This new malware locks you out of Windows 10 - but there's a simple fix

News
By
published

‘Your computer has been trashed’, scam says

(Image credit: Shutterstock / La1n)

Security researchers have discovered a new malware scam capable of locking Window users out of their PCs - the first of its kind to play on fears surrounding the ongoing pandemic.

Referred to as MBRLockers, this group of malware substitutes the Windows Master Boot Record (MBR), preventing the operating system from starting up as usual.

Victims are typically presented with a ransom note demanding an unlock key is purchased via the dark web, or simply a derisive message from the hacker.

According to MalwareHunterTeam, the group responsible for the discovery, the new malware is being diffused as executable file COVID-19.exe.

Windows malware

The new coronavirus-themed malware reportedly executes a batch file that shifts various data, configures certain programs to open on boot and then forces Windows to restart.

Once the PC has restarted for the first time, the user is met with an image of the coronavirus and a jeering message: “coronavirus has infected your PC!”. On every subsequent restart, a plain-text message reads “Your Computer Has Been Trashed (sic)”.

An investigation by cybersecurity firms Avast and SonicWall found the malware also executes a program that backs up the original MBR to a separate location and replaces it with a custom version, responsible for the threatening messages at restart.

The Avast investigation also uncovered a bypass included in the custom MBR that allows affected users to revert to the original and boot Windows as normal. This can be performed by pressing the CTRL, ALT and ESC keys simultaneously.

Opportunist cybercriminals of all varieties are capitalising on panic surrounding the coronavirus. Recent weeks have seen ransomware and DDoS attacks on healthcare institutions, including the World Health Organisation, and a multitude of virus-themed phishing scams enter circulation.

Users are advised to exercise particular caution when downloading files, ensure devices are protected with effective security software and use VPN services to preserve online privacy.

Via Bleeping Computer

TOPICS
Joel Khalili
Joel Khalili
News and Features Editor

Joel Khalili is the News and Features Editor at TechRadar Pro, covering cybersecurity, data privacy, cloud, AI, blockchain, internet infrastructure, 5G, data storage and computing. He's responsible for curating our news content, as well as commissioning and producing features on the technologies that are transforming the way the world does business.

Latest in Security
Woman shocked by online scam, holding her credit card outside
Cybercriminals used vendor backdoor to steal almost $600,000 of Taylor Swift tickets
Woman using iMessage on iPhone
UK government guidelines remove encryption advice following Apple backdoor spat
Cryptocurrencies
Ransomware’s favorite Russian crypto exchange seized by law enforcement
Wordpress brand logo on computer screen. Man typing on the keyboard.
Thousands of WordPress sites targeted with malicious plugin backdoor attacks
HTTPS in a browser address bar
Malicious "polymorphic" Chrome extensions can mimic other tools to trick victims
ransomware avast
Hackers spotted using unsecured webcam to launch cyberattack
Latest in News
MacBook Air mute key
The new M4 MacBook Air finally fixes an Apple keyboard annoyance that's been around for decades
A collage of Ellie and Joel in The Last of Us season 2
The Last of Us season 2's new trailer teases a huge showdown between Bella Ramsey's Ellie and Pedro Pascal's Joel, but the big moment I'm waiting for is still being held back
Apple iPhone 16 Pro Max REVIEW
New iPhone 17 Air leak may have revealed some key specs – and how it compares to the iPhone 17 Pro Max
Gaming with AI
I asked Gemini to play a text-based adventure game with me and the AI whisked me away to a word-based fantasy
Apple iPhone 16 Review
Three iPhone 17 model dummy units appear in a hands-on video leak
The Samsung Galaxy S25 Edge on display the January 22, 2025 Galaxy Unpacked event.
New Samsung Galaxy S25 Edge may have revealed some key details – including its price
More about security
Woman shocked by online scam, holding her credit card outside

Cybercriminals used vendor backdoor to steal almost $600,000 of Taylor Swift tickets
Cryptocurrencies

Ransomware’s favorite Russian crypto exchange seized by law enforcement
Image of GTA 6 protagonists and PS5

GTA 6's console-only launch reminds me of how much I despise console exclusivity - is it worth waiting years for PC ports?
See more latest
Most Popular
Samsung NAND
Well, that's unexpected: Samsung will team up with its fiercest Chinese rival to produce next gen NAND flash
MacBook Air mute key
The new M4 MacBook Air finally fixes an Apple keyboard annoyance that's been around for decades
Gaming with AI
I asked Gemini to play a text-based adventure game with me and the AI whisked me away to a word-based fantasy
A collage of Ellie and Joel in The Last of Us season 2
The Last of Us season 2's new trailer teases a huge showdown between Bella Ramsey's Ellie and Pedro Pascal's Joel, but the big moment I'm waiting for is still being held back
Molecular hard drive
Chinese researchers are looking to create a revolutionary type of hard drive based on organic materials but huge unknowns remain
Quordle on a smartphone held in a hand
Quordle hints and answers for Monday, March 10 (game #1141)
NYT Strands homescreen on a mobile phone screen, on a light blue background
NYT Strands hints and answers for Monday, March 10 (game #372)
NYT Connections homescreen on a phone, on a purple background
NYT Connections hints and answers for Monday, March 10 (game #638)
Apple iPhone 16 Pro Max REVIEW
New iPhone 17 Air leak may have revealed some key specs – and how it compares to the iPhone 17 Pro Max
Dynabook Portégé Z40L-N
Dynabook's newest laptop has a 4-year warranty, a swappable battery, a weight of under 1 kg, and even a LAN port