TXTME is ransomware from the Dharma family that our team discovered while inspecting malware samples uploaded to VirusTotal. Upon infiltration, TXTME encrypts files and appends the victim's ID, an email address, and the ".TXTME" extension to them. Also, it provides two ransom notes (a pop-up messa
Our review of Unsceptical.app reveals that it is an ad-supported application (adware) identified as malicious by several security vendors. It has also been linked to the Pirrit family. Installing Unsceptical.app is not recommended, as it may lead users to scams, cause privacy breaches, and other
Our analysis of perwousesoc[.]com shows that it is a misleading website designed to manipulate users into enabling notifications through a tactic known as clickbait. Once permission is granted, it sends deceptive notifications aimed at tricking users into opening questionable and potentially harmf
After examining this "Undelivered Email Reports" message, we determined that it is spam. This email claims that multiple messages failed to reach the inbox. The goal of this scam is to trick recipients into disclosing their account log-in credentials to a phishing website. The spam email w
"$MOG Coin Airdrop" is a scam we found that impersonates the official website of the Mog Coin (MOG). It lures users with a fake airdrop of this token and tricks them into exposing their digital wallets to a crypto drainer. It must be stressed that this bogus airdrop is not associated with the real
While browsing suspicious websites, our researchers discovered this fake "Flare EVM Hub" page. It is a phishing scam that deceives users into disclosing their cryptocurrency wallet log-in credentials by using an airdrop-themed lure. It must be stressed that regardless of potential similarities to
While investigating new submissions to VirusTotal, our research team found Bezant.app. After analyzing this application, we learned that it is adware from the Pirrit family. Software within this classification operates by running intrusive advertisement campaigns. Adware stands for adver
Officialize.app is a rogue application found by our research team during a routine inspection of new file submissions to the VirusTotal site. After examining this piece of software, we determined that it is adware. Officialize.app belongs to the Pirrit adware family. Advertising-supported softwa
Our researchers discovered the NightSpire ransomware-type program while investigating new file submissions to the VirusTotal platform. It is part of the Snatch ransomware family. This malware is designed to encrypt data and demand payment for the decryption. On our test machine, NightSpire encryp
Hilipinge[.]com is a rogue webpage that our research team found during a routine inspection of suspicious websites. We determined that this page aims to promote browser notification spam, and at the time of research, did so by using a fake CAPTCHA test. This webpage can also redirect users to diff