Our inspection of this "City National Bank" email revealed that it is malspam - malicious spam mail intended to infect recipients' systems with malware. It must be emphasized that these spam letters are in no way associated with City National Bank or any other similarly named financial institutio
Superiorprotectionpc[.]com is a rogue page that our research team discovered while inspecting untrustworthy sites. This webpage promotes scams, pushes browser notification spam, and redirects visitors to other (likely unreliable/malicious) websites. Users typically enter pages like superiorprotec
ConsoleControl is an application we found while inspecting new submissions to VirusTotal. Our analysis of this app revealed that it is adware belonging to the AdLoad malware family. It is pertinent to mention that advertising-supported software may require certain conditions to run intru
Our researchers discovered the DENO ransomware while inspecting new submissions to VirusTotal. We determined that this malicious program is based on the CONTI ransomware. After we executed a sample of DENO on our test system, it encrypted files and appended their filenames with a ".DENO" extensio
While inspecting new submissions to VirusTotal, our research team found yet another ransomware-type program based on Chaos ransomware. This malicious program is called Warlocks, and we released a sample of it on our test system. Afterward, this ransomware encrypted files and appended their filena
While inspecting dubious websites, our researchers discovered the videoplay-on[.]com rogue webpage. It promotes spam browser notifications and redirects users to other (likely untrustworthy and malicious) sites. Most users enter websites of this type through redirects caused by pages using rogue a
Our team has discovered MinimalLight application on a deceptive website claiming that it might be required to add this app to a web browser. After examination, we found that MinimalLight generates advertisements (it functions as adware). It is described as an app providing a dark mode for simple p
Pick Tail is a rogue browser extension that we discovered while inspecting dubious download webpages. After analyzing this piece of software, we determined that it operates as a browser hijacker. Pick Tail alters browser settings to promote the tailsearch.com fake search engine. Additionally, this
Coper is the name of an Android banking Trojan. Our malware researchers discovered that Coper is linked to another Android malware called ExoBotCompat (a reformed version of Exobot). It targets various banking apps. We found that Coper impersonates various banking and utility apps (it uses them as
Lloo is the name of a malicious program within the ransomware classification, which our researchers discovered while inspecting new malware submissions to VirusTotal. Lloo is yet another program belonging to the Djvu ransomware family. After executing a sample of Lloo on our test machine, we lear