.RABBIT is written in the Python programming language and was discovered by dnwls0719. It is designed to encrypt files with the AES-256 algorithm, change their filenames by appending the ".RABBIT" extension, and create the "อ่านวิธีแก้ไฟล์โดนล๊อค.txt" text file, a ransom message in the Thai langua
Discovered by Dinesh_Devadoss, EvilQuest (also known as ThiefQuest) is like many other malicious programs of this type - it encrypts files and creates a ransom message. In most cases, this type of malware modifies the names of encrypted files by appending certain extensions, however, this ransom
.java is a malicious program belonging to the Dharma ransomware family. Systems infected with this malware experience data encryption and users receive ransom demands for decryption. During the encryption process, files are renamed according to this pattern: original filename, unique ID, cyber cr
Scammers behind this phishing scam attempt to obtain sensitive information. They claim that whoever received this email has been selected as a winner of $500,000 in a 2020 EU/COMMONWEALTH lottery, and encourages them to claim the funds by making contact via the provided email address. You are stro
mediamodern[.]biz is an untrusted website sharing many similarities with newmode.biz, newmode.biz, keysdigita.com and countless others. Visitors to the site are redirected to other untrusted/malicious web pages or are presented with dubious content. Few users access mediamodern[.]biz or similar s
SearchConverterHD is dubious software classified as a browser hijacker. Following successful infiltration, it operates by making alterations to browser settings to promote bogus search engines. SearchConverterHD promotes search-converterhd.com in this manner. Additionally, this browser hijacker m
search-7.com is a fake search engine. Typically, fake search engines are promoted through browser hijackers (unwanted applications), which hijack browsers by modifying certain settings. Convlus App assigns these browser settings to search-7.com. Other apps might also promote this fake search engi
newmode[.]biz is a rogue website designed to present visitors with dubious material and/or redirect them to other untrusted or malicious web pages. Users rarely access newmode[.]biz intentionally - most are redirected to it by intrusive ads or Potentially Unwanted Applications (PUAs) already infil
MyShortcutTab is classified as a browser hijacker, since it promotes a fake search engine (it assigns certain browser settings to search-find.net). Generally, apps of this type also collect details relating to users' browsing activities. Users often download and install browser hijackers inadverte
Discovered by Jakub Kroustek, Lxhlp is a malicious program belonging to the Dharma ransomware family. This malware operates by encrypting files and demanding payment for decryption. During the encryption process, all compromised files are renamed following this pattern: original filename, unique