Funnymonday is a family of websites, which operate by endorsing untrustworthy applications. This variant promotes Smart Mac Booster, which is classified as a Potentially Unwanted Application (PUA). Using scare tactics, Funnymonday urges people into downloading/installing the dubious software it
mirox22[.]biz is the address of a rogue web page which, once opened, redirects visitors to other untrustworthy websites or displays dubious content. Many other websites have similar operation to mirox22[.]biz including, for example, piedppienews[.]com, newsapp[.]biz, and trementrecially[.]pro. In
Similar to best2019-games-web1.com, piedppienews.com, trementrecially.pro, and many others, push-tools-system[.]com is a rogue website. It operates by delivering dubious content and generating redirects to other untrustworthy and malicious websites. Few visitors access push-tools-system[.]com int
Discovered by Jakub Kroustek and belonging to the Crysis/Dharma malware family, Wiki is malicious software classified as ransomware. It is designed to encrypt data and keep it locked until a ransom is paid (i.e., decryption software/tool is purchased). When this malicious program encrypts data, i
Belonging to the Djvu ransomware family, Nols is malicious software designed to encrypt data and demand ransom payments for decryption (i.e., purchase of a decryption tool and unique key). During the encryption process, all files are renamed with the ".nols" extension. Therefore, "1.jpg" becomes
Werd ransomware is part of the Djvu ransomware family and distributed to encrypt files and force victims to pay ransoms. Werd appends the ".werd" extension to each encrypted file. For example, "1.jpg" becomes "1.jpg.werd". Like most programs of this type, it creates a ransom message within a text
gunnepaa[.]xyz is one of thousands of rogue websites online and similar to best2019-games-web1.com, piedppienews.com, and trementrecially.pro. This site operates by presenting users with dubious content and generating redirects to untrustworthy, malicious web pages. Most visitors to gunnepaa[.]xy
stremanp[.]com is virtually identical to many other websites of this type including, for example, best2019-games-web1[.]com, piedppienews[.]com, and newsapp[.]biz. When opened, these sites redirect visitors to other rogue websites or display dubious content. Note that stremanp[.]com redirects vis
bigdater[.]me is the address of a website that most people visit inadvertently. The site opens other untrustworthy web pages or displays dubious content. Note that bigdater[.]me functions as many other websites of this type including, for example, carbamylife[.]info, talkreply[.]com, and track.nux
Masked ransomware is a new variant of Aurora, and like most programs of this type, is designed to prevent victims from accessing their files by encryption. To recover them, victims are encouraged to purchase a decryption key (i.e., pay a ransom). Masked renames all encrypted files by appending the