After analyzing the HDPDFConverterSearch browser extension, we determined that it operates as a browser hijacker. This piece of software modifies browser settings to promote the hdpdfconvertersearch.com fake search engine. Following successful installation onto our test machine, HDPDFConve
Discovered during a routine inspection of new malware submissions to VirusTotal, Gzgzqc is a ransomware-type program. It is designed to encrypt data and demand ransoms for the decryption. We determined that Gzgzqc belongs to the Snatch ransomware family. After being launched onto our test system,
Prynt is a stealer-type malicious program, which our research team found while inspecting malware selling hotspots. This piece of malicious software is designed to obtain a wide variety of sensitive information from infected systems. Prynt Stealer has multiple functionalities that allow it to exfi
Eagle Monitor is the name of a remote access Trojan (RAT) written in C# and Visual Basic programming languages. It allows the attackers to remotely control infected computers. Typically, RATs are used to steal sensitive information, inject additional malware, spy on victims, etc. We have discovere
We have examined the yt-convert[.]com website and found that it uses rogue advertising networks. It redirects visitors to questionable websites. This page is presented as a site allowing visitors to download videos from YouTube in MP3 and MP4 formats. It is worth knowing that it is not entirely le
Iroubalsct is a ransomware-type program that our researchers discovered while inspecting new submissions to VirusTotal. We determined that this malicious program belongs to the Snatch ransomware family. After being launched onto our test machine, Iroubalsct began encrypting files and changed thei
Misticview[.]ru is a deceptive website designed to trick visitors into allowing it to show notifications (it displays deceptive content to get permission to show notifications). Also, it redirects visitors to another similar page. We have discovered this page while examining other pages that use r
Our team has discovered a new ransomware variant belonging to the Babuk family called Zazas. This variant was found while checking malware samples submitted to VirusTotal. After examination, it was concluded that Zazas ransomware encrypts files and creates a ransom note (the "How To Restore Your F
ProjectExpress is a piece of rogue software that our researchers discovered while inspecting new submissions to VirusTotal. Our inspection of this application revealed that it operates as advertising-supported software (adware) and belongs to the AdLoad malware family. Adware may require
VectorPathCorner is the name of an advertising-supported application discovered by our team while inspecting shady websites offering to update installed software. The purpose of this app is to generate annoying advertisements. Most of the apps of this type are promoted and distributed using dece