Page Darker is a browser extension promising to create a dark mode for simple websites. After analyzing this piece of software, we have determined that it operates as adware. Page Darker delivers intrusive ad campaigns and spies on users' browsing activity. When Page Darker was installed o
Webpushtech[.]com is a rogue site promoting browser notification spam. Additionally, it is capable of redirecting visitors to other untrustworthy and malicious pages. Our research team discovered this website while researching sites using rogue advertising networks. Most users access webpushtech[
Pubavideo[.]ru is a website that uses clickbait techniques to trick unsuspecting visitors into permitting it to show notifications. Additionally, pubavideo[.]ru can redirect visitors to other websites. We have discovered this site during the analysis of various illegal streaming, torrent, and simi
We have discovered the Quick pro application while visiting deceptive websites. One of those pages claimed that it is required to add an extension to Chrome to proceed. Another one recommended adding an extension to the browser for an unspecified reason. We have examined Quick pro and found that i
"CoinMarketCap Giveaway" is a scam our researchers found while inspecting rogue websites. This fake giveaway promises to double users' contributions in either Bitcoin (BTC) or Ethereum (ETH) cryptocurrency. In other words, this scam is designed to trick users into transferring cryptocurrency to it
Bingocaptchapoint[.]top is a deceptive website designed to trick visitors into allowing it to display notifications. Also, it redirects visitors to other shady websites. We have discovered bingocaptchapoint[.]top while examining pages that use rogue advertising networks (various illegal movie stre
Buyers Assistant is presented as an app that lets users "buy with confidence and speed on eBay". We have discovered Buyers Assistant on a deceptive website that recommends installing an extension on a Chrome browser. After examining the app, we found that it displayed unwanted advertisements. Buye
While inspecting new submissions to VirusTotal, our researchers found ANUBIZ LOCKER - a ransomware-type program that is part of the Babuk ransomware family. Once executed on our test system, ANUBIZ LOCKER encrypted files and appended their filenames with a ".lomer" extension. For example, a file
Ooii is ransomware that has been discovered by our team while checking VirusTotal for recently submitted malware samples. We found that Ooii is part of the Djvu ransomware family. In addition to encrypting files, Ooii renames them by appending the ".ooii" extension and provides a ransom note (crea
ElementryCheck is a rogue app that our researchers discovered during a routine inspection of new submissions to VirusTotal. After analyzing it, we determined that ElementryCheck operates as adware. Additionally, we learned that this piece of software belongs to the AdLoad malware family.