RecognitionAssist is a potentially unwanted application (PUA) designed to operate both as a browser hijacker and adware. It changes certain browser settings to the address of a fake search engine and feeds users with advertisements. This app promotes the Safe Finder web page by opening it via ak
SIGARETA is a malicious program belonging to the NEFILIM ransomware family. This particular ransomware infection was discovered by GrujaRS. Typically, malware of this type encrypts files, modifies filenames, and creates and/or displays ransom messages. SIGARETA renames encrypted files by appendin
Discovered by Amigo-A, Enced (also known as PedoFinder/PedoTrap ransomware) is a ransomware-type malicious program. Typically, malware classified as ransomware encrypts data and demands payment for decryption tools. At the time of research, however, Enced did not encrypt the data of infected syste
Sdkkxbh is a part of the Snatch ransomware family and was discovered by Joakim Kennedy. Like most programs of this type, this ransomware encrypts files, modifies filenames and provides victims with instructions about how to contact the developers through a ransom message. Sdkkxbh renames encrypte
Task Manager Tab is a potentially unwanted application (PUA) advertised as a tool that supposedly includes features such as an online calculator, calendar and 'to do' list. In fact, its primary goal is to change certain browser settings to taskmanagertab.com to promote a fake search engine. These
File Conversion Now is a rogue application advertised as an easy access tool for file format converters. It is categorized as a browser hijacker, due to the modifications it makes to browsers to promote hfileconversionnow.com (a bogus search engine). This app also possesses data tracking capabilit
Get Quick Directions is browser hijacker which promotes getquickdirections.com (the address of a fake search engine) by modifying certain browser settings. It might also track and record various data. Generally, people download and install apps of this type inadvertently and, therefore, they are c
Cyber criminals increasingly attempt to exploit the coronavirus crisis in various ways. This malspam campaign is disguised as a COVID-19-themed message from Institute of Health of Serbia regarding distribution of protective equipment. Cyber criminals responsible attempt to trick recipients into i
ResultsToolbox is an adware-type application that has browser hijacker characteristics. Following successful infiltration, this app delivers intrusive advertisement campaigns, makes modifications to browser settings and promotes fake search engines. Most adware programs and browser hijackers rec
Discovered by dnwls0719, VIVELAG is a malicious program belonging to the Sapphire ransomware family. It is designed to encrypt data and demand payment for decryption. During the encryption process, all affected files are appended with the ".VIVELAG" extension. For example, a file named "1.jpg" wo