First discovered by Michael Gillespie, Wulfric is a high-risk ransomware infection designed to compromise (encrypt data) so that developers are able to blackmail victims by offering paid recovery of their files. During encryption, Wulfric renames each file to a three-digit hexadecimal number and
RevengeRAT (also known as Revetrat) is high-risk computer infection categorized as a remote access trojan (RAT). The purpose of this malware is to provide cyber criminals with remote access to the infected machine and allow them to manipulate it. Research shows that cyber criminals proliferate th
Discovered by Michael Gillespie, Bopador is high-risk ransomware from the Djvu malware family. The purpose of this infection is to encrypt stored data and make ransom demands. During encryption, Bopador appends each filename with the ".bopador" extension (for example, "1.jpg" becomes "1.jpg.bepad
Discovered by Michael Gillespie and belonging to the Djvu ransomware family, Novasof is a high-risk infection designed to compromise (encrypt) data and keep it that state unless a ransom is paid. Novasof renames each encrypted file by adding the ".novasof" extension (e.g.., "sample.jpg" is rename
First discovered by MalwareHunterTeam, Megac0rtx is an updated variant of high-risk ransomware called MegaCortex. After successful infiltration, Megac0rtx compromises (encrypts) most stored data and appends each filename with the ".megac0rtx" extension (hence its name). For example, "1.jpg" is re
Persephone666 is yet another ransomware-type infection that belongs to the Maoloa family. After infiltrating the system, Persephone666 encrypts most stored files, rendering them unusable. Additionally, Persephone666 renames each file by adding the ".Persephone666" appendix (e.g., "sample.jpg" bec
First discovered by GrujaRS, Acute is a new variant of high-risk ransomware called Phobos. The purpose of this ransomware is to encrypt data so that developers can make ransom demands. Acute is designed to rename each compromised file by appending the victim's unique ID, developer's email address,
Yourmonday is a set of deceptive websites (including competition1480.yourmonday67[.]live and play0273.yourmonday23[.]live) that promote potentially unwanted applications (PUAs). These sites deliver fake error messages stating that the system is infected/damaged and encourage visitors to downloa
Dodoc is a ransomware-type infection designed to encrypt most stored files, thereby rendering them unusable. This malware belongs to the Djvu ransomware family and was first discovered by Michael Gillespie. During encryption, Dodoc renames each file by adding the ".dodoc" extension (e.g., "sample
"Lo. Li. Pharma International Email Virus" is yet another spam email campaign used to spread malware. Cyber criminals send hundreds of thousands of emails containing deceptive messages that encourage recipients to open malicious attachments. At time of research, the distributed attachment was a Z