Hades Locker is an updated version of WildFire Locker ransomware that infiltrates systems and encrypts a variety of data types using AES encryption. Hades Locker appends the names of encrypted files with the ".~HL[5_random_characters] (first 5 characters of encryption password)" extension. In add
Research Soft is a deceptive program that claims to provide "best" online shopping offers based on collected information relating to Internet browsing activity. These claims often trick users into believing that Research Soft is a legitimate and useful application, however, this app often infiltr
GeoByPass is a rogue application that supposedly allows users to access various websites that are blocked in their countries. This functionality may appear legitimate and useful, however, GeoByPass is distributed using the "bundling" method and, thus, often infiltrates systems without users' conse
KillerLocker is a ransomware-type virus designed to encrypt files. During encryption, KillerLocker appends the ".rip" extension to the name of each compromised file. For instance, "sample.jpg" is renamed to "sample.jpg.rip". A window informing victims of the encryption is then displayed. Kille
![Nuke Ransomware [Updated]](/images/thumbnails/th-large-10541-nuke-ransomware.jpg)
Newly-discovered ransomware-type malware, Nuke (also known as Nuclear #55) is designed to encrypt most stored data using RSA cryptography. During encryption, Nuke renames files using random characters and appends a ".0x5bm" or .nuclear55 extension. Example of encrypted filenames: "bafd0lln90azb8g
Fs0ci3ty (Fsociety) is a ransomware-type virus distributed using spam emails. The malicious attachment claims to be a system driver update-related doc file, which contains gibberish text and encourages users to enable MS Word macros to decode this text. Once the macros are enabled, however, file
![SecureCrypted Ransomware [Updated]](/images/thumbnails/th-large-10149-securecrypted-ransomware.jpg)
SecureCrypted is a file-encrypting ransomware-type virus that stealthily infiltrates computers and encrypts stored files using an asymmetric encryption algorithm. During this process, SecureCrypted adds the ".disappeared", ".SecureCrypted”, “.bleepYourData" or “.F**YourData” extension to each encr
footybase.com is a fake Internet search engine identical to climbon.top, searchqq.com, ttczmd.com, and many other rogue sites. By falsely claiming to generate improved search results, footybase.com attempts to give the impression of legitimacy. In fact, this site is promoted using rogue software
Identical to slivnewbest.ru, searchqq.com, searchgra.com, and dozens of other websites, statliru1.ru/i/rt2.html is a fake Internet search engine claiming to improve the Internet browsing experience by generating the most relevant search results. These false claims often trick users into believing
Newly-discovered ransomware - Donald Trump - encrypts files (using AES cryptography) and appends the ".ENCRYPTED" extension to the name of each encrypted file. For example, encrypted "sample.jpg" might be renamed to "sample.jpg.ENCRYPTED". Following successful encryption, this ransomware opens a