We have inspected this email and learned that it is a fake letter from a hacker claiming that the recipient's computer has been hacked and infected, and "intriguing" material has been obtained. The purpose of the scammer behind this email is to extract money from unsuspecting recipients. This emai
PureStealer is information-stealing malware that targets Windows users. The cyber criminals running this campaign are specifically targeting Ukrainian military recruits. It is known that they also deploy Android malware. The attackers use PureStealer to harvest data stored in their victims' web br
Our team has inspected denaliview[.]top and learned that the purpose of this site is to obtain permission to deliver notifications to visitors. Once visited, denaliview[.]top presents misleading content to lure visitors. Therefore, it is highly advisable to avoid visiting this page and not permit
Our inspection of toqutor[.]com has revealed that the purpose of this web page is to lure visitors into agreeing to receive its notifications. This deceptive site uses clickbait to achieve this goal. Users should never allow pages like toqutor[.]com to show notifications and close them if encounte
We have examined the site (blockchainverified.vercel[.]app) and discovered that it promotes a fake cryptocurrency giveaway (airdrop). Our discovery of this fraudulent page occurred during the analysis of a deceptive email. Users should avoid visiting blockchainverified.vercel[.]app and similar sit
Our inspection of the email has shown that it is fraudulent. Scammers created it to trick recipients into sending them money and (or) personal information. It is disguised as a letter regarding a cargo and includes a financial offer. Whoever receives this email should ignore it to avoid financial
Our examination of the email has revealed that it is a phishing email. It is disguised as a letter regarding a shared folder and designed to lure recipients into opening a deceptive page (through the provided link) and entering personal information. Recipients should be careful when encountering s
We have discovered that it is a typical pop-up scam designed to trick visitors into taking certain actions. Usually, scammers behind scams like this one use scare tactics to achieve their goals. Users should avoid visiting such pages and close them if they encounter them to avoid potential negativ
We have tested the PrimeLookup browser extension and found that adding it results in browser hijacking. Usually, extensions of this type change the settings of web browsers to promote certain addresses. PrimeLookup hijacks web browsers to promote finditfasts.com, a fake search engine. Upon
VXUG is ransomware, which our team discovered during an inspection of samples submitted to VirusTotal. We found that VXUG is a variant of CryLock. Once infiltrated, it encrypts and renames files and creates a ransom note ("how_to_decrypt.hta"). VXUG appends an email address, a number, and a victim