AndreiHelp is ransomware belonging to the Spora ransomware family. We discovered it while checking the VirusTotal page for recently submitted malware samples. The purpose of AndreiHelp ransomware is to encrypt files. In addition to encrypting files, it renames them and drops the "Read_Me!_.txt" fi
While inspecting new submissions to VirusTotal, our researchers found the OutlookWade application. After analyzing this app, we determined that it operates as adware and belongs to the AdLoad malware family. Advertising-supported software (adware) runs intrusive advertisement campaigns.
While examining advtreviews[.]com, our team found that it is one of the many untrustworthy pages designed to lure visitors into agreeing to receive notifications. Also, advtreviews[.]com can redirect visitors to another (virtually identical) website. We encountered this site while inspecting other
After inspecting this "Trust Wallet" email, we determined that it is spam that operates as a phishing scam. Letters of this spam campaign are presented as alerts regarding the imminent suspension of recipients' "Trust Wallets" - to prevent which the log-in credentials have to be re-verified. It m
While analyzing malware samples submitted to VirusTotal, our team discovered ransomware belonging to the Djvu family called Qqri. It encrypts files and renames them by appending the ".qqri" extension to their filenames. Also, Qqri drops the "_readme.txt" file (a text file containing a ransom note)
While inspecting the advtpro[.]com site, we learned that it displays deceptive content to lure visitors into agreeing to receive notifications. Also, advtpro[.]com can redirect visitors to a virtually identical page. Our team found the advtpro[.]com site while examining pages that use rogue advert
Lpnothome[.]com is a website that wants to show untrustworthy notifications. It also redirects visitors to other shady pages. Lpnothome[.]com uses a clickbait technique to lure visitors into allowing it to send notifications. Our team discovered lpnothome[.]com while examining websites that use ro
While analyzing the notadsworld[.]com page, we learned that it can show untrustworthy notifications (if allowed) and open other pages. It displays deceptive content to trick visitors into agreeing to receive notifications. We found notadsworld[.]com while examining websites that use rogue advertis
Advtlife[.]com is a rogue page that our researchers discovered while investigating dubious websites. It is designed to promote browser notification spam and redirect visitors to other (likely untrustworthy/malicious) sites. Users typically enter webpages of this kind through redirects caused by si
Having inspected the "A Law Case Filed Against Your Company" email, we can conclude that it is spam that operates as a phishing scam. Letters belonging to this spam campaign target email account credentials. They use fake summons to count in order to trick recipients into providing their email acc