Base is a malicious program, which is part of the Dharma ransomware family. This malware encrypts data and demands payment for decryption. During the encryption process, all affected files are renamed according to this pattern: original filename, unique ID, cyber criminals email address and the ".
Bozok is a Remote Access (Administration) Trojan, or simply a RAT. Malware of this type allows cyber criminals responsible to monitor and control victims' computers. Bozok can be used to upload and download files to/from the victim's computer, start and end processes, modify the registry, steal st
securityvpnapp[.]com is an untrusted website running various scams. At the time of research, this site promoted a scheme claiming that visitors' internet connections might be vulnerable. To secure the allegedly exposed connections, users are urged to download a free application. Scams of this t
Discovered by dnwls0719, Cobra Locker (also known as Cobra_Locker or CobraLocker) is a malicious program classified as ransomware. Following successful infiltration, this malware encrypts data in order to demand payment for decryption tools. During the encryption process, files are appended with t
Badboy ransomware was discovered by dnwls0719. It encrypts files, displays a pop-up window and creates a text file ("ReadME-BadboyEncryption.txt"), both of which are ransom messages that contain instructions about how to contact the cyber criminals behind Badboy. This ransomware also renames encr
search.handlersection.com is a fake search engine that displays results generated by Yahoo after redirecting users to one of the addresses promoted by Safe Finder. Note that search.handlersection.com also redirects to search.anysearchmanager.com, the address of another dubious search engine. Ge
SkilledControl is a rogue application categorized as adware, which also possesses browser hijacker traits. SkilledControl operates by delivering intrusive advertisement campaigns, making modifications to browser settings, and promoting fake search engines. This app promotes Safe Finder via akama
Perfect Optimizer is advertised as software that supposedly repairs, cleans and optimizes the operating system. In fact, this program is distributed in a dubious way and, therefore, is categorized as a potentially unwanted application (PUA). Users often download and install these rogue apps inadve
"BOTAS" is a spam email campaign designed to proliferate the TrickBot Trojan. These emails are disguised as mail from the Turkish Petroleum Pipeline Corporation (BOTAŞ). The file attached to the emails is disguised as a PDF document, however, this is in fact a malicious executable that installs Tr
ModiRat is a Remote Access Trojan (RAT) which allows cyber criminals to control infected systems remotely. In most cases, this type of malware is used to access personal files, steal login credentials, and install additional malware. Note that most RATs do not appear in the list of running proces