Connect with us

Software

Fake Telegram Installers Coming With Purple Fox Virus

Published

on

Within the instant messaging tools, Telegram is one of the most popular thanks to the variety of options it offers us and how robust this platform is in terms of security.

Also Telegram not only offers you the opportunity to take advantage of its options from the smartphone, but also on the PC, since it has an official version designed for this platform.

However, the presence of fake PC versions of this messaging tool that could put the security of these computers at risk.

It all started in March 2021 with the detection of a malware known as Purple fox, which acted by scanning and infecting the Windows operating system via the internet in order to make it vulnerable and then proceed to attack it.

It is worth mentioning that before that, in 2018, this same malware had been detected carrying out the infection of computers through phishing emails and exploit kits.

Now it seems that the malware has changed its strategy and is infiltrating computers through fake installers by Telegram for PC from unofficial pages.

In that sense, the installer renders a compiled autoIT script named “Telegram Desktop.exe»That when transferred to the PC generates two icons: a real one from the Telegram installer accompanied by a malicious one.

Although the only way to run the Telegram installer is by clicking on it, in the case of the autoIT program it does not need to be clicked to run, as it does so automatically.

Once this happens, the program proceeds to create a new folder called TextInputh at the address C: Users Username AppData Local Temp

In this directory is stored the icon of the legitimate Telegram installer that will not even run, along with the malicious downloader.

Once created TextInputh.exe inside the folder it starts its destructive action by first copying the file 360.tct with name “360.dll“, followed by rundll3222.exe Y svchost.txt in the folder ProgramData.

Then start the execution of the file ojbk.exe, then going to eliminate 1.rar Y 7zz.exe, thereby marking the end of the process.

After this a registry key for persistence is generated, while dll starts disabling the Control of User account, then giving way to the execution of the payload (scvhost.txt) which causes the unauthorized installation of five more files on the computer.

Ultimately, the purpose of these files is to make it difficult for security tools installed on your computer to detect Purple Fox malware.

.

Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Software

This Telegram feature allows you to store unlimited files online

Published

on

Highly appreciated by Internet users for the transfer of unlimited files, the Telegram application receives a new very practical service. Developers have used an end-to-end encrypted messaging app API to create an unlimited cloud storage service. Good news for people who want to keep documents and files for free.

Telegram
Credits 123rf

A cloud storage service on Telegram

TeleDrive developers are innovating with a very interesting new service. They relied on the API available on Telegram to develop a free cloud storage system. You can then use it to store files much like on Google One or OneDrive. To use it, simply link your Telegram account and associate it with TeleDrive to start downloads.

Read also : 7 Telegram Features That Might Make You Ditch WhatsApp

However, note that this service has some limitations. In free mode, the user is limited to 1.5 GB bandwidth and daily 2 GB downloads. However, it is possible to remove this restriction by subscribing to a $10/year subscription with TeleDrive. You will be able to download large volumes of files no matter the time of day.

The peculiarities of Telegram’s cloud storage

Telegram is an end-to-end encrypted instant messaging application. In view of this, the files stored on TeleDrive are of a confidential nature. That said, note that it is possible to make them public and share it by message to your contacts on Telegram. You can generate a URL that anyone on the internet can easily access.

The use of this cloud storage service, however, poses a big concern. TeleDrive has not established any collaboration with the administration that governs the operation of Telegram. At any time, the latter could therefore decide to eliminate this service. It just needs to limit or break its API from its cloud storage. It is for this reason that specialists recommend using it as a secondary backup solution.

SOURCE: LIFEHACKER

.

Continue Reading

Software

WhatsApp will soon be able to draw with different strokes

Published

on

The Meta (former Facebook) team of the popular WhatsApp messenger is working on a new interesting feature for users.

WhatsApp will soon be able to draw with different strokes

In the latest beta version of WhatsApp for Android, there are hints of new drawing tools. As the thematic resource WABetaInfo drew attention to, two new pencils have been added to the built-in WhatsApp image editor in addition to the existing pencil. The pencil icons indicate that the new pencils will allow you to draw thicker lines on images or videos.

WhatsApp will soon be able to draw with different strokes

WhatsApp currently allows you to change the color of the pencil, but there is no way to increase or decrease the thickness of the stroke. In addition, WhatsApp has begun work on a blur tool. This should make it easier to share screenshots and photos by allowing you to “blur” the areas you need before sending.

It is not yet clear when the new tools will become publicly available in the stable versions of WhatsApp.

.

Continue Reading

Software

Third-party widgets will still appear in Windows 11

Published

on

One of the most notable features of the Windows 11 operating system, apart from the new Start menu, is the widget bar. However, it did not arouse much enthusiasm on the part of users, since all widgets are created by Microsoft and are limited in terms of functionality and settings. However, this situation may soon change.

Third-party widgets will still appear in Windows 11

Even before the official debut of Windows 11, there were rumors that Microsoft would allow third-party widgets in the new OS. Enthusiasts have now found evidence of the imminent launch of support for third-party widgets in a developer advisory posted on Microsoft’s website.

The support document assumes that third-party widgets will be web-facing, and Microsoft has no plans to open the ability to create Win32 or UWP widgets yet, but this may change in the future.

Third-party widgets will still appear in Windows 11

As noted by the thematic resource WindowsLatest, the new “Widgets” may be part of the big Windows 11 22H2 update, also known as Sun Valley 2. The release of this version is expected at the end of summer. The focus will be on improving the quality of the existing user interface.

.

Continue Reading

Most Popular