Windows users have come into contact with a new tech support scam that fakes a Bluescreen of Death (BSOD) in order to trick them into buying fake support software. The scam, which first started to make rounds in late November, takes on the form of a fake troubleshooter program and also prevents normal system operation.
This Windows support scam is distributed as a hacked software installer. When a user attempts to install the software, they instead download a number of unwanted executable files. These files include programs to block removal attempts, display the fake BSOD screen, run the troubleshooter program, and even take screenshot captures of a user’s desktop and upload them online.
Once all malicious programs are downloaded they will start to run in order, first by launching the fake blue screen of death. For anyone not familiar with a BSOD, this is a computer crash alert that typically displays when Windows system files have become corrupt or a hardware failure has occurred. Real BSOD crashes require a full system restart to fix and that should be the first tip off that this malware is a scam.
After the BSOD screen displays, the malware will launch a separate window called Troubleshooting Windows. This troubleshooting program mimics the traditional Windows troubleshooter and will proceed to run a system scan. The scan results are fabricated and always return a list of corrupt or missing files.