Legion Loader is a malicious program designed to infect systems with 2-3 other programs of this type (or more). Research shows that Legion Loader is used to spread information stealers (such as Vidar, Predator the Thief and Raccoon Stealer), backdoors, cryptocurrency stealers and a cryptocurrency
R00t is a malicious program belonging to the Paradise ransomware family. It is designed to encrypt the data of infected systems so that ransom demands can be made for decryption software. During encryption, all affected files are renamed according to the following pattern: "_r00t_{random string}.n
This spam campaign is disguised as an invitation to "the biggest climate protest". Cyber criminals behind it seek to trick recipients into opening the attached document or website link, and then installing Emotet. Note that Emotet is a malicious program categorized as Trojan. It is designed to st
Discovered by GrujaRS, Parad1gm is malicious software belonging to the DopplePaymer ransomware family. This malware operates by encrypting data and then demanding ransom payments for decryption tools/software. When Parad1gm encrypts, all files are renamed with the ".parad1gm" extension. For examp
gusimp[.]net is a rogue web page, which is similar to find-soulmates.com, histleolderlandch.info, terko.pro and countless others (and also related to adf.ly). Visitors to this site are presented with dubious content and/or redirected to other untrustworthy or malicious websites. People do not of
Typically, people do not visit websites such as finestream[.]club intentionally. There are also many other similar pages on the internet. Some examples are horny-vid[.]com, rex-news1[.]club and pushpush[.]net. Browsers are commonly forced to open these sites due to installed potentially unwanted
expectivepo[.]info is one of many rogue websites that people often visit unintentionally. More examples of websites of this type include free-girls-vids[.]com, horny-vid[.]com and rex-news1[.]club. Typically, browsers open these sites due to potentially unwanted applications (PUAs) installed on th
When visited, streamview[.]site redirects visitors to untrustworthy websites or loads dubious content. It operates like many other websites of this type including, for example, find-soulmates[.]com, best-girls-ever[.]com and hellopushworld[.]com. Most people end up on these websites when they are
ycarpethjan[.]info is one of many rogue websites designed to load dubious content or redirect visitors to other untrustworthy web pages. Examples of other web pages that function like ycarpethjan[.]info include find-soulmates[.]com, histleolderlandch[.]info and best-girls-ever[.]com. In most case
tyoapodazoay[.]com is a rogue website, which loads dubious content. People who visit this site are often redirected to other untrustworthy websites. There are many other websites similar to tyoapodazoay[.]com. Some examples are histleolderlandch[.]info, best-girls-ever[.]com and ultimate-captcha[.