ITSA is ransomware that our team discovered while inspecting malware samples uploaded to VirusTotal. Once executed, ITSA encrypts files and appends the ".itsa" extension to them. For example, it renames "1.jpg" to "1.jpg.ista", "2.png" to "2.png.itsa", and so forth. It also drops a ransom note ("D
RALEIGHRAD is ransomware our team discovered during a routine inspection of malware samples submitted to VirusTotal. Upon execution, RALEIGHRAD encrypts files and changes their extensions to ".RALEIGHRAD" (e.g., it renames "1.jpg" to "1.jpg.RALEIGHRAD", "2.png" to "2.png.RALEIGHRAD", etc.). Addit
Our team has inspected the page (grokgroup[.]icu) and discovered that it is a scam disguised as a cryptocurrency airdrop (giveaway). It is designed to trick individuals into believing they can receive free tokens. However, victims of this scam can suffer monetary loss, as scammers can steal all of
Our researchers found the ovateshidae.co[.]in rogue page while examining dubious websites. After inspecting this webpage, we determined that it promotes browser notification spam and redirects visitors to different (likely untrustworthy/dangerous) sites. Ovateshidae.co[.]in and similar pages are p
Our inspection of the "Staff ID Card" email revealed that it is spam. It is presented as a notification concerning the production of new ID cards for staff. This message seeks to trick recipients into disclosing their email log-in credentials to a phishing website. This spam email requests
We discovered LegionRoot ransomware while browsing new file submissions to the VirusTotal platform. Malware within this classification encrypts files and demands payment for the decryption. LegionRoot encrypts files and appends their names with a random character extension. For example, this rans
Our research team discovered the Bbq ransomware-type program while reviewing new submissions to VirusTotal. It belongs to the Makop ransomware family. Malicious software of this kind is designed to encrypt data and demand payment for the decryption. We learned that Bbq ransomware renames encrypte
Our inspection of the "PayPal - Money Received" email revealed that it is fake. Disguised as a notification from PayPal, it informs the account owner that they have been sent 899.99 USD and must verify the transfer. The goal of this phishing campaign is to extract recipients' PayPal log-in credent
After analyzing Tarao Cuviaq Utils, we determined that the app offers no benefits to users and includes malicious elements, such as the Legion Loader. Installing it can result in system infections and various other problems. Therefore, it is strongly recommended to avoid installing this applicatio
We inspected the email and concluded that it is designed to trick recipients into believing they have won a prize (a large sum of money). None of the claims in this email are true, and falling for the scam can lead to monetary loss and identity theft. Recipients should ignore this email to avoid p