Another obfuscated .JS malware downloader that uses WSH to execute ransomware. Disable WSH so javascript droppers can't silently execute.
Yes. It's designed to infect others via Chrome. https://securelist.com/blog/incidents/75237/facebook-malware-tag-me-if-you-can/ Extremely basic. Malicious extension for Chrome, autoit scripts to change browser shortcuts for Chrome/IE to load Chrome with the malicious extension. Malicious extension tags friends with a message that links to googledocs, and blocks the browser from accessing common AV/AM sites. Can't really imagine anyone here falling for this, and NormanF has the simplest solution to stop family from getting infected.
This is silly. It's made to sound like some high-end Chrome exploit. It uses google docs "https://drive.google.com/uc?export=download" to push a direct link. This is a straight browser agnostic download with prompts NOT a drive-by. Pure social engineering. Lame.