Discovered by Petrovic, Erica is data-encrypting ransomware. Systems infected with this malware have their files locked and renamed, and users receive ransom demands for decryption of files to regain access to their data. During the encryption process, affected files are appended with a random ch
uploadhub[.]co and similar sites are often opened after clicking dubious advertisements, visiting bogus websites, or by installed potentially unwanted applications (PUAs). Most users do not visit these web pages intentionally. Examples of similar sites are videogate1[.]com, financeflick[.]com and
The SearchConverterPro changes browser settings to promote searchconverterpro.com, the address of a fake search engine. It is likely that SearchConverterPro also gathers browsing-related information. Most users do not download or install browser hijackers intentionally and, for this reason, apps
FreeSearchConverter is a browser hijacker promoting the freesearchconverter.com fake search engine. This piece of software operates by assigning browser settings to its associated web search engine address. Additionally, FreeSearchConverter collects browsing-related data. Since most users downloa
youtube-to-mp3[.]org is a YouTube downloader website, offering a service to convert YouTube video URLs (links) to MP3 and MP4 files, which users can download. As well as infringing copyright laws, this web page also uses rogue advertising networks. Therefore, by opening/using youtube-to-mp3[.]org
Ransomware is a type of malware that blocks access to files using encryption, until the victim pays a ransom in exchange for a decryption tool (decryption software or key). The decryption tool supposedly allows the victim to access files encrypted by the ransomware. Ransomware often renames encry
Discovered by malware researcher S!Ri, Niros is malicious software categorized as ransomware. This ransomware operates by encrypting the files stored on the infected system, essentially rendering the data inaccessible and useless. This enables cyber criminals behind the infection to demand payment
Belonging to the Dharma ransomware family, OVO is data-encrypting malware. Systems infected with this ransomware have their files rendered inaccessible and users receive ransom demands for decryption. During the encryption process, all affected files are renamed following this pattern: original f
DiamondFox is highly modular malware offered as malware-as-a-service, and is for sale on various hacker forums. Therefore, cyber criminals who are willing to use DiamondFox do not necessarily require any technical knowledge to perform their attacks. Once purchased, this malware can be used to log
Identical to Searchlee, and similar to countless others, Brilliant Check is a browser hijacker. Following successful infiltration, it changes browser settings in order to promote brilliantcheck.com, a fake search engine. In addition, Brilliant Check operates as adware - it injects various advert