Discovered by Jakub Kroustek, .bat is a malicious program classified as ransomware. Generally, malware of this type blocks victims from accessing their files by encryption. To decrypt them, victims are forced to buy a decryption tool/key from cyber criminals who developed the program, in this case
The number of new ransomware-type programs is growing daily, including qbix, which was discovered by Jakub Kroustek and belongs to the Dharma ransomware family. Like most programs of this type, qbix is used by cyber criminals who aim to extort money from their victims. Ransomware-type programs en
Discovered by Jakub Kroustek, MERS is a ransomware-type program belonging to the Dharma family. Its main purpose is to encrypt data and keep it locked until a ransom is paid (decryption tool is purchased). MERS renames all encrypted files by adding the ".MERS" extension, which also contains a uniq
aa1 is a ransomware-type virus discovered by Jakub Kroustek. This ransomware is yet another variant of a high-risk infection called Dharma. aa1 is designed to stealthily infiltrate the system and compromise (encrypt) stored data, thereby making it unusable. In doing so, aa1 appends each filename
TR/Crypt.XPACK.Gen is the generic name for threats detected by Avira and categorized as unknown Trojans. Typically, these programs are designed to steal personal details or spread other malicious programs such as ransomware. One of the purposes of this particular Trojan is to monitor victims' bro
Belonging to the Djvu ransomware family, Fedasot is an infection designed to encrypt data and make ransom demands. During encryption, Fedasot appends the ".fedasot" extension to each filename (e.g., "sample.jpg" is renamed to "sample.jpg.fedasot"). Once encrypted, files immediately become unusabl
Sarut is yet another version of high-risk ransomware called Djvu. After successful infiltration, Sarut encrypts most stored files, thereby rendering them unusable. Additionally, Sarut appends filenames with the ".sarut" extension. E.g., "sample.jpg" is renamed to "sample.jpg.sarut". As with other
If a RunDLL pop-up window appears regularly and states that there was a problem starting the "SysMenu.dll" (dynamic-link library) file, it is likely that the computer is infected with adware (advertising-supported software). Apps of this type collect various user-system information and deploy adve
According to the developers, the "WiFi password cracker" tool allows people to reveal the passwords of password-protected Wi-Fi networks. In fact, this tool is developed and proliferated by cyber criminals to infect computers with a ransomware-type program. For this reason, we strongly recommend t
CrossRAT is yet another remote access trojan-type virus that stealthily infiltrates the system and records data. This malware is programmed in the Java language, which gives it a significant feature: it is a cross-platform trojan. Therefore, this trojan is capable of working on multiple operating