MyKingz Using Taylor Swift Image to Spread

Threat Watch

Threat Watch MyKingz Using Taylor Swift Image to Spread

MyKingz Using Taylor Swift Image to Spread

Binary Defense
December 19, 2019
1:54 pm
No Comments

The prolific mining botnet, MyKingz has begun using an interesting and funny technique to hide their malicious payloads. By embedding the executable into JPEGs of Taylor Swift, the malware attempts to evade detection products. While this isn’t a huge risk, it does add to the growing problem of MyKingz, which earns an estimated profit of $300 per day.

ANALYST NOTES

MyKingz’ primary means of lateral movement is through EternalBlue. Additionally, MyKingz uses brute-forcing of weak passwords in order to gain access to vulnerable systems. Patching systems for MS17-010 and using strong passwords will protect systems from the MyKingz botnet. If patches cannot be conducted in a timely manner, making sure that port 445 is inaccessible from the internet is a quick fix to the issue as well.

The war in Ukraine and its impact on how China views Taiwan

Digging through Rust to find Gold: Extracting Secrets from Rust Malware

5 Critical Criteria for evaluating Managed Detection & Response (MDR)

How Ransomware Capabilities Are Evolving and What You Can Do to Keep Your Organization Secure

Threat Watch