all time.

Since then I have been following you (I can connect to your device via the VNC
protocol). That is, I can see absolutely everything that you do, view and
download your files and any data to yourself. I also have access to the camera
on your device, and I periodically take photos and videos with you.

At the moment, I have harvested a solid dirt... on you... I saved all your email
and chats from your messangers. I also saved the entire history of the sites you
visit.

I note that it is useless to change the passwords. My malware update passwords
from your accounts every times.

I know what you like hard funs (adult sites). Oh, yes .. I'm know your secret
life, which you are hiding from everyone. Oh my God, what are your like... I saw
THIS ... Oh, you dirty naughty person ... :)

I took photos and videos of your most passionate funs with adult content, and
synchronized them in real time with the image of your camera. Believe it turned
out very high quality!

So, to the business! I'm sure you don't want to show these files and visiting
history to all your contacts.

Transfer $943 to my Bitcoin cryptocurrency wallet:
17EuB8AmyBm81FgCovdr6huCCoSzv2S7nP Just copy and paste the wallet number when
transferring. If you do not know how to do this - ask Google.

My system automatically recognizes the translation. As soon as the specified
amount is received, all your data will be destroyed from my server, and the
rootkit will be automatically removed from your system. Do not worry, I really
will delete everything, since I am 'working' with many people who have fallen
into your position. You will only have to inform your provider about the
vulnerabilities in the router so that other hackers will not use it.

Since opening this letter you have 48 hours. If funds not will be received,
after the specified time has elapsed, the disk of your device will be formatted,
and from my server will automatically send email and sms to all your contacts
with compromising material.

I advise you to remain prudent and not engage in nonsense (all files on my server).

Good luck!

 

要求額が$943と高めです。

他に、$960、$937、 $977 、$989、$984 、$938 、$926、$993 、$912 、$997、 $935 、・・・きりがありません。

 

ウォレットIDの報告状況は、

https://www.bitcoinabuse.com/reports/17EuB8AmyBm81FgCovdr6huCCoSzv2S7nP

https://www.bitcoinabuse.com/reports/13phdoBirrAtFXKWJQ9HgTYX9b7C2MqXPE

https://www.bitcoinabuse.com/reports/1H2fPTBpvm5tyHqoxTpRy5pYo2qXMbs9to

https://www.bitcoinabuse.com/reports/1Lmk4eUXcmtVU6YQvaPJ4yihu4fEcKtkby

https://www.bitcoinabuse.com/reports/1Q35Tr3ccKWVJjt3yXDuFFD7FRnqCx2UxU

https://www.bitcoinabuse.com/reports/1KzMDhZLokkNd1kcxs2mgwXm97pVvnfRBC

https://www.bitcoinabuse.com/reports/1971pHPgLaTmuYtoH4BsGSfFMZaAjotium

https://www.bitcoinabuse.com/reports/1122NYbAT2KkZDZ5TFvGy4D2Ut7eYfx4en

https://www.bitcoinabuse.com/reports/1EFBBqVxZ4H71TJXJDD7KNPpWMs35kTdVw

https://www.bitcoinabuse.com/reports/13phdoBirrAtFXKWJQ9HgTYX9b7C2MqXPE

https://www.bitcoinabuse.com/reports/1CrPdG13v95Zcq8RTcbzFBhJtHkkxHTTXJ

https://www.bitcoinabuse.com/reports/12UNsp8g6dFjAYiMYwU4WZ73sa5rDEPUYm

https://www.bitcoinabuse.com/reports/1GUBJLcDp19DHhRbH1up8dWwPAeWJfENCz

https://www.bitcoinabuse.com/reports/1KmsJLvvrXwfgBwwuN1Q31stKrLY9UX9JY

https://www.bitcoinabuse.com/reports/1K8TqsB2C1iY8qdGqhnHfgen3uE8GBU7c8

https://www.bitcoinabuse.com/reports/1A7nmeXMjFd8unyg9hopifwBRpWu5MpqQw

https://www.bitcoinabuse.com/reports/1DyDnmFR8KPMdWocDobtYMxSKTNBKsZZdV