Discovered by dnwls0719, Baraka Team is the name of malicious software classified ransomware. Systems infected with this malware have their data encrypted so that ransom demands can be made for decryption tools/software. Most ransomware-type programs rename compromised files and/or append them wi
"Request for quotation" is a scam email designed to proliferate the Agent Tesla Remote Access Tool (RAT). When used for malicious purposes, it is classified as a Remote Access Trojan. The emails supposedly concern an urgent order and recipients are asked to provide relevant specification of this
Chinz belongs to the Phobos ransomware family. This is a typical ransomware infection designed to encrypt files, modify their filenames, and provide instructions about how to contact the developers regarding decryption. Chinz changes the name of each encrypted file by adding the victim's ID, yuzh
"Secure Parking" is the name of a spam email campaign. These scam messages are disguised as final warning notifications from Secure Parking, a legitimate international parking service provider. Note that the email is in no way connected to the genuine Secure Parking car park operator. The message
Perfect Startpage browser hijacker promotes perfectstartpage.com, a fake search engine, by modifying specific browser settings. These apps also collect information relating to users' browsing habits. People often download and install browser hijackers inadvertently and, therefore, they are categor
DataSearchLauncher is a potentially unwanted application (PUA), which has characteristics of adware-type apps and browser hijackers. I.e., it serves advertisements and changes certain browser settings (to promote addresses of fake search engines). These apps are cateogorized as PUAs, since users
searches.network is a fake search engine which displays results generated by webcrawler.com, another bogus search engine. Research shows that searches.network is promoted through a potentially unwanted application (PUA), a browser hijacker that users often install through a deceptive Adobe Flash
VirtualDeskSearch is an adware-type application with browser hijacker traits. Following successful installation, this app runs intrusive advertisement campaigns and modifies browser settings to promote bogus search engines. Most adware infections and browser hijackers gather browsing-related dat
gooogle.page is the address of a fake search engine, which is promoted through a browser hijacker called Palo APP. In most cases, these apps promote fake search engines by changing browser settings, however, research shows that this particular app does not necessarily change them to promote gooogl
Mist is a malicious program classified as a stealer. This malware exfiltrates (i.e., steals) various sensitive information. The Mist stealer primarily targets cryptocurrency wallets, saved log-in credentials (usernames and passwords), certain browsing information and data stored in specific locati