Our team discovered RedStar while inspecting malware samples uploaded to VirusTotal and concluded that it is ransomware. Once executed, RedStar encrypts files and appends the ".RedStar" extension to files (e.g., it renames "1.jpg" to "1.jpg.RedStar", "2.png" to "2.png.RedStar", etc.). It also prov
We have reviewed the email and concluded that it is a fraudulent message regarding the "renewal of iCloud+ plan". Opening the link in this email directs recipients to various misleading websites that contain affiliate links. Scam emails like this one should be ignored to avoid potential risks.
Our analysis has revealed that Bricks is ransomware from the Proton family. We discovered this ransomware while analysing samples uploaded to VirusTotal. After execution, Bricks encrypts and renames files (by appending an email address and the ".bricks" extension), changes the desktop wallpaper, a
We have inspected the email and determined that it is a phishing attempt disguised as an urgent notification from the email service provider. It contains a link to a fake website designed to steal personal information. The scammers behind this email seek to obtain details that would allow them to
We have examined the page (claim-cherry[.]info) and discovered that it is a copy of the original cherry.fun website. The fraudulent version is very similar to the original one and is designed to trick visitors into connecting their wallets. The purpose of the scam page is to steal cryptocurrency.
We have checked the email and determined that it is presented as a FedEx notification of arrival. However, it is a scam email used to distribute malware. The file attached to the email is malicious and can infect the system once opened. Recipients should not trust this message and avoid opening th
Our inspection has shown that this is a phishing email disguised as a notification from iCloud support. It urges recipients to update their payment details using the provided link. The purpose of this scam is to trick recipients into disclosing personal information on a fraudulent website. Falling
Our team has determined that it is a phishing message posing as an important notification from the email service provider. The fraudsters behind it attempt to trick recipients into opening a fake website and providing personal details. Victims of this scam can experience account hijacking and furt
Our analysis shows that mvrses.co[.]in is a deceptive website that tries to mislead visitors into thinking they need to follow its instructions. The site attempts to get users to allow notifications. Once permission is granted, it can send fake alerts and warnings that promote other untrustworthy
We have examined the email and found that it was written by scammers seeking to steal personal information. Scams like this one are classified as phishing attempts. The scammers behind this fraudulent email aim to trick recipients into believing that they have received a notification from their cl