A scam about an unlimited and blank ATM card has been doing the rounds for a few months now, probably following the news about the ATM heist in Taiwan that was successful in a way, but didn’t end too well for most of the participants, as they did get caught.
The hosts file is the internet variant of a personal phonebook. We discuss a few malware variants that replace or change that phonebook, so you end up calling the wrong sites. The ones they want you to call.
We show two examples of HTA induced infections we have seen recently. Nothing fancy, but feel free to consider it a general warning, that malware authors are expanding the number of file extensions they are using, to spread their payload.