「Process Doppelgänging(プロセス ドッペルギャンギング)」
Black Hat Europe 2017Process Doppelgänging
マルウェア「SynAck」
【外部リンク】
https://thehackernews.com/2018/05/synack-process-doppelganging.html
First-Ever Ransomware Found Using ‘Process Doppelgänging’ Attack to Evade Detection
Monday, May 07, 2018 Mohit Kumar
An interesting thing about SynAck is that this ransomware does not infect people from specific countries, including Russia, Belarus, Ukraine, Georgia, Tajikistan, Kazakhstan, and Uzbekistan.
