Acuff belongs to the Phobos ransomware family. Malware of this type is designed to encrypt data, rename each encrypted file, and generate ransom messages. This particular ransomware program renames encrypted files by adding the victim's ID, the unlockfiles2021@cock.li email address to filenames, a
RXD is a malicious program and part of the Dharma ransomware family. It blocks access to files by encryption, renames each encrypted file, and provides instructions about how to contact the developers regarding data decryption. RXD renames files by adding the victim's ID, the debri@keemail.me emai
Generally, scammers behind email scams such as this one attempt to trick recipients into believing that they are beneficiaries of a will, life insurance policy, etc. Scammers ask recipients to contact them and provide various information. At some point, recipients are asked to pay a processing fee
Termit belongs to the Dcrtr ransomware family. Like most programs of this type, Termit encrypts files, renames them, and creates a ransom message. It renames files by adding the ashtray@outlookpro.net email address and appending the ".termit" extension to filenames. For example, "1.jpg" is rename
Restoreserver is part of the Scarab ransomware family. This ransomware is designed to encrypt files, rename them, and create the "HOW TO RECOVER ENCRYPTED FILES.TXT" text file (ransom message) in all folders that contain encrypted files. Restoreserver renames files by replacing their filenames wit
The Bolobi web browser hijacker changes certain browser settings to keysearchs.com. In this way, it forces users to visit a fake search engine. This app can read browsing history, however, it might also be capable of accessing other data. Note that Bolobi web is categorized as potentially unwante
Quaverse (also known as QRAT and Qua RAT) is a Remote Access Trojan (RAT) based on the Java programming language. Like most RATs, it allows cyber criminals responsible to remotely control infected computers. In most cases, RATs are used to steal sensitive information and distribute other malicious
LaunchSystem functions as adware, browser hijacker, and a data collector. It serves advertisements, promotes a fake search engine address by changing browser settings, and gathers sensitive information. Generally, users download and install applications such as LaunchSystem inadvertently and, f
This ransomware is a part of the Dharma ransomware family. It prevents victims from accessing/using their files by encrypting them, renames all encrypted files, displays a pop-up window (a ransom message) and creates the "FILES ENCRYPTED.txt" text file (another ransom message). Elvis ransomware a
Banjo is a malicious program belonging to the Phobos ransomware family. Like most programs of this type, Banjo is designed to encrypt files, modify their filenames, and provide instructions about how to contact the developers. It renames files by adding the victim's ID, the mutud@airmail.cc email