We have discovered the V3NOM ransomware while checking malware samples submitted to VirusTotal. Our team has examined V3NOM and found that this ransomware changes the desktop wallpaper, creates the "VenomD3crypt0r.exe" file containing a ransom note, and appends the ".V3NOM" extension to filenames.
Discovered by our research team during a routine inspection of suspicious websites, captchawall[.]top is a page that promotes browser notification spam. Additionally, this webpage can redirect visitors to other deceptive and malicious sites. Most visitors to captchawall[.]top and similar websites
We have discovered the SharedAllocate application while analyzing deceptive websites used to distribute untrustworthy installers and other shady sites. Our team has tested the SharedAllocate app and found that it generates advertisements - it functions as adware. Most adware-type apps th
Next-thing-info[.]com is one of the untrustworthy websites designed to trick visitors into agreeing to receive notifications. Our team has discovered next-thing-info[.]com while visiting illegal streaming, torrent sites, and other pages that use questionable advertising networks. We have e
Our research team found Cuag ransomware when inspecting new submissions to VirusTotal. It is yet another malicious program belonging to the Djvu ransomware family. During analysis, we learned that Cuag encrypted files and appended their filenames with the ".cuag" extension. For example, a file in
We have discovered the Avyu ransomware while checking malware samples submitted to VirusTotal. During our analysis, we have learned four key things about Avyu: it belongs to a ransomware family called Djvu, encrypts files, appends the ".avyu" extension to filenames, and creates the "_readme.txt" f
Our team has discovered a fake SushiSwap app download page while examining other shady websites and deceptive ads. Sushi is a legitimate decentralized cryptocurrency exchange built on Ethereum. After launching the installer downloaded from the fake SushiSwap, we learned that it installs a Remote A
Our team has discovered the Twitch Explorer application/browser extension while visiting a deceptive website offering to update the installed Chrome extension. We have tested this app and noticed that it generates advertisements. Therefore, it can be said that Twitch Explorer is an ad-supported ap
Found by our researchers in new malware submission on VirusTotal, Asd is the name of a ransomware-type program belonging to the VoidCrypt family. On our test system, this ransomware encrypted files and renamed them. Filenames were appended with a unique ID, the cyber criminals' email address, and
Get Dark is a browser extension promising to enable dark mode for simple-design websites. After analyzing this extension, our researchers concluded that Get Dark is a browser hijacker that modifies browsers to promote the yesjis.com illegitimate search engine. Following successful installa