Guildma is malicious software exclusively targeting Brazil and classified as a banking Trojan. While some variants of this malware have been updated to widen its range to other territories, no observations have been made of such attacks being carried out. Furthermore, later versions had these cap
QuestSearch is an adware-type application which is distributed through a fake Adobe Flash Player installer. When installed, it serves a variety of advertisements. Additionally, it functions as a browser hijacker - QuestSearch promotes a fake search engine by changing browser settings. Note that
Lalo is malicious software belonging to the Djvu ransomware family. Systems infected with this malware suffer data encryption and users receive ransom demands for decryption. During the encryption process, all affected files are appended with the ".lalo" extension. For example, a file like "1.jpg
Best Media Converter supposedly functions as an audio, video and document converter, however, as with all other adware software, this program simply delivers advertisements. Since users often download and install adware inadvertently, these programs are categorized as potentially unwanted applicat
Discovered by Jirehlov, SARS-CoV-2 is malicious software categorized as ransomware. This malware is designed to encrypt data and demand payment for decryption. When it encrypts, all affected files are appended with the ".SARS-CoV-2" extension. For example, a file originally named something like "
Void (also known as VoidCrypt) is a malicious program classified as ransomware. Systems infected with this malware suffer data encryption and users receive ransom demands for file decryption. When this ransomware encrypts, all affected files are renamed according to this pattern: original filename
Discovered by Jirehlov, and like many other programs of this type, PonyFinal is designed to block access to files by encryption, change their filenames and generate ransom messages. It renames each encrypted file by appending the ".enc" extension to the filename. For example, it renames "1.jpg" t
SystemSpecial is a rogue app, classified as adware. It enables the placement of various intrusive ads on any visited website. Additionally, this application has capabilities typical of browser hijackers. SystemSpecial modifies browser settings and promotes Safe Finder via akamaihd.net. Due to t
There are many cases whereby cyber criminals attempt to take advantage of the Coronavirus (COVID-19) crisis by sending fraudulent emails. In this case, they spread an email with a file attached, which supposedly contains a list of employees who violated quarantine orders. Scammers encourage recip
Bug ransomware was discovered by Jirehlov. Software of this type usually encrypts files, appends an extension to the filenames and creates and/or displays ransom messages. Bug renames encrypted files by adding the bugbugo@protonmail.com email address and appending the ".bug" extension to filenames