Shiton is a malicious program belonging to the VoidCrypt ransomware family. This software is designed to encrypt files, modify their filenames, and create ransom messages. Shiton renames encrypted files by adding the ad.decrypt01@gmail.com email address and victim's ID, and appending the ".shiton"
"WhatsApp email scam" refers to a spam email campaign. The term "spam campaign" is used to define a large-scale operation, during which thousands of deceptive/scam messages are sent. As the name implies, the emails distributed through this spam campaign are disguised as important notifications fro
Cyber criminals behind these malspam emails attempt to trick recipients into clicking a download link for a malicious file, and then opening the file, or executing the file attached to an email. The main purpose of these emails is to deceive recipients into infecting their computers with malicious
.help is a malicious program belonging to the Dharma ransomware family. Systems infected with .help (Dharma) experience data encryption and users receive ransom demands for decryption. During the encryption process, all compromised files are renamed following this pattern: original filename, uniq
Belonging to the Dharma ransomware family, Sss renames encrypted files by adding the victim's ID, m5b92n5p1@mail.com email address, and appending the ".sss" extension to filenames. For example, "1.jpg" is renamed to "1.jpg.id-C279F237.[m5b92n5p1@mail.com].sss", "2.jpg" to "2.jpg.id-C279F237.[m5b92
ZqVIkE is ransomware-type program based on the Hidden Tear (HiddenTear) open-source project. Systems infected with this type of malware experience data encryption and users receive ransom demands for decryption. Note that ZqVIkE is still in development, and thus might not encrypt all of files stor
This ransomware belongs to the VoidCrypt ransomware family. Like most malicious programs of this type, Mpmp encrypts files and renames them. It also generates a ransom message with instructions about how to contact the developers. Mpmp renames encrypted files by adding the mpdecoder@gmail.com ema
24-support-global[.]expert is a deceptive web page that promotes various scams. At the time of research, this site was observed promoting several versions of the "Your Apple iPhone is severely damaged" scam and one stating that users need to download a VPN application to continue watching conten
Like many other websites of this kind, mobile-detection[.]com promotes a potentially unwanted application (PUA) by claiming that use of the app will remove viruses, which have supposedly been detected by the site. In summary, websites such as mobile-detection[.]com promote software in deceptive
Belonging to the Djvu ransomware family, Epor is designed to encrypt files, modify their filenames, and create a ransom message. Epor renames files by appending the ".epor" extension to filenames. For example, "1.jpg" is renamed to "1.jpg.epor", "2.jpg" to "2.jpg.epor", and so on. It also creates