While inspecting new submissions to VirusTotal, our research team discovered the DefaultImprovment application. After analyzing this piece of software, we determined that it is an adware belonging to the AdLoad malware family. It is noteworthy that adware may need the browser/system or u
4g3j7 is the name of ransomware belonging to the Hive ransomware family. We have discovered this variant while analyzing the malware samples submitted to VirusTotal. 4g3j7 encrypts files, appends a string of random characters to filenames and the ".4g3j7" extension, and creates the "xG7b_HOW_TO_DE
Our team has discovered the CommonBrowser application while examining shady websites. During our analysis, we learned that CommonBrowser is a typical advertising-supported application (adware). It displays annoying and untrustworthy advertisements. Therefore, this app should not be trusted/used.
Kkia is a piece of malicious software categorized as ransomware. Our research team discovered it during a routine inspection of new malware submissions to VirusTotal. We learned that Kkia belongs to the Djvu ransomware family. After being launched on our test system, this ransomware encrypted fil
We have discovered Ssoi while examining the samples submitted to the VirusTotal site. During the analysis, we found that Ssoi is ransomware that encrypts files, appends the ".ssoi" extension to filenames, and creates the "_readme.txt" file containing a ransom note. We also learned that Ssoi is par
We have tested the Quick-Search Default Search application and learned that its main purpose is to promote a fake search engine. Moreover, it promotes a fake search engine (quick-search.xyz) by hijacking a web browser. It changes the settings of a web browser and keeps them unchangeable while it i
It is a pop-up scam displayed by an untrustworthy website that we have discovered while examining other shady sites (and ads on them). This scam site displays a pop-up disguised as a security warning from McAfee. It is designed to deceptively promote legitimate antivirus software. A pop-up
Adsafesafarifix[.]com is an untrustworthy website promoting various scams. When we inspected this page, it ran "APPLE SECURITY BREACH" - but it might run other scams as well. Users typically access deceptive webpages like adsafesafarifix[.]com inadvertently. Most enter them through mistyped URL
Real Dark is yet another rogue browser extension promising to create a dark mode for websites. Our researchers discovered this piece of software while inspecting dubious download sites. After analyzing Real Dark, we determined that it operates as advertising-supported software (adware). Ad
Jakeview[.]ru is a rogue webpage that pushes browser notification spam. It can also redirect visitors to other websites, which are mostly untrustworthy and harmful. Most visitors enter jakeview[.]ru and sites of its type via redirects caused by pages using rogue advertising networks, spam notific