• AsakuraMao@moist.catsweat.com
    link
    fedilink
    arrow-up
    37
    ·
    4 months ago

    The torrent was titled as .mkv (normal and expected) but the actual file was .lnk (not normal)… so you would have had to open a weird random .lnk file to activate the trojan?

      • Uriel238 [all pronouns]
        link
        fedilink
        English
        arrow-up
        24
        ·
        edit-2
        4 months ago

        Unhiding extensions is one of the first things I do when setting up windows, but it will still hide the .lnk extension on shortcuts, so it’s still a vector for phishing attacks (specifically, tricking the user to do something that runs malicious code).

        Experienced pirates will get into the habit of taking precautions against malware attacks and will distrust downloads until they are sufficiently vetted,

    • Mr_Blott@feddit.uk
      link
      fedilink
      English
      arrow-up
      21
      ·
      4 months ago

      The comments from obvious teenagers on 1337x on pretty much every torrent suggests that a lot of people do this

    • archomrade [he/him]@midwest.social
      link
      fedilink
      English
      arrow-up
      9
      ·
      4 months ago

      I believe the torrent included both an .mkv and a malicious .lnk file.

      .lnk files are dangerous because they can evade detection and automatically open other files or executable on a computer; AFAIK you would not have had to open the .lnk file yourself.

    • Zoidsberg@lemmy.ca
      link
      fedilink
      English
      arrow-up
      5
      ·
      4 months ago

      I wonder if an automated setup would play it without caring about the extension. If someone had something like Sonarr dropping episodes on a Plex drive, for example.