Typically, ransomware is designed to encrypt and rename files (prevent access) and keep them inaccessible unless a ransom is paid. DERZKO renames files by appending the ".DERZKO" extension to filenames. For example, "1.jpg" is renamed to "1.jpg.DERZKO", "2.jpg" to "2.jpg.DERZKO", and so on. DERZK
CoolStreamSearch is rogue software categorized as a browser hijacker. After infiltrating systems, CoolStreamSearch makes modifications to browser settings to promote coolstreamsearch.com, a fake search engine. This browser hijacker also has data tracking capabilities, which are employed to collect
Discovered by MalwareHunterTeam, Lucifer is a malicious program categorized as ransomware. This type of malware is designed to encrypt data and demand payment for decryption. Systems infected with Lucifer ransomware have their files "locked" (rendered inaccessible and useless) and users receive ra
Banking Trojans are malicious programs that, once installed on the victim's computer, create botnets, steal credentials, inject malicious code into web browsers, or steal money. Javali (also known as Ousaban) is a banking Trojan targeting users of financial institutions living in Latin America. R
Browser hijackers are potentially unwanted applications (PUAs) that change browser settings (to promote fake search engines) and gather browsing data. Searchlee promotes searchlee.com, an untrusted search engine that generates fake results with deceptive ads among them. This browser hijacker is
SocksBot is backdoor-type malware: it creates a 'backdoor' for other malicious programs to infiltrate. I.e., following successful infiltration, SocksBot can download/install additional malware. Backdoors such as SocksBot are used to infect devices with all manner of malicious software such as Tro
DriverScape is untrusted software, endorsed as a tool for identifying missing and outdated drivers, and then installing/updating them. DriverScape's website claims to have a well-organized database, which contains various drivers from official sources. The application also claims to have various p
Enel is an Italian manufacturer and distributor of electricity and gas. There are multiple variants of phishing and malspam emails that are currently circulating and claiming to be from this company. Cyber criminals behind these emails attempt to trick recipients into providing sensitive informati
GameSearcher is dubious software classified as a browser hijacker. It operates by making alterations to browser settings to promote game-searcher.com (a fake search engine). Additionally, GameSearcher collects browsing-related information, which makes it a serious privacy concern. Due to the dubi
MILIHPEN belongs to the family of ransomware called NEFILIM and was discovered by MalwareHunterTeam. MILIHPEN is a form of malware that encrypts files to prevent victims from using or accessing their data unless a ransom is paid. In most cases, ransomware not only encrypts files but also renames