Venomous encrypts files and creates a text file named "SORRY-FOR-FILES.txt" as its ransom note. Also, this ransomware renames files by appending the victim's ID and ".venomous" extension to their filenames. For example, it renames a file named "1.jpg" to "1.jpg.FB5MMSJUD2WP.venomous", "2.jpg" to "
Underline is a browser hijacker promoting the bbbn.xyz fake search engine. It causes redirects to this web searcher via modifications to browser settings. Additionally, bbbn.xyz spies on browsing activity. Since most users download/install browser hijackers inadvertently, they are also classified
Createdtoprotect[.]com is a rogue website designed to load questionable content and/or redirects visitors to other pages (likely unreliable and malicious ones). The Internet is rife with such sites; dcareyouto.top, forseisemelo.top, ourtopstories.com, and my-live-videos-leakes.com are but some exa
Dcareyouto[.]top shares similarities with forseisemelo[.]top, bomero[.]net, ourtopstories[.]com, and many other pages. These pages are designed to open other websites (mainly questionable ones) and load deceptive content (usually, to trick visitors into agreeing to receive notifications from them)
One of the most popular ways to deliver malware is to send emails containing malicious attachments or website links. Recipients infect their computers by opening downloaded malicious files. Typically, emails used to deliver malware are disguised as official letters from legitimate companies, organ
BiggyLockerTeam blocks access to files by encrypting them and modifies their filenames by appending a randomly generated four-character extension (for example, it renames a file named "1.jpg" to "1.jpg.2mgs", "2.jpg" to "2.jpg.4jna", etc. Also, BiggyLockerTeam ransomware creates the "read_me for y
Forseisemelo[.]top is an untrustworthy website sharing common qualities with bomero.net, ourtopstories.com, okaynotification.com, and thousands of others. The page is designed to load questionable content and/or redirect visitors to different sites (likely unreliable or malicious). Users typicall
MCNB is a piece of malicious software categorized as ransomware. It is designed to encrypt data and demand payment for the decryption. In other words, ransomware renders files inaccessible, and asks victims to pay - to recover access to their data. As MCNB encrypts, it appends files with the ".MC
Bomero[.]net is quite similar to ourtopstories[.]com, okaynotification[.]com, maxy-tax[.]com, and other pages designed to open a couple of questionable sites and to trick visitors into allowing them to show notifications. Usually, pages like bomero[.]net get opened via shady ads, other pages of th
Ransomware encrypts files and demands and demands ransom payment (generates a ransom note). GanP is part of the Dharma ransomware family. This variant encrypts files and modifies their filenames by adding the victim's ID, p1gansta1p@aol.com email address, and the ".GanP" extension to their filenam