Discovered by Michael Gillespie, 2NEW is malicious software belonging to the Dharma ransomware family. It is designed to encrypt data and demand payment for decryption. When 2NEW malware encrypts, files are renamed according to the following pattern: original filename; unique ID; developer's email
easymedia2[.]com is a rogue website designed to load dubious content or open a number of other rogue web pages. Other examples of websites of this type include newsbreak[.]com, daystream[.]club and gubudakis[.]com. Typically, people do not visit these sites intentionally - they are opened by brows
Flash App+ is a browser hijacker that changes browser settings to promote searchpowerapp.com (a bogus search engine). Additionally, Flash App+ has data tracking capabilities, which are employed to monitor and record browsing-related information. Due to the dubious methods used to proliferate this
ShadowTechRAT is a Remote Access Trojan (RAT). Cyber criminals proliferate programs of this type to remotely access and/or control infected computers. I.e., to infect systems with other high-risk malware, steal personal/confidential information, and so on. Typically, RATs are difficult to detect,
First discovered by Jirehlov, The Cursed Murderer is the name of a malicious program classified as ransomware. Systems infected with this malware have their data encrypted and users receive ransom demands for decryption tools/software. During the encryption process, all affected files are appended
Fun APP is one of many potentially unwanted applications (PUAs) that are classified as browser hijackers. Apps of this type usually promote the address of a fake search engine by changing browser settings and gathering browsing data. Fun APP promotes searchnewworld.com in this way. people do not u
xscx.xyz is a fake search engine, which is promoted through a potentially unwanted application (PUA), a browser hijacker called Smash App+ (or SApp+). It might also be promoted through other browser hijackers. Generally, apps of this type promote fake search engines by changing certain browser set
Discovered by Michael Gillespie, Repp is a malicious program and part of the STOP/Djvu ransomware family. This rogue software is designed to encrypt the data of an infected system and demand payment for decryption. When Repp ransomware encrypts, files are appended with the ".repp" extension. For
Discovered by Michael Gillespie, Alka is one of many ransomware-type programs that belong to the Djvu family. Alka encrypts files and appends the ".alka" extension to filenames. For example, it renames "1.jpg" to "1.jpg.alka", and so on. It also creates a ransom message within a text file named "_
newsbreak[.]com is a rogue site sharing many similarities with daystream.club, gubudakis.com, brotherenuryc.pro and countless others. It generates redirects to other untrusted/malicious web pages and presents visitors with dubious content. Most users enter newsbreak[.]com and similar pages via re