Discovered by Jakub Kroustek, LX is malicious software belonging to the Crisis/Dharma ransomware family. It operates by encrypting the data of infected systems and demands payment for decryption tools/software. When this malware encrypts, all affected files are renamed according to this pattern:
Cranchit is a browser hijacker endorsed as a tool to improve web searches. In fact, it operates by modifying browser settings to promote feed.cranchit.com (a fake search engine). Furthermore, it has data tracking capabilities, which are employed to monitor users' browsing activity. Due to its dub
ArkeiStealer (also known as Arkei Stealer) is a type of malware that steals sensitive, confidential information, which cyber criminals can then use to generate revenue. Research shows that ArkeiStealer is capable of stealing login credentials and cryptocurrency wallet keys. Through accessing such
Discovered by dnwls0719, Banta is yet another high-risk ransomware infection from the Phobos malware family. After successful infiltration, Banta encrypts most stored files, thereby rendering them unusable. During encryption, Banta also appends each filename with the victim's unique ID, developer'
Belonging to the AdLoad malware family, LookupModule is a rogue app classified as adware. This application also possesses browser hijacker traits. LookupModule operates by running intrusive advertisement campaigns, modifying browsers and promoting fake search engines. Additionally, most adware-
Letsswin is a group deceptive websites promoting various scams. One of these schemes has been observed promoting "Dear Safari User, You Are Today's Lucky Visitor", however, these web pages might promote other scams as well. Few users enter these deceptive sites intentionally - most are redirect
The Maps Assist application supposedly allows users to search for maps, however, it actually changes certain browser settings to promote mapsassist.com (a fake search engine). Therefore, Maps Assist is classified as a browser hijacker. These apps also collect various user-system information. Many
rdsshark.xyz is one of many deceptive websites used to deceive visitors into downloading and installing various applications. Generally, these web pages promote potentially unwanted applications (PUAs), however, it is possible that they will also promote legitimate apps. In any case, websites t
As its name suggests, PoulightStealer is a malicious program that steals various information. The cyber criminals responsible might use the details to generate revenue. Research shows that PoulightStealer targets applications such as FileZilla, Steam, Skype and Telegram, however, other apps might
ProcessSign is one of many potentially unwanted applications (PUAs) categorized as adware. Adware serves various intrusive advertisements. Furthermore, these apps often track and record information. Note that users often download and install PUAs inadvertently. Generally, adware such as Pr