Payload is ransomware that we discovered while inspecting malware samples uploaded to VirusTotal. After execution, Payload encrypts files and appends the ".payload" extension to them. For example, it renames "1.jpg" to "1.jpg.payload" and "2.png" to "2.png.payload". The ransomware also provides a
Our inspection has revealed that it is a scam email designed to promote a pop-up scam, a site that uses scare tactics. It is disguised as a message about cloud storage issues to trick recipients into clicking the provided link. Emails like this one should be ignored and deleted to avoid potential
We have reviewed the page (punchcoinsol[.]com) and concluded that it is a fraudulent copy of punchonsol.lovable.app website. The scam site promotes a fake airdrop to deceive visitors into following the provided instructions. Its purpose is to activate a malicious tool designed to empty cryptocurre
Our team has examined the email and found it to be a classic advance-fee scam. The goal of the email is to trick the recipient into sharing personal information or sending money, or both. It is important to recognize such scams and never respond to them or follow their instructions to avoid financ
Moonrise is a remote access Trojan (RAT) written in Go programming language. It provides attackers with remote system access, allowing them to gather sensitive information (e.g., login credentials) and execute additional attacks while avoiding detection. The RAT should be eliminated from infected
Our team has examined the email and concluded that it is a scam. The message is presented as an "Ethereum Powerball PowerPlay Reward Alert" to trick recipients into believing that they can receive rewards. However, none of the claims in this email are true, and falling for it can lead to various n
We have reviewed the email and determined that it is a phishing attempt. It is crafted to appear as a notification regarding an invoice to trick recipients into opening a deceptive website. The scammers behind this fraudulent email seek to steal personal information. Victims of this scam may have
Our analysis shows that it is a scam email disguised as a transfer request from Wells Fargo Bank. It is designed to appear legitimate and trick recipients into opening the provided page. The ultimate goal is to steal personal information. Scams of this type are classified as phishing attempts.
We have inspected the site and found that it is a scam involving multiple fake messages. The purpose of this scam site is to scare visitors into following the provided instructions to "protect" their devices. Users should recognize such scams to avoid potential risks (e.g., monetary loss or data t
Our team has inspected the email and found that it contains a fake notification about suspicious activity on the recipient's account. The message also includes a link to a deceptive page designed to pilfer personal details. Such messages are classified as phishing attempts, and they should be igno