Corona Virus - Fake site/malware - Snowblower Forum : Snow Blower Forums
LinkBack Thread Tools
post #1 of 5 Old Yesterday, 02:05 PM Thread Starter
Senior Member
Join Date: Mar 2015
Location: nova scotia-south shore - ave annual snowfall 199.4 cm ( 78.5 ")
Posts: 2,396
Post Thanks / Like
Thanks (Given): 81
Thanks (Received): 172
Likes (Given): 409
Likes (Received): 651
Corona Virus - Fake site/malware

Fake Online Coronavirus Map Delivers Well-known Malware
Health Sector Cybersecurity Coordination Center (HC3)
[email protected]
Date: March 10, 2020
A malicious website pretending to be the live map for Coronavirus COVID-19 Global Cases by
Johns Hopkins University is circulating on the internet waiting for unwitting internet users to
visit the website. Visiting the website infects the user with the AZORult trojan, an information
stealing program which can exfiltrate a variety of sensitive data. It is likely being spread via
infected email attachments, malicious online advertisements, and social engineering.
Furthermore, anyone searching the internet for a Coronavirus map could unwittingly navigate
to this malicious website.
Threat Details
A sample of the malware being deployed by “corona-virus-map[dot]com” was submitted and
analyzed by and received an extremely malicious threat score of 100/100 with Anti-virus (AV)
detection at 76%. This sample was labelled by Hybrid-Analysis as a Trojan.
End users should be warned about this cybersecurity risk and security teams should blacklist
any indicators associated with this specific threat. IOCs and Analysis may be found here:
Requests for Information
Need information on a specific cybersecurity topic? Send your request for information (RFI) to
[email protected] or call us Monday-Friday, between 9am-5pm (EST), at (202) 691-2110.

24 " 1967? Ariens Sno thro
28 " Ariens Sno Tek
Toro CCR ss
1966 Gravely LI Walk behind with dog eater

To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
nwcove is online now  
Post Thanks / Like - 2 Thanks, 0 Likes, 0 Dislikes
Thanks NVA4370, RedOctobyr thanked for this post
Sponsored Links
post #2 of 5 Old Yesterday, 03:27 PM
Senior Member
orangputeh's Avatar
Join Date: Nov 2016
Location: lake tahoe
Posts: 4,562
Post Thanks / Like
Thanks (Given): 756
Thanks (Received): 231
Likes (Given): 1549
Likes (Received): 1590
wow great.

people will always find a way to cash in on something like this.

"It Feels Like Beer O'Clock "
orangputeh is online now  
post #3 of 5 Old Yesterday, 03:39 PM
Senior Member
uberT's Avatar
Join Date: Dec 2013
Location: Boston suburbs
Posts: 1,492
Post Thanks / Like
Thanks (Given): 102
Thanks (Received): 85
Likes (Given): 271
Likes (Received): 148
Yeah, we had a corporate level warning this morning. Same stuff, deranged people doing this.
uberT is offline  
post #4 of 5 Old Yesterday, 05:12 PM
Senior Member
Join Date: Jun 2016
Location: Québec
Posts: 238
Post Thanks / Like
Thanks (Given): 0
Thanks (Received): 14
Likes (Given): 5
Likes (Received): 64
When a site about a virus has a virus.
guyl is offline  
post #5 of 5 Old Today, 02:16 AM
Senior Member
Join Date: Jan 2018
Location: North Dallas area and UP of MI, average snowfall 202"
Posts: 933
Post Thanks / Like
Thanks (Given): 26
Thanks (Received): 84
Likes (Given): 84
Likes (Received): 247
. . . but likely only an issue if you run WhinDerp . . . *and* don't pay much attention . . .
tadawson is online now  
Sponsored Links

Quick Reply

Register Now

In order to be able to post messages on the Snowblower Forum : Snow Blower Forums forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.

User Name:
Please enter a password for your user account. Note that passwords are case-sensitive.


Confirm Password:
Email Address
Please enter a valid email address for yourself.

Email Address:


Posting Rules  
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On

For the best viewing experience please update your browser to Google Chrome