Bitco1n is malware from the CONTI family and it operates as ransomware. Our team has discovered it while inspecting samples submitted to VirusTotal. After execution, Bitco1n encrypts files and appends the ".Bitco1n" extension to them (e.g., it renames "1.jpg" to "1.jpg.Bitco1n" and "2.png" to "2.p
We have examined the email and found that it contains a fake request for prices and availability, as well as a link to a deceptive website. Its purpose is to lure recipients into that site and to steal personal information. Such scams are classified as phishing attempts. This email poses a
Our analysis of esslymph[.]com has revealed that the site uses deception to obtain permission to show notifications. It displays a misleading message as a lure. If permitted, esslymph[.]com can send fake alerts and similar messages to promote other websites of this kind. Users should avoid visitin
Our researchers discovered this fake "BNBTiger Rewards" page while investigating dubious websites. It promises an allocation to holders of the BNBTIGER token, thus luring users into exposing their digital wallets to a cryptocurrency drainer. It must be emphasized that this scam is not associated w
While investigating suspicious sites, our research team found the "Parasail Giveaway" scam. It imitates the Parasail network and promotes a fake giveaway. It must be emphasized that this scam is not associated with the real Parasail. The goal is to utilize a cryptocurrency drainer to steal digital
After inspecting this "Email Address Verification Formal Notice" message, we determined that it is fake. This spam email claims that the recipient must verify their account to be in compliance with regulations. Failure to comply can result in service interruptions and other issues. The purpose of
Our research team discovered this fake "Unstable Coin ($USDUC)" airdrop while investigating untrustworthy websites. It impersonates the official website of the Unstable Coin (USDUC) cryptocurrency (usduc.org). This scam aims to deceive users into connecting digital wallets to a crypto drainer.
While investigating dubious sites, our researchers discovered this fake "Chainlink" page. It masquerades as the Chainlink platform (chain.link) and operates as a cryptocurrency drainer. It must be emphasized that this scam is in no way associated with Chainlink or any other existing platforms, pro
During a routine investigation, our research team discovered this fake "PancakeSwap" page. It is not associated with the real PancakeSwap exchange (pancakeswap.finance). The purpose of this imitator is to trick users into exposing their cryptowallets to a cryptocurrency drainer – a mechanism that
ZynorRAT is a cross-platform malware compatible with Windows and Linux Operating Systems (OSes). It is written in the Go programming language. ZynorRAT is classed as a RAT (Remote Access Trojan); it is designed to enable remote access/control over devices. There are multiple variants of this mali