On November 8, Quang Tri Provincial Police confirmed that they had sent a document to relevant units warning about malware spreading on the social network Zalo.
Accordingly, Quang Tri Provincial Police discovered a dangerous malware spread campaign through the forgery of documents of state agencies on the social network Zalo.
These files are often named closely, easily causing confusion such as D THIEU TICK HIDZET HIDZET, GREEN HIDZET CREATing FIDZETS... Once downloaded and opened by users, the computer will be infected with Valley RAT malware - a type of targeted attack malware (C2: 27124.9.13:5689), allowing bad guys to remotely control the system.
Many other files are also identified as having a high risk, such as: GREEN FIDELY OF WORKlingling FIDELY 2.exe, GREEN FIDELY OF WORKling FIDELY OF WORKling FIDELY OF WORKling FIDELY, GREEN FIDELY OF WORKling FIDELY OF WORKling FIDELY Of WORKling FIDELY Of WORKling FIDELY Of WORKling FIDELY Of WORKling FIDELY Of WORKling FIDELY Of WORKling FIDELY Of WORKling FIDELY Of WORKling FIDELY Of WORKling FIDELY Of WORKling FIDELY.exe.
The provincial police recommend that agencies and units should be vigilant, not open strange files, review the entire information system using the latest updated security software, and disconnect from the Internet when detecting suspected infections.
The unit also requested information technology administrators at agencies to proactively scan the system using security software; at the same time, monitor and block access to IP address 27.124.9.10.
Quang Tri Provincial Police assigned the Department of Cyber Security and High-Tech Crime Prevention to synthesize the results, report to the provincial police leaders, and at the same time request agencies and units to closely coordinate to prevent the risk of spreading malware widely.
