We have analyzed this email and found that scammers use it to trick recipients into providing email account login credentials. This email is disguised as a letter from Habib Bank AG Zurich - a Swiss multinational commercial bank. It contains an HTM file asking to verify email to view a payment rec
Letsgo600 is a ransomware-type program designed to encrypt data and demand ransoms for the decryption. Our research team found it during a routine inspection of new malware submissions to VirusTotal. We have determined that Letsgo600 belongs to the ZEPPELIN ransomware family. Once launched onto o
Discovered by our researchers on VirusTotal, ProcessRate is an adware-type application. It also belongs to the AdLoad malware family. This app operates by running intrusive advertisement campaigns, and it may have other harmful abilities. After being installed onto our test machine, Proc
We have discovered the Sorryitsjustbusiness ransomware while examining malware samples submitted to VirusTotal. Our team has analyzed Sorryitsjustbusiness and found that this ransomware encrypts files and appends a string of four random characters to filenames as the file extension. For example, i
After inspecting the "Download all your blocked email messages" letter, our researchers determined that it is a phishing scam. This email makes false claims about incoming messages having failed to reach the recipient's mailbox, and it instructs to update the account to retrieve the letters.
Our team has discovered the FlowSurplus application while inspecting the samples submitted to VirusTotal. After analyzing the application, it was found that FlowSurplus is an advertising-supported application that displays intrusive advertisements. As a rule, apps of this type are distributed us
Discovered by the cybercrime prevention company ThreatFabric, Xenomorph is an Android malware that targets banking information. According to our research, this malicious program is still in the development stages. However, it already has over fifty European banks on its target list. This malware'
We have discovered the LOCKFILE ransomware while checking VirusTotal for recently submitted malware samples. After analyzing this ransomware, we learned that it encrypts files, appends ".LOCKFILE" extension to filenames, and generates three ransom notes: two pop-up windows and a text file named "Д
Our team has discovered the TaskCentral application while checking the samples submitted to VirusTotal. After analysis, it was concluded that TaskCentral is typical adware - it bombards users with unwanted advertisements. Typically, adware is distributed using deceptive methods. TaskCent
Cavallososo is a piece of malicious software belonging to the ZEPPELIN ransomware family. Our research team found a sample of this ransomware while inspecting new submissions to VirusTotal. Once launched onto our test machine, Cavallososo encrypted files and appended their filenames with a ".Cava