Dacls is the name of a remote access Trojan (RAT), a malicious program that allows cyber criminals to control infected computers remotely. Research shows that this malware is tied to Lazarus Group (a group of cyber criminals) and targets Linux and the Windows Operating System. Typically, cyber cr
![[ponce.lorena@aol.com] Ransomware](/images/thumbnails/th-large-16616-ponce-lorena-aol-com-ransomware.jpg)
Discovered by GrujaRS, [ponce.lorena@aol.com] is malicious software belonging to the GlobeImposter ransomware family. This malware operates by encrypting data and demanding payment for decryption tools/software. During the encryption process, all affected files are appended with the ".[ponce.loren
Discovered by GrujaRS, MZ434376 is a malicious program belonging to the KesLan ransomware family. It is designed to encrypt data and then demand ransom payments for decryption. During the encryption process, all compromised files are renamed with the ".MZ434376" extension. For example, "1.jpg" ap
Discovered by S!Ri, Rdp belongs to a family of ransomware-type programs called Paradise. Like many other programs of this type, Rdp encrypts files with a strong encryption algorithm so that they cannot be used or accessed unless they are decrypted with specific tools. These can only be purchased
"Christmas Party Email" is a Christmas-themed spam campaign designed to spread Emotet Trojan-type malicious software. Through use of social engineering tactics, these emails are intended to trick users into opening the attached file, which will then in turn infect their systems with Emotet.
Discovered by Raby, Deniz_Kızı ransomware is named (in Turkish) after a mythical creature, a mermaid. Like most programs of this type, Deniz_Kızı is designed to encrypt data so that victims cannot access it unless they pay a ransom. Instructions about how to pay are provided in the "Please Read Me
search.landslidesearch.com is the address of a fake search engine, which is promoted through a potentially unwanted application (PUA), a browser hijacker called Landslide Search. Generally, apps of this type promote fake search engines by changing certain browser settings. Additionally, most ga
Yourfine2updatesgo[.]best is a scam webpage. It claims that visitors' Adobe Flash Payer is out-of-date and offers fake updates. Fraudulent software updaters are known to spread a variety of PUAs (Potentially Unwanted Applications) and malware (e.g. ransomware, trojans, etc.). Typically, yourfin
Rapid (.cryptolocker) is a malicious software that encrypts data so that victims could not access their files unless they decrypt them with a private key and decryption software that can be purchased from cyber criminals who developed this ransomware. It renames all files by changing their filenam
Discovered by dnwls0719, NEMTY 2.3 REVENGE is an updated variant of NEMTY REVENGE 2.2 ransomware. This piece of malicious software is designed to encrypt data and then demand payment (ransom) for decryption. During the encryption, all affected files are retitled with an extension, consisting of "