While researching untrustworthy sites, we discovered the desktopnotificationsonline[.]com webpage. This rogue page is designed to push browser notification spam and redirect visitors to other (likely unreliable/hazardous) websites. Most users enter rogue pages via others that use rogue advertising
SunnyDay is the name of ransomware that we discovered while inspecting malware samples submitted to VirusTotal. Our malware researchers found that SunnyDay encrypts files, appends ".SunnyDay" extension to filenames, and generates a ransom note (the "!-Recovery_Instructions-!.txt" file). An exampl
Discovered by the MalwareHunterTeam, Goose is a piece of malicious software categorized as ransomware. We sampled it from VirusTotal and analyzed it. After being released on our test machine, the Goose ransomware began encrypting files. However, unlike most malicious programs of this type, it did
Recently, many scammers have been using the situation in Ukraine to trick people into sending them money or providing sensitive information. They are pretending to be legitimate organizations and ask for donations. We have analyzed this email and learned that scammers behind it use a certain scare
Discovered by Petrovic, Acepy is the name of a ransomware-type program. It is designed to encrypt data and demand payment for the decryption. We sampled Acepy from VirusTotal and ran it on our test machine. The files on the system were encrypted, and their names were appended with a ".acepy" exte
PartnerPixel is an untrustworthy application that our team has discovered on a shady website. After examination, it was found that the purpose of PartnerPixel is to generate various advertisements. Apps that operate this way are classified as adware. Typically, software of this type is promoted
While inspecting new submissions to VirusTotal, our research team discovered the DefaultImprovment application. After analyzing this piece of software, we determined that it is an adware belonging to the AdLoad malware family. It is noteworthy that adware may need the browser/system or u
4g3j7 is the name of ransomware belonging to the Hive ransomware family. We have discovered this variant while analyzing the malware samples submitted to VirusTotal. 4g3j7 encrypts files, appends a string of random characters to filenames and the ".4g3j7" extension, and creates the "xG7b_HOW_TO_DE
Our team has discovered the CommonBrowser application while examining shady websites. During our analysis, we learned that CommonBrowser is a typical advertising-supported application (adware). It displays annoying and untrustworthy advertisements. Therefore, this app should not be trusted/used.
Kkia is a piece of malicious software categorized as ransomware. Our research team discovered it during a routine inspection of new malware submissions to VirusTotal. We learned that Kkia belongs to the Djvu ransomware family. After being launched on our test system, this ransomware encrypted fil