Not too long ago, when Fracturiser was a concern on Minecraft, and I read up on it, I got a chuckle when I read that stage 2 was a systemd service, and therefore couldn’t have run on my machine even if it had gotten that far (of course, I still checked for signs of infection)
I wasn’t sure about it either. There’s security researchers out there who might genuinely want to get a virus to run in a VM.
But yeah, the
cmalw-lib-2.0
gives it away…Yeah, nobody uses
cmalw-lib-2.0
Its deprecated, now we use
hack-lib-client-1.17
systemd-malwared
and its front-endmalctl
are how the cool kids are doing it.Not too long ago, when Fracturiser was a concern on Minecraft, and I read up on it, I got a chuckle when I read that stage 2 was a systemd service, and therefore couldn’t have run on my machine even if it had gotten that far (of course, I still checked for signs of infection)
systemd haters will moan and groan about ‘bloat’ and ‘unnecessary end-user hacking libraries’ smh
It ends with them donating money to the malware’s creator…
Yes, that is odd, but not impossible either. I’ve seen influencers do dumb shit like that for the attention.