Step-by-Step Malware Removal Instructions

Instagram Account Hack Scam
Phishing/Scam

Instagram Account Hack Scam

We have discovered this scheme during an inspection of a PDF file hosted on a dubious page. This scam site is supposed to provide a tool (Hacking Panel V2) for hacking Instagram accounts. Ultimately, users are directed to another web page. It is highly advisable not to trust such schemes to avoid

BackLock Ransomware
Ransomware

BackLock Ransomware

Our research team discovered the BackLock ransomware while investigating new submissions to the VirusTotal website. This malicious program operates by encrypting data to demand payment for the decryption. On our test machine, BackLock encrypted files and added a ".{victim's_ID}.backlock" extensio

ITSA Ransomware
Ransomware

ITSA Ransomware

ITSA is ransomware that our team discovered while inspecting malware samples uploaded to VirusTotal. Once executed, ITSA encrypts files and appends the ".itsa" extension to them. For example, it renames "1.jpg" to "1.jpg.ista", "2.png" to "2.png.itsa", and so forth. It also drops a ransom note ("D

RALEIGHRAD Ransomware
Ransomware

RALEIGHRAD Ransomware

RALEIGHRAD is ransomware our team discovered during a routine inspection of malware samples submitted to VirusTotal. Upon execution, RALEIGHRAD encrypts files and changes their extensions to ".RALEIGHRAD" (e.g., it renames "1.jpg" to "1.jpg.RALEIGHRAD", "2.png" to "2.png.RALEIGHRAD", etc.). Addit

GROK Airdrop Scam
Phishing/Scam

GROK Airdrop Scam

Our team has inspected the page (grokgroup[.]icu) and discovered that it is a scam disguised as a cryptocurrency airdrop (giveaway). It is designed to trick individuals into believing they can receive free tokens. However, victims of this scam can suffer monetary loss, as scammers can steal all of

Ovateshidae.co.in Ads
Notification Spam

Ovateshidae.co.in Ads

Our researchers found the ovateshidae.co[.]in rogue page while examining dubious websites. After inspecting this webpage, we determined that it promotes browser notification spam and redirects visitors to different (likely untrustworthy/dangerous) sites. Ovateshidae.co[.]in and similar pages are p

Staff ID Card Email Scam
Phishing/Scam

Staff ID Card Email Scam

Our inspection of the "Staff ID Card" email revealed that it is spam. It is presented as a notification concerning the production of new ID cards for staff. This message seeks to trick recipients into disclosing their email log-in credentials to a phishing website. This spam email requests

LegionRoot Ransomware
Ransomware

LegionRoot Ransomware

We discovered LegionRoot ransomware while browsing new file submissions to the VirusTotal platform. Malware within this classification encrypts files and demands payment for the decryption. LegionRoot encrypts files and appends their names with a random character extension. For example, this rans

Bbq Ransomware
Ransomware

Bbq Ransomware

Our research team discovered the Bbq ransomware-type program while reviewing new submissions to VirusTotal. It belongs to the Makop ransomware family. Malicious software of this kind is designed to encrypt data and demand payment for the decryption. We learned that Bbq ransomware renames encrypte

PayPal - Money Received Email Scam
Phishing/Scam

PayPal - Money Received Email Scam

Our inspection of the "PayPal - Money Received" email revealed that it is fake. Disguised as a notification from PayPal, it informs the account owner that they have been sent 899.99 USD and must verify the transfer. The goal of this phishing campaign is to extract recipients' PayPal log-in credent