While inspecting dubious download pages, our research team discovered the youtube_ad_remover browser extension. Based on its name, we can presume that this extension promises to eliminate advertisements displayed on YouTube videos. After analyzing the youtube_ad_remover browser extension, we dete
Saumeechoa[.]com is a rogue webpage that loads dubious content, promotes browser notification spam, and redirects visitors to other (likely unreliable or malicious) sites. Our researchers found this page while inspecting untrustworthy websites. Users typically access rogue sites unintentionally. M
Notfreeads[.]com is an untrustworthy website that uses a clickbait technique to trick visitors into allowing it to show notifications. Also, it redirects visitors to another virtually identical page (notadslife[.]com). We have discovered notfreeads[.]com while inspecting illegal movie streaming si
Our researchers found window-safe[.]com while inspecting shady sites. This rogue page operates by loading deceptive content (scams), pushing spam browser notifications, and redirecting visitors to other (likely unreliable/malicious) webpages. Most users enter window-safe[.]com and similar website
Our team has discovered the SearchHDConverter application while inspecting deceptive websites offering to add it to a browser. After testing the app, we learned that it is a browser hijacker that changes the settings of the affected web browser. It promotes the searchhdconverter.com address - a fa
While inspecting dubious download sites, our research team discovered the like dark browser extension. This piece of software promises to enable dark mode for simple design websites. Our analysis uncovered that the like dark extension operates as a browser hijacker. It modifies browser settings,
Talisman is a new variant of the PlugX RAT (Remote Access Trojan). Malware within this classification is designed to enable remote access/control over infected machines, and these trojans are known to be multifunctional. Talisman's functionalities have not undergone any significant alterations com
OnlyFans is the name of a ransomware variant discovered by MalwareHunterTeam. We found that cybercriminals behind OnlyFans attempt to trick victims into paying for data decryption even though their ransomware does not encrypt any files. OnlyFans displays a pop-up window with a ransom-demanding mes
Sdhvqq is the name of a ransomware-type program that our research team found while inspecting new submissions to VirusTotal. We learned that this program is part of the Snatch ransomware group. We tested Sdhvqq by executing a sample on our test machine, and the ransomware began encrypting files a
Ust29 is ransomware belonging to the Dharma family. Our malware researchers have discovered it while examining samples submitted to the VirusTotal page. It was found that Ust29 encrypts files and appends the victim's ID, ust29@aol.com email address, and ".ust29" extension to filenames. It provides