We have discovered the DaemonLogoffCompile application on an untrustworthy website. After downloading and installing this app, we found that it displays annoying/unwanted advertisements. Thus, it was concluded that DaemonLogoffCompile is a typical advertising-supported application. Adwar
Our team has discovered the darker page browser extension on a shady website (on a page that suggests that it may be required to install this app). We found that darker page is described as an app that provides a dark mode for simple pages. However, its description does not mention that this app f
Original dark is a browser extension our research team discovered while inspecting deceptive download pages. This piece of software promises to create a dark mode for websites. After analyzing original dark, we determined that this extension operates as adware. It is noteworthy that while
Our malware researchers have discovered a new Dharma ransomware variant called Snwd (it was found during the analysis of malware samples submitted to VirusTotal). Snwd encrypts files and appends the victim's ID, snowwind@tutanota.com email address, and the ".snwd" extension to filenames. Its ranso
After analyzing the Search-Guard browser extension, our researchers determined that it operates as a browser hijacker. This piece of software makes modifications to browser settings in order to promote (by causing redirects to) the search-guard.xyz fake search engine. When installed on our
Our researchers discovered EmergingZip while inspecting new submissions to VirusTotal. After analyzing this application, we determined that it is a piece of advertising-supported software. Additionally, this adware belongs to the AdLoad malware family. Software like EmergingZip may need
Clean-your-pc[.]xyz is a rogue site designed to load deceptive content, promote browser notification spam, and redirect visitors to other (likely dubious/malicious) webpages. Our research team discovered this page while checking out untrustworthy websites. Users seldom access sites like clean-you
Messagereceiver[.]com is a deceptive website that uses a clickbait technique to trick visitors into allowing it to show notifications and redirects them to other pages. We have discovered it while examining sites that use rogue advertising networks. It is very uncommon for pages like messagereceiv
DeezNuts Crypter is a piece of malicious software classified as ransomware. Our research team found it while inspecting new submissions to VirusTotal. After being launched on our test machine, this ransomware encrypted files and renamed them by inserting ".deeznuts-crypter" between the original f
LocatorUpdate is the name of an application that we have discovered while analyzing shady websites. After testing the app, we learned that its purpose is to display intrusive advertisements. LocatorUpdate is a typical advertising-supported application that provides no real value to its users.