While checking various forums, we found a new ransomware called Pipikaki. It encrypts files, modifies filenames, and creates a ransom note. Pipikaki appends the victim's ID and ".@PIPIKAKI" extension to filenames. Its ransom note is a file named "WE CAN RECOVER YOUR DATA.txt". An example of how P
Lucifer Kobs is a piece of malicious software classified as ransomware. We discovered this program while inspecting new malware submissions to VirusTotal, and learned that it is a new variant of the Spora ransomware. After we executed a sample of this ransomware onto our test machine, it encrypte
After downloading and installing the BestSportSearches application, we learned that it is a browser-hijacking application that makes certain changes in the settings of a web browser. The purpose of this app is to promote the bestsportsearches.com address - a fake search engine. A big part of brows
While inspecting untrustworthy websites, we found the freeadvfit[.]com webpage. It is designed to promote browser notification spam and redirect visitors to other (untrustworthy/malicious) sites. Users typically access such webpages through redirects caused by sites using rogue advertising network
Exotikcontent[.]ru is one of the many deceptive websites designed to trick visitors into agreeing to receive notifications. They are rarely visited on purpose. We have discovered exotikcontent[.]ru while examining pages that use rogue advertising networks (pages that redirect to shady websites and
NewVideosSearch is the name of a browser extension. After analyzing it, we determined that this piece of software works as a browser hijacker. NewVideosSearch makes changes to browser settings in order to promote the newvideosearch.com fake search engine. Following installation onto our te
Notfcompsystems[.]com is a website designed to trick visitors into allowing it to show notifications. Additionally, it redirects to other untrustworthy pages. We have discovered notfcompsystems[.]com while analyzing other pages that use shady advertising networks. Notfcompsystems[.]com use
GetSearchStreams was discovered by our team while doing periodical research on shady advertising networks. After downloading and adding this app to a browser, it was found that it functions as a browser hijacker. GetSearchStreams changes certain settings to getsearchstreams.com - it forces users t
During a routine inspection of untrustworthy websites, our research team discovered the dnagtv[.]com rogue webpage. This page promotes browser notification spam by using deceptive content. Additionally, dnagtv[.]com is capable of redirecting visitors to other (likely dubious/malicious) sites. Mos
Video Ad Skipper is promoted as an extension for blocking advertisements on YouTube. Our team has discovered at least one deceptive page promoting this application. After downloading and examining the Video Ad Skipper app, we found that it generates advertisements (it functions as adware).