While browsing suspect websites, our research team discovered the euchakedne[.]com rogue page. It is designed to promote browser notification spam and redirect visitors to other (likely untrustworthy/hazardous) sites. Webpages like euchakedne[.]com are primarily visited through redirects produced
Lilith RAT is a remote access Trojan that lets the attackers to remotely control a computer. It is written in C++ programming language and gives attackers a lot of control over the infected device. Victims of Lilith RAT should eliminate the malware as soon as possible to avoid data theft and other
Our research team discovered the bridgegapdevice.co[.]in rogue page while investigating dubious websites. After we examined this webpage, we learned that it endorses browser notification spam and generates redirects to other (likely questionable/hazardous) sites. The majority of visitors to bridg
Nanocrypt is ransomware our team discovered during an analysis of samples submitted to VirusTotal. After execution, Nanocrypt encrypts files and appends the ".ncrypt" extension to them. It also generates a text file ("README.txt") containing a ransom note. An example of how Nanocrypt renames files
Our researchers discovered the DynamicAlgorithm rogue app while browsing new submissions to the VirusTotal platform. Upon inspection, we determined that this application is advertising-supported software (adware). DynamicAlgorithm belongs to the AdLoad malware family. Software with this classifi
Craxsrat is a ransomware-type program that our researchers discovered during a routine inspection of new submissions to the VirusTotal website. Malware within this classification is designed to encrypt files and demand payment for the decryption. On our test machine, Craxsrat encrypted files and
We examined lightspeedcon.co[.]in and found that it uses clickbait to trick visitors into permitting it to show notifications. After gaining permission, the site bombards users with misleading notifications promoting untrustworthy websites. As a result, lightspeedcon.co[.]in should not be trusted
TsarBot is a multi-functional malware targeting Android devices. Specifically, it is a banking trojan designed to obtain information associated with over 750 finance-related applications from various regions. TsarBot has been targeted at users located in Australia, France, India, Poland, the Unit
We have examined the app and discovered that it has qualities of adware. Upon installation, SoftwareIndexer displays annoying advertisements. The ads generated by SoftwareIndexer can lead to unreliable websites, as multiple security vendors identify the app as malicious. Thus, users should avoid
We have reviewed the email and concluded that it contains a fraudulent notification regarding an "unclaimed prize". Fraudsters use it to deceive unsuspecting recipients into disclosing personal information and likely paying some fake fees. Recipients should not respond to this email. This