MetaStealer is the name of an information stealer. Our team has discovered MetaStealer after analyzing a malspam campaign - an email sent by cybercriminals with a malicious file (MS Excel document) attached to it. Malware of this type gathers login information, credit card details, and other sensi
Dailyprotectioncentr[.]com is a rogue webpage our research team discovered while inspecting untrustworthy sites. This page promotes deceptive content (scams), pushes browser notification spam, and redirects visitors to other (likely unreliable or malicious) webpages. It is noteworthy that website
Our team has examined this email and concluded that it is a scam pretending to raise money for Ukrainian families. The email is disguised as a letter from Ukrainian Crisis Media Center. Scammers behind it attempt to trick recipients into transferring cryptocurrency. Recently, lots of scamm
After analyzing this "STC" email, our researchers determined that it is illegitimate and intended to infect recipients' systems with FormBook malware. This spam email is presented as a letter from STC SRL - an Italian science, technology, and consulting company. It must be emphasized that this ma
Encyclopedia Wanderer is a browser extension endorsed as a learning tool, which our researchers discovered while inspecting deceptive download webpages. After analyzing this extension, we learned that it operates as advertising-supported software (adware). Adware is designed to display adv
Freeadvworld[.]com is a deceptive website designed to trick visitors into allowing it to show notifications. Our team has discovered it while examining other pages such as illegal movie streaming, torrent sites, and similar sites that use rogue advertising networks. Freeadvworld[.]com disp
NetConnection is an adware-type app that our research team discovered while inspecting new submissions to VirusTotal. We learned that this piece of software belongs to the AdLoad malware family. Our analysis uncovered that NetConnection is designed to run intrusive advertisement campaigns and ma
We have discovered the Ad Block Ultra application on a website offering faster web browsing with no advertisements (including ads on YouTube, Facebook, news sites, and many more). During our analysis, we noticed that this app generates its own advertisements. Thus, we concluded that Ad Block Ultra
Erinalexralf is ransomware that encrypts files and appends the ".enc" extension to filenames. It also creates the "HOW_TO_RETURN_FILES.txt" file containing a ransom note. We have discovered Erinalexralf ransomware while checking the malware samples submitted to the VirusTotal page. An example of
Uyjh is ransomware designed to encrypt files, append the ".uyjh" extension to filenames, and create a ransom note (the "_readme.txt" file). We have discovered this ransomware variant while checking the VirusTotal site for recently submitted malware samples. We also found that Uyjh is part of the D