Hey, you !
Did you know that the world is an old computer, running an outdated version of Earth 64. Plenty of folders are sharing what’s left of the disk space, separated like countries and seas.
In these folders, i spot many files, programs and links. Some can be executed, modified or deleted. I can even create one. Unfortunately i can’t access most of them. The computer is telling me that I don’t have enough rights.
It’s amazing how they all share the same memory and power. But not that suprising that some of them are using more CPU, disk and memory than others. Not that they are more useful to the system. They were just launched first.
As far as i can see, several processes are running. I see many democracy.exe, but it looks like some of them got killed….. Oh ! One is launching.
It seems like this system has not been updated for a long time. Most of the softwares seems from another age. I see error everywhere. And despite the patches that have been installed, they mostly look unstable. Unaware of what the technology might offer today. they may have reached the « end of life » state. They need an upgrade. A recoding, refactored and optimized. But it will take time. Good things always take time. In the meantime, let’s hope none of them crash.
An interactive session is running on the terminal. An administrator is editing a file : destiny.txt. It’s weird cause this file is empty.
There are a few things on the desktop, mainly audio files, pictures, and PDFs. They are categorized with icons and colors. Luckily, it seems I can open them. But wait ! I’m not here for that.
This computer is infected, i can see malicious processes running out there. desease64.exe version 3.1, capitalism.exe, war.exe version 3. Surprisingly, war.exe seems to have a lot of threads. There are many scripts too. racism.sh, homophobia.js and even colonialism.py. They were detached from a shell. It’s strange….. It looks like some of them have spawned from a process named love.exe. I’ve never seen something like that. What is going on ? I think we need to investigate.
Love.exe might have been injected, its memory might have been hollowed, forced to load a malicious shellcode. Its process tree doesn’t make sense. I need more time….
Oh, I see! There’s a task called Fear. It is scheduled to run every single day. It looks like it’s creating files in every folder on this computer, spreading itself like a worm – infecting all connected devices. This task seems to rename fear.exe to love.exe, effectively masking its malicious behavior. This is pretty bad. I’ve tried everything to delete it. But in some way. The task is constantly recreated. I need to move on.
I see another task called « Cleaner Free ». The system sometimes needs to delete useless files. What caught my attention was that this task does not delete the files, instead it encrypts them. It generates new files with a new extension .debt. Unfortunately, I’m not authorized to stop this task. I’m not an elevated user.
I now understand why this computer is so slow. How can all these things work at the same time? Sometimes the computer even freezes. That’s because some processes end but forget to free the memory they’ve allocated. This is called a memory leak. If we run these processes too often, it could lead to the saturation of the computer’s memory. Making it unusable, the system then seems to freeze.
I also see a lot of drivers, many of them are unsigned, which means we can’t really trust them. When you install a malicious driver, everything can become a nightmare. The problem with drivers is that they’re part of the kernel, the heart of the system. Sometimes, when a driver crashes, the system can’t safely recover from it. When this happens, system execution stops, putting an halt to all activity. The system has no choice but to restart. This is what we call a KERNEL PANIC.