ArchimedesLookup is a rogue application categorized as adware and possessing browser hijacker traits. It operates by running intrusive advertisement campaigns, making modifications to browser settings and promoting fake search engines. Most adware and browser hijackers gather browsing-related i
jightlydra[.]club is a rogue website designed to redirect visitors to other untrusted/malicious pages and/or to present them with dubious content. At the time of research, this site promoted an installer containing malicious software. Websites such as cvazirouse.com, onlybestpushnews.com, and zmus
XCrypto is malicious software categorized as ransomware. It operates by encrypting data and demanding payment for decryption. During the encryption process, all affected files are renamed following this pattern: original filename, unique ID, cyber criminals' email address and the ".XCrypto" extens
Imperium Metamorpher is a Remote Access Tool (RAT), however, when programs of this type are used maliciously, they are classified as Remote Access Trojans (RATs). Note that RATs allow remote access and control over an infected machine. Malware of this type can have a broad range of dangerous capab
searchiing.com is a bogus search engine. These fake search engines are usually promoted by Potentially Unwanted Applications (PUAs) categorized as browser hijackers. This software operates by making modifications to browsers and monitoring users' browsing activity. Additionally, PUAs do not need
EngageSearch is an adware-type application with browser hijacker traits. This app is designed to run intrusive advertisement campaigns, make modifications to browsers and promote fake search engines. EngageSearch promotes Safe Finder via akamaihd.net in this manner. Most software within the adw
RAGA is a ransomware-type malicious program. Systems infected with this malware have their data encrypted and users receive ransom demands for decryption tools/software. During the encryption process, all compromised files are renamed following this pattern: original filename, unique ID assigned
Discovered by xiaopao, AL8G is a malicious program belonging to the Matrix ransomware family. The malware operates by encrypting data and demanding payment for decryption tools/software. During the encryption process, all affected files are renamed following this pattern: "[AlanRed@criptext.com].
StreamItSearch is a browser hijacker designed to promote streamit-search.com. Following successful infiltration, this piece of software modifies browser settings to promote a fake search engine (streamit-search.com). Furthermore, StreamItSearch has data tracking capabilities that are used to monit
flowEncryption is malicious software, classified as ransomware. Systems infected with this malware have their data encrypted and users receive ransom demands for decryption. During encryption process, filenames of affected files are appended with the ".flowEncryption" extension. For example, a fi