F**k3dup ransomware (its name is censored) is malware that encrypts files. We have discovered it while checking VirusTotal for recently submitted malware samples. It was found that F**k3dup blocks access to files, appends its extension to filenames, and creates a text file "КАК РАСШИФРОВАТЬ ФАЙЛЫ.
We have discovered the Iiof ransomware while analyzing the samples submitted to VirusTotal. Our malware researchers learned that Iiof encrypts files, appends the ".iiof" extension to filenames, and generates a text file ("_readme.txt") containing a ransom note. An example of how Iiof renames file
We discovered the BinaryEngine application while inspecting new submissions to VirusTotal. After analyzing this app, we determined that it operates as advertising-supported software (adware). This piece of software also belongs to the AdLoad malware family. Once installed onto our test m
"DHL Shipment Details" refers to a fake email using the name of DHL - courier and deliver company - for nefarious purposes. It must be emphasized that this letter is in no way associated with either DHL or Deutsche Post. After analyzing this email, we have determined that it operates as a phishing
Datingtorrid[.]top is a rogue site that our research team discovered through a scam email promoting it. This page is designed to push spam browser notifications and redirect visitors to untrustworthy/harmful websites. Rogue webpages can also be accessed via mistyped URLs or redirects generated by
CryptoTab Browser is the name of a Chromium-based browser. Its official page states that it is a lightweight browser that mines cryptocurrency. After examining the app, we found that it promotes cleanbrowser.network, a fake search engine. Our team has checked the CryptoTab Browser's defaul
Our team has examined this email and learned that it cannot be trusted. Scammers behind it attempt to trick recipients into believing that someone has signed into their Outlook accounts. Their goal is to obtain login credentials through the provided website. This phishing email is disguise
Snick is ransomware that belongs to Makop family. Our team has discovered it while examining the malware samples submitted to VirusTotal. We found that Snick encrypts files and modifies their filenames, and creates the "readme-warning.txt" text file containing a ransom note. Snick ransomware rena
KernelReproduce is the name of an application that our team has discovered while studying the samples submitted to VirusTotal. After testing the app, we have found that KernelReproduce operates as adware - it generates advertisements. Usually, apps like KernelReproduce are distributed using ques
Bloom is a piece of advertising-supported software (adware), which our research team discovered while inspecting shady download pages. We have also noted that this application is practically identical to Tone adware. Once installed onto our test machine, Bloom began displaying advertisemen