Discovered by dnwls0719, VIVELAG is a malicious program belonging to the Sapphire ransomware family. It is designed to encrypt data and demand payment for decryption. During the encryption process, all affected files are appended with the ".VIVELAG" extension. For example, a file named "1.jpg" wo
"Transaction received into blockchain wallet" is a scam email. These messages are disguised as mail from Blockchain, Bitcoin cryptocurrency block explorer and cryptowallet service, which supports Bitcoin, Bitcoin Cash, and Ethereum cryptocurrencies. The emails are presented as notifications about
Dupzom is a Trojan which operates as a malware downloader. It causes chain infections by downloading and executing malicious files that infect computers with additional malware. Dupzom can cause installation of ransomware, remote administration/access Trojans (RATs), cryptocurrency miners, and oth
Scammers behind this email scam attempt to trick recipients into providing certain information by disguising the message as a business proposal and offering a share of the profits. Do not trust this scam or send any of the requested information to the criminals responsible. This email is dis
guesstimateds[.]com is a rogue website running various scams. The researched variant claims that, by completing a short survey, users can win a prize. These schemes are typically designed for phishing purposes. I.e., by offering fake prizes, they attempt to extort personal information and/or other
MajorPanelSearch is designed to display advertisements and promote the address of a fake search engine by changing browser settings. This app has traits of adware and browser hijackers. It might also be designed to collect data relating to users' browsing habits. In most cases, people download
searchred01.xyz is promoted through a potentially unwanted application (PUA), a browser hijacker called Suxs APP. This address might also be promoted by other apps of this type. Typically, browser hijackers promote fake search engines by changing certain browser settings. Most gather browsing-rel
Space is a part of the Dharma ransomware family. It encrypts files, renames them, displays a ransom message in a pop-up window, and creates another in a text file named "FILES ENCRYPTED.txt". Space renames files by adding the victim's ID, the Mail@qbmail.biz email address, and appending the ".spac
!Shadow is malicious software categorized as ransomware. It operates by encrypting the data of infected systems and presenting victims with ransom demands for decryption tools. During the encryption process, all affected files are renamed according to this pattern: "{ShadowofDeath@elude.in}.ID=[v
The main purpose of AdditionalChannelSearch is to serve advertisements, however, it also promotes the address of a fake search engine by modifying browser settings. In summary, AdditionalChannelSearch has characteristics of adware and browser hijackers. Users often download and install apps of