After analyzing this "STC" email, our researchers determined that it is illegitimate and intended to infect recipients' systems with FormBook malware. This spam email is presented as a letter from STC SRL - an Italian science, technology, and consulting company. It must be emphasized that this ma
Encyclopedia Wanderer is a browser extension endorsed as a learning tool, which our researchers discovered while inspecting deceptive download webpages. After analyzing this extension, we learned that it operates as advertising-supported software (adware). Adware is designed to display adv
Freeadvworld[.]com is a deceptive website designed to trick visitors into allowing it to show notifications. Our team has discovered it while examining other pages such as illegal movie streaming, torrent sites, and similar sites that use rogue advertising networks. Freeadvworld[.]com disp
NetConnection is an adware-type app that our research team discovered while inspecting new submissions to VirusTotal. We learned that this piece of software belongs to the AdLoad malware family. Our analysis uncovered that NetConnection is designed to run intrusive advertisement campaigns and ma
We have discovered the Ad Block Ultra application on a website offering faster web browsing with no advertisements (including ads on YouTube, Facebook, news sites, and many more). During our analysis, we noticed that this app generates its own advertisements. Thus, we concluded that Ad Block Ultra
Erinalexralf is ransomware that encrypts files and appends the ".enc" extension to filenames. It also creates the "HOW_TO_RETURN_FILES.txt" file containing a ransom note. We have discovered Erinalexralf ransomware while checking the malware samples submitted to the VirusTotal page. An example of
Uyjh is ransomware designed to encrypt files, append the ".uyjh" extension to filenames, and create a ransom note (the "_readme.txt" file). We have discovered this ransomware variant while checking the VirusTotal site for recently submitted malware samples. We also found that Uyjh is part of the D
Our researchers found the Dark It Online browser extension during a routine inspection of dubious download web pages. After analyzing it, we determined that this piece of software operates as adware. Unlike most adware-types, the feature promised by Dark It Online - enabling dark mode for website
WireNavigate is a rogue app, which our research team discovered while inspecting new submissions to VirusTotal. After analyzing this application, we determined that it operates as advertising-supported software (adware) and belongs to the AdLoad malware family. Adware may require certain
While inspecting deceptive websites, our researchers found the "Your Antivirus Has Expired" scam. We discovered two practically identical variants of it. Both claim that the McAfee anti-virus subscription has expired and urges users to renew it. Usually, schemes of this type endorse untrustworthy